NPM Developer Account Attacker Currently Suspected to Have Profited Only Around $20
BlockBeats News, September 9th, according to CertiK Alert monitoring, developer Qix's NPM account was targeted in a phishing attack, with the attacker injecting malicious code into npm. According to Security Alliance, the attacker seems to have only profited about 0.05 USD worth of ETH and 20 USD worth of Meme coin.
Previously reported, Ledger CTO Charles Guillemet posted, "A large-scale supply chain attack is currently taking place: a well-known developer's NPM account has been compromised. The affected package has been downloaded over 1 billion times, which means the entire JavaScript ecosystem may be at risk. The malicious code works by silently modifying cryptocurrency addresses in the background to steal funds."
You may also like
The Impossible Triangle of DeFi Lending
Bitcoin ETF News: Why Bitcoin Is Falling Even After $2.43B ETF Inflows in April
Bitcoin ETF news today shows $2.43B in April inflows as institutions absorbed thousands of BTC, yet the price dropped from $79K to $76K. Traders are now watching whether the $80K resistance breaks or triggers another pullback.
What Is RWA in Crypto? Real-World Assets Explained (2026 Guide)
What Is RWA in Crypto?RWA stands for Real-World Assets — traditional financial assets like bonds, real estate, gold, and private credit that have been converted into blockchain tokens.
Revisiting RWA: Nearly 50,000 people's first on-chain transaction was not Bitcoin, but stock indices and crude oil
Altcoin Price Outlook 2026: The Rotation Is Coming — Just Not the Way You Think
Bitcoin dominance at 58%, Fear & Greed at 39. If you think altcoin season is dead, you're reading the wrong signals. Here's what the data actually says about what comes next.
Oracle: The Second Battlefield Behind the Prediction Market War
a16z's key bet: Kalshi's weekly trading volume approaches $3 billion, transitioning from "prediction games" to financial infrastructure, the market begins to price "uncertainty."
Morning Report | Galaxy Digital announces Q1 2026 financial report; Liquid completes $18 million Series A financing; Polymarket plans to bring major exchanges to the U.S
From a banned economist to the new CEO of Xinhua: Fu Peng has figured out the second half of traffic
Why Private Credit Became the First True Bridge from TradFi to DeFi
Senior cryptocurrency investor: Blockchain is showing a siphoning effect on capital
When traditional crypto derivatives start to subtract: Insights from Hyper Trade's products
My view on blockchain has changed
Will AI Agents use bank cards? Why can't Agentic Payment avoid stablecoins and blockchain?
Deconstructing 80 mainstream payment institutions and wallets worldwide
The MiCA Fast Track for Cryptocurrency Licenses: Why OKX and BVNK Choose Malta
a16z Crypto: Stablecoins are rebuilding the global financial infrastructure
ENI's RWA ambition: to create an enterprise-level BaaS platform that allows Web2 institutions to "go beyond just asset on-chain."
The Impossible Triangle of DeFi Lending
Bitcoin ETF News: Why Bitcoin Is Falling Even After $2.43B ETF Inflows in April
Bitcoin ETF news today shows $2.43B in April inflows as institutions absorbed thousands of BTC, yet the price dropped from $79K to $76K. Traders are now watching whether the $80K resistance breaks or triggers another pullback.
What Is RWA in Crypto? Real-World Assets Explained (2026 Guide)
What Is RWA in Crypto?RWA stands for Real-World Assets — traditional financial assets like bonds, real estate, gold, and private credit that have been converted into blockchain tokens.
Revisiting RWA: Nearly 50,000 people's first on-chain transaction was not Bitcoin, but stock indices and crude oil
Altcoin Price Outlook 2026: The Rotation Is Coming — Just Not the Way You Think
Bitcoin dominance at 58%, Fear & Greed at 39. If you think altcoin season is dead, you're reading the wrong signals. Here's what the data actually says about what comes next.
Oracle: The Second Battlefield Behind the Prediction Market War
