All
Contribute!
BlockchainCrypto MarketCryptocurrency

Crypto Hack: Lottie Player Breach Leads to Crypto Wallet Draining

CoinSurges
By CoinSurges

Share This Post

Celebrity Crypto Scam

The post Crypto Hack: Lottie Player Breach Leads to Crypto Wallet Draining appeared first on Coinpedia Fintech News

On October 30, numerous significant crypto platforms observed an influx of dangerous popups that encouraged users to link their wallets. Information about the unauthorized access originated from a supply chain attack on the widely used Lottie Player animations library. 

This JavaScript library which is used by popular websites including the ones run by Apple, Spotify, and Disney was manipulated to include a crypto-draining popup that targeted decentralized finance (DeFi) projects like 1inch and TEN Finance.

The details of the supply chain breach

LottieFiles’ GitHub account was attacked by obtaining a senior software engineer’s authentication data after which the attackers quickly released three updates containing malware in all. 

Consequently, any site or app incorporating the hacked version of Lottie Player flooded the users with popups that led them to the said Ace Drainer crypto drainer. This approach was a departure from those previous methods, as it was essentially serving users ads through their favourite and most reliable crypto applications as opposed to sending out phishing links on other apps.

Industry response and security recommendations

When the attack was identified, LottieFiles deleted the malicious update and advised application developers to update to either the safer 2.0.4 version or the most recent 2.0.8 version of the library. Engineering vice-president at LottieFiles Jawish Hameed corroborated these changes, reimbursing that the afflicted versions had been removed from GitHub repositories. 

Cybersecurity companies such as Wiz and Blockaid have discouraged users from relaxing, saying that some crypto websites may still show the malicious popup even when using the affected library versions.

Recently there has been growing use of trusted SLPs as attackers rely on them more often. Since the instances of scams and security breaches are on the increase, the platforms are encouraged to enhance the monitoring activities and include frequently updates to protect against other related threats in future.

Read Entire Article
spot_img
- Advertisement -spot_img

Related Posts

Cardano Founder Updates Ripple, Chainlink And Bitcoin Partnerships

In a wide-ranging two-hour livestream on December 26, Cardano founder Charles Hoskinson addressed ongoing discussions around partnering with Ripple, advancing a Chainlink integration, and bridging

Bitcoin’s Global Price Tug-of-War: US Discounts, South Korea Premiums Soar

On Friday, as the weekend looms, bitcoin (BTC) is holding its ground at $96,751 per coin Over at Coinbase, a curious twist has appeared over the past 11 days with a negative premium gap of $122,

Top Altcoins to Consider in 2025: AVAX, ONDO & FTM Prices To Attract Massive Gains

The post Top Altcoins to Consider in 2025: AVAX, ONDO & FTM Prices To Attract Massive Gains appeared first on Coinpedia Fintech News The crypto markets are heading towards the end of the yearly

Solana Down 22% in December, Can Solaxy Help It Realize Its Full Potential?

Ever since the crypto industry gained momentum, Bitcoin ($BTC) and Ethereum ($ETH) are the two names that have been dominating the market No one ever managed to come close But the tables turned in

Record $18 billion in crypto options set for year-end expiry

The crypto market is ending the year on a strong note as a record $18 billion worth of options contracts are set to expire Options allow traders to speculate or hedge against price movements A call

Bitcoin Price Enters Correction Phase On Its Path To Explode Above $110,000

The Bitcoin price  is still in a correction phase under $100,000, as it is currently down by 193% in the past 24 hours Nonetheless, crypto analyst Titan of Crypto is sure that the leading
Previous article
Coinbase CEO Blasts SEC For Senseless Legal Tactics, Demands Apology
Next article
Satoshi Nakamoto to Be Revealed Today? Major Announcement on Bitcoin Whitepaper Day

Categories:

Hot right now:

Company:

Follow on:

Crypto Coin Live Stats

Coinsurges provides coverage of fintech, blockchain, and Bitcoin, delivering the most recent news and analyses on the future of money. Stay up-to-date with live prices, charts, and trading options for the top exchanges. Keep track of the day's top cryptocurrency gainers and losers, as well as which coins have experienced gains and losses in the past 24 hours.
Trust Coinsurges as your go-to source for all news and updates in the industry.