Security News > 2024 > October > Lottie Player supply chain compromise: Sites, apps showing crypto scam pop-ups
2024-10-31 12:35
A supply chain compromise involving Lottie Player, a widely used web component for playing site and app animations, has made popular decentralized finance apps show pop-ups urging users to connect their wallets, TradingView has reported. The pop-up (Source: Lottie Player GitHub repository) Users who did it – and it seems that there was at least one victim – had their wallets drained. The Lottie Player compromise Website admins began complaining about the pop-up and asking … More → The post Lottie Player supply chain compromise: Sites, apps showing crypto scam pop-ups appeared first on Help Net Security.
News URL
https://www.helpnetsecurity.com/2024/10/31/lottie-player-compromise/
Related news
- North Korea targets crypto developers via NPM supply chain attack (source)
- ⚡ THN Weekly Recap: Google Secrets Stolen, Windows Hack, New Crypto Scams and More (source)
- Indian authorities seize loot from collapsed BitConnect crypto scam (source)
- Hackers target AI and crypto as software supply chain risks grow (source)
- CISA Warns of Active Exploitation in GitHub Action Supply Chain Compromise (source)