Solution-Max: Hacker gains access to the repo of Event-Stream, a JS library with 2M+ weekly downloads on npm.org, to inject BitPay's wallet apps with code that steals funds (Catalin Cimpanu/ZDNet)

Monday, November 26, 2018

Hacker gains access to the repo of Event-Stream, a JS library with 2M+ weekly downloads on npm.org, to inject BitPay's wallet apps with code that steals funds (Catalin Cimpanu/ZDNet)

Catalin Cimpanu / ZDNet:
Hacker gains access to the repo of Event-Stream, a JS library with 2M+ weekly downloads on npm.org, to inject BitPay's wallet apps with code that steals funds — Users of BitPay's Copay desktop and mobile wallet apps are affected. An update has been released earlier today that doesn't contain the malicious code.

from Techmeme https://ift.tt/2Ky4bQo

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)