Crypto apps see malicious popups after Ace Drainer hacks animation library
The front-end websites of several online crypto apps were compromised on Oct. 30 after attackers injected malicious code into an update of a popular and widely used animation library.
Decentralized finance apps , including 1inch and TEN Finance, showed popups asking users to connect their wallet, which was actually for the crypto drainer “Ace Drainer,” crypto security platform Blockaid said in an Oct. 30 X post .
Gal Nagli, a security lead at cybersecurity firm Wiz, explained the compromise was from a “massive supply chain attack” on the Lottie Player library — a hugely popular service that provides animations for sites and apps, boasting users like Apple, Spotify, and Disney.
Source: Blockaid
The attack is unique as it injected a malicious popup into a seemingly otherwise unaffected website. Attackers typically breach highly-followed social media accounts to trick followers into clicking phishing links on fake website s.
Jawish Hameed, the engineering vice president at LottieFiles — the firm that publishes the animations library — wrote on GitHub the affected library versions had been removed and urged users to install the latest version.
He said that attackers compromised the GitHub account of a LottieFiles’ senior software engineer and pushed three malicious updates in three hours, adding it had “removed the compromised account access.”
Related: Hacker behind fake Bitcoin ETF X post pleads not guilty
Wiz’s Nagli said users were seeing the malicious crypto wallet connection popup “on popular websites all across the internet.”
“It seems that the original attack intent was to target major crypto websites who utilize the library,” he added.
Nagli warned that websites that still use the affected library versions “are probably still vulnerable,” saying users should check if sites are using the non-malicious packages — either version 2.0.4 or the latest 2.0.8.
LottieFiles did not immediately respond to a request for comment.
Crypto-Sec: 2 auditors miss $27M Penpie flaw, Pythia’s ‘claim rewards’ bug
Disclaimer: The content of this article solely reflects the author's opinion and does not represent the platform in any capacity. This article is not intended to serve as a reference for making investment decisions.
You may also like
MARA's stock jumps after raising $1 billion via convertible notes to buy more bitcoin
MARA Holdings announced the successful closing of its $1 billion offering of 0% convertible senior notes due 2030.The bitcoin miner plans to allocate around $199 million of the proceeds to repurchase $212 million in principal of its existing convertible notes due 2026. The remaining funds will be used to acquire more bitcoin.
Gold loses luster as institutional demand fuels bitcoin price surge, analysts say
Bitcoin’s 46% surge over the past month, contrasted with gold’s 3% decline, highlights a shifting investor preference toward alternative store-of-value assets, analysts say.Derivatives traders are buying up bitcoin call options ahead of Trump’s inauguration, signaling strong bullish sentiment for the beginning of 2024.
SEC is 'engaging' Solana ETF applicants: report
SEC “engaging” on Solana ETF applications, sparking optimism for potential approval in 2025.VanEck, 21Shares, and Bitwise lead Solana ETF filings amid pro-crypto White House hopes.SOL token rises 4.6% to $247.91, bolstered by Solana’s strong DeFi ecosystem and demand.
Shiba Inu Developer Says SHIB Is No Longer a Memcoin