Currencies34605
Market Cap$ 4.09T+1.79%
24h Spot Volume$ 78.96B-0.66%
DominanceBTC53.96%-1.11%ETH13.55%+2.07%
ETH Gas0.31 Gwei
Cryptorank

XRP Ledger Foundation Acts Fast on XRPL.js Bug; Threat Neutralized


by Izabela Anna
for CoinEdition
XRP Ledger Safe XRPL.js NPM Backdoor Fixed Rapidly
  • Backdoor in XRPL.js NPM packages exposed private keys in versions 4.2.1 to 4.2.4
  • Only the NPM distribution was compromised, GitHub repository remains unaffected
  • Version 4.2.5 released quickly to patch vulnerability and secure developer environments

A critical security breach has rattled the XRP development community following discovery of a backdoor in XRPL.js package versions 4.2.1 through 4.2.4 on NPM. The malicious code, present in versions 4.2.1 through 4.2.4, was capable of stealing users’ private keys and transmitting them to attackers. 

This prompted Ripple’s Chief Technology Officer, David Schwartz, to issue a public warning. Developers using these compromised versions are strongly advised to treat any exposed credentials as compromised.

Breach Limited to NPM; Core Ledger Safe

The breach, first reported by Aikido Security, revealed the NPM distribution of XRPL.js was altered with key-stealing code; the GitHub repository was not affected. This suggests only the NPM channel was compromised. 

Related: Ripple’…

The post XRP Ledger Foundation Acts Fast on XRPL.js Bug; Threat Neutralized appeared first on Coin Edition.

Read the article at CoinEdition

Read More

XRP Ledger Secures Major Win, Powering China’s Top Supply Chain Firm

XRP Ledger Secures Major Win, Powering China’s Top Supply Chain Firm

The XRP Ledger has been selected to power China’s leading supply chain via a new part...
Berachain (BERA) on the Move: Will This 8% Pop Turn Into a Full-On Moonshot?

Berachain (BERA) on the Move: Will This 8% Pop Turn Into a Full-On Moonshot?

Following a brief 2.42% bullish correction in the crypto market, the majority of the ...

XRP Ledger Foundation Acts Fast on XRPL.js Bug; Threat Neutralized


by Izabela Anna
for CoinEdition
XRP Ledger Safe XRPL.js NPM Backdoor Fixed Rapidly
  • Backdoor in XRPL.js NPM packages exposed private keys in versions 4.2.1 to 4.2.4
  • Only the NPM distribution was compromised, GitHub repository remains unaffected
  • Version 4.2.5 released quickly to patch vulnerability and secure developer environments

A critical security breach has rattled the XRP development community following discovery of a backdoor in XRPL.js package versions 4.2.1 through 4.2.4 on NPM. The malicious code, present in versions 4.2.1 through 4.2.4, was capable of stealing users’ private keys and transmitting them to attackers. 

This prompted Ripple’s Chief Technology Officer, David Schwartz, to issue a public warning. Developers using these compromised versions are strongly advised to treat any exposed credentials as compromised.

Breach Limited to NPM; Core Ledger Safe

The breach, first reported by Aikido Security, revealed the NPM distribution of XRPL.js was altered with key-stealing code; the GitHub repository was not affected. This suggests only the NPM channel was compromised. 

Related: Ripple’…

The post XRP Ledger Foundation Acts Fast on XRPL.js Bug; Threat Neutralized appeared first on Coin Edition.

Read the article at CoinEdition

Read More

XRP Ledger Secures Major Win, Powering China’s Top Supply Chain Firm

XRP Ledger Secures Major Win, Powering China’s Top Supply Chain Firm

The XRP Ledger has been selected to power China’s leading supply chain via a new part...
Berachain (BERA) on the Move: Will This 8% Pop Turn Into a Full-On Moonshot?

Berachain (BERA) on the Move: Will This 8% Pop Turn Into a Full-On Moonshot?

Following a brief 2.42% bullish correction in the crypto market, the majority of the ...