Hacker Steals $484,000 in Crypto Funds from Web3 Apps
A hacker recently executed a sophisticated attack on popular Web3 apps like Zapper, SushiSwap, and Phantom, resulting in the theft of approximately $484,000 in cryptocurrency. The attack specifically targeted Ledger’s Connect Kit, a code library that facilitates connections between decentralized apps and crypto wallets.
How the Attack Unfolded
The hacker gained access to a former Ledger employee’s account through a phishing attack on the NPMJS platform. Using this compromised account, the attacker inserted malicious code into an update for Ledger’s Connect Kit on GitHub. When vulnerable apps updated to this compromised version of Connect Kit, users’ browsers unknowingly distributed the malicious code.
The Malicious Code and its Effects
The malicious code allowed the hacker to deceive users into approving transactions that sent funds to the attacker’s wallet instead of the intended app. It is believed that the code manipulated transaction data to trick users into confirming payments they didn’t fully understand. For example, users may have approved a token payment for app functionality but actually saw an approval for a payment to the hacker’s address.
Continued Vigilance and Lessons Learned
Ledger has deactivated the malicious code and declared Connect Kit safe to use again. However, this attack serves as a warning to the Web3 community about the vulnerability of key infrastructure for popular apps. Users must remain vigilant when approving crypto transactions, carefully reviewing addresses and details even when an app seems legitimate. Enhancing security and transparency in transactions is crucial, but it is equally important to consider the human element in these systems.
Hot Take: A Reminder of Web3 Security Vulnerabilities
This recent hack targeting Web3 apps highlights the ongoing challenges and vulnerabilities in the crypto space. While efforts are being made to improve security, it is crucial for users to exercise caution and stay informed about potential risks. The incident serves as a reminder that hackers are constantly adapting and finding new ways to exploit weaknesses in the system. As the industry continues to evolve, both developers and users must prioritize security measures and remain vigilant to protect their assets.
By
By
By
By
By
By