News

The Hacker News5d
Ripple's xrpl.js npm Package Backdoored to Steal Private Keys in Major Supply Chain Attack
xrpl.js is a popular JavaScript API for interacting with the XRP Ledger blockchain, also called the Ripple Protocol, a ...
Ripple NPM supply chain attack hunts for private keys
Targeting NPM is an increasingly popular method of launching supply chain attacks for cybercriminals, primarily because of ...
Ripple cryptocurrency software library hit by major security issue, wallets under threat
A JavaScript library recommended by a major cryptocurrency company has been hijacked, with users now being at risk of losing ...
The Currency Analytics5d
XRP Security Breach Exposes Private Keys in xrpl.js Attack
XRP's xrpl.js library was compromised in a supply chain attack, exposing private keys. Ripple urges immediate update to ...
The Currency Analytics6d
Ripple CTO Warns of XRP Wallet Risk Amid Compromised SDK
Ripple CTO David Schwartz warns users about compromised xrpl.js package that could steal private keys. The issue affects ...
How Critical XRP Ledger Software Got Compromised With Crypto-Stealing 'Backdoor' In 'Potentially Catastrophic Supply Chain Attack'
XRP holders have been targeted in “a potentially catastrophic” exploit. Efforts to identify the bad actor are underway. The ...
Hackaday4d
This Week In Security: XRP Poisoned, MCP Bypassed, And More
Researchers at Aikido run the Aikido Intel system, an LLM security monitor that ingests the feeds from public package ...
Benzinga.com2d
How Critical XRP Ledger Software Got Compromised With Crypto-Stealing 'Backdoor' In 'Potentially Catastrophic Supply Chain Attack'
XRP, the cryptocurrency associated with blockchain payments firm Ripple, has increasingly been ... started releasing new versions of the SDK on NPM. But the firm could not match these releases ...