Security News > 2024 > December > Solana blockchain's popular web3.js npm package backdoored to steal keys, funds

Damage likely limited to those running bots with private key access Malware-poisoned versions of the widely used JavaScript library @solana/web3.js were distributed via the npm package registry, according to an advisory issued Wednesday by project maintainer Steven Luscher.…

News URL

https://go.theregister.com/feed/www.theregister.com/2024/12/05/solana_javascript_sdk_compromised/