CDS Crypto News Crypto Wallet Security Breach: Ledger ConnectKit Compromised in Widespread Attack Affecting Multiple dApps
Crypto News

Crypto Wallet Security Breach: Ledger ConnectKit Compromised in Widespread Attack Affecting Multiple dApps

224
Crypto Wallet Security Breach: Ledger Connectkit Compromised In Widespread Attack Affecting Multiple Dapps

Crypto Wallet Security Breach: Ledger ConnectKit Compromised in Widespread Attack Affecting Multiple dApps

Crypto News – Ledger, a leading name in the self-custody crypto sector, has fallen prey to a sophisticated cyberattack targeting its users’ digital assets. In a concerning development, the ConnectKit, a widely-used software interface that connects decentralized applications (dApps) to Ledger’s hardware wallets, has been compromised.

This alarming security breach was brought to light by Blockaid, a blockchain security monitoring company, through a recent tweet. The firm described the incident as a supply chain attack, where the attacker tainted the library’s source code, thereby impacting any applications dependent on it.

The core of the attack involved the introduction of a malignant code designed to siphon off cryptocurrency assets from Ledger wallets interfacing with affected dApps through the tainted ConnectKit.

Crypto Wallet Security Breach: Ledger Connectkit Compromised In Widespread Attack Affecting Multiple Dapps

Blockaid has also identified several high-profile dApps that have been impacted by this breach. The preliminary list includes major players like the multi-chain decentralized exchange SushiSwap, the DeFI and NFT tracking service Zapper, along with MetalSwap and EchoDex.

Meanwhile, Matthew Lilley, CTO of SushiSwap, has warned that the vulnerability extends to all dApps integrating Ledger’s ConnectKit. He advises crypto users to avoid using these dApps for the time being, emphasizing that this is not an isolated event but rather a large-scale attack impacting numerous dApps.

Crypto Wallet Security Breach: Ledger Connectkit Compromised In Widespread Attack Affecting Multiple Dapps

It is crucial to note that the vulnerability does not stem from the Ledger hardware wallets themselves but rather from the compromised software facilitating their connection to websites.

In response to this crisis, Ledger has swiftly issued an update to remove the malicious code. Blockaid is now calling on all stakeholders to update their dApps and employ version pinning as a security measure to prevent similar incidents in the future.

Crypto Wallet Security Breach: Ledger Connectkit Compromised In Widespread Attack Affecting Multiple Dapps

Leave a comment

Leave a Reply

Related Articles

MicroStrategy’s Bitcoin Acquisition Strategy: Bold Bet or Risky Move?

MicroStrategy's aggressive Bitcoin acquisition strategy, involving a $42 billion plan funded through...

Bitcoin Act Gains Momentum in the US: A Potential $1 Million Bitcoin Price

The proposed Bitcoin Act in the U.S., supported by Cynthia Lummis and...

Binance Coin (BNB) Price Predictions: 2024-2030 Analysis

Binance Coin (BNB) Price Predictions: 2024-2030 Analysis

Stacks (STX) Price Analysis and Predictions for 2024 and Beyond

Stacks (STX) Price Analysis and Predictions for 2024 and Beyond