CoinMarketCap: Read what our contributors have to say. This content is provided by the community. DYOR!
SaaS animation platform LottieFiles alerts users to crypto threats
Market Musing-g

SaaS animation platform LottieFiles alerts users to crypto threats

crypto.news
By crypto.news
2 months ago
2 mins read
SaaS animation platform LottieFiles alerts users to crypto threats

LottieFiles revealed a supply chain compromise in which malicious code could lure users into connecting crypto wallets, potentially leading to asset theft.

LottieFiles, a platform that enables designers and developers to create animations, has issued a warning regarding a security breach involving its npm package, which may expose users to malicious code designed to compromise crypto wallets.

In an X post on Oct. 31, LottieFiles said that the affected versions — Lottie Web Player 2.0.5, 2.0.6, and 2.0.7 — were released on Oct. 30, prompting immediate concerns after multiple user reports surfaced about strange code injections. In response to the threat, LottieFiles released a new version, 2.0.8, reverting to the secure code.

“A large number of users using the library via third-party CDNs without a pinned version were automatically served the compromised version as the latest release.”

LottieFiles

For those unable to update, LottieFiles recommends informing end users about potential fraudulent wallet connection prompts associated with the Lottie-player. Users may also opt to remain on version 2.0.4 to avoid risk.

LottieFiles warned that applications using the compromised npm package may inadvertently prompt users to connect their crypto wallets, opening avenues for potential theft. The developer account linked to the malicious uploads has been stripped of access, and related tokens have been revoked to halt any further unauthorized activity, the firm added, though the full extent of the attack remains unknown.

0 likes
|

Other articles published on Oct 31, 2024

Market Musing-g

Immutable says SEC is threatening to sue over sales of IMX token

Immutable (IMX) was targeted by the US SEC in its latest attempt at direct lawsuits against crypto projects.
By Cryptopolitan_News
2 months ago
5 mins read
Market Musing-g

Expert Reckons this Cheap Solana (SOL) Alternative will Believes Could Reach $19 in 2025, Current...

The chances for spectacular expansion are sometimes brief and discriminating investors are in search of interesting substitutes for more established coins. Although Solana (SOL) has attracted a lot...
By TheNewsCrypto
2 months ago
5 mins read
Market Musing-g

Coinbase’s L2 Base welcomes Franklin Templeton’s tokenized fund

Coinbase’s Ethereum scaling solution has onboarded its first large wealth manager in Franklin Templeton, the $1.5 trillion Wall Street titan.
By crypto.news
2 months ago
2 mins read
Market Musing-g

Trust Wallet CEO: Invisible Transaction Experience Key To Web3 Success

Trust Wallet CEO Eowyn Chen believes a seamless, invisible transaction experience is essential for Web3 adoption.
By Coinpaper.com
2 months ago
3 mins read
Market Musing-g

Solana DEX Volume Skyrockets by 45%; Is Ethereum Finally Getting A Worthy Competitor For the DeFi...

In the final week of September 2024, decentralized exchanges (DEXes) on Solana saw a notable 45.74% increase in trading volume, surpassing $7.87 billion in total trades. This surge underscores Sola...
By DeFi Planet
2 months ago
7 mins read
Market Musing-g

Is Bitcoin on the Brink of a Major Surge? Targets Set Between $115K and $123K

Analyst Henrik Zeberg predicts Bitcoin could reach between $115K and $123K, driven by strong technical indicators and bullish market sentiment. Bitcoin's recent breakout from the "All-Time High Are...
By Crypto News Land
2 months ago
3 mins read

Join the thousands already learning crypto!

Join our free newsletter for daily crypto updates!