Injective Labs GitHub Compromise Pushes Wallet-Key-Stealing npm Packa… | HappeningNow.news
Published Date: July 10, 2026

Cybersecurity · 1 views

Injective Labs GitHub Compromise Pushes Wallet-Key-Stealing npm Packages

Unknown threat actors compromised the Injective Labs SDK project's GitHub repository and leveraged it to publish a malicious package on t…

Source The Hacker News AI Summary Updated 56m ago
Story intelligence Beta
Freshness Fresh Updated 56m ago
Confidence Limited Single-outlet story
Coverage Single outlet
Views 1 Community interest
Read time 1 min ~48 words

AI Summary

Unknown threat actors compromised the Injective Labs SDK project's GitHub repository and leveraged it to publish a malicious package on the npm registry to steal cryptocurrency wallet private keys and mnemonic seed phrases. The compromised version, @injectivelabs/sdk-ts@1.20.21, came embedded with fake telemetry functionality that exfiltrated data from cryp…

Read full article on The Hackernews

AI summaries can be wrong sometimes—always verify important details using the source article.

More coverage on this topic

Github89 stories
View all Github coverage
SUPPORT HAPPENINGNOW · Independent AI News Intelligence
SUPPORTER MESSAGE

Enjoyed this article? Consider supporting HappeningNow to help keep independent AI-powered news analysis moving forward. Your contribution helps cover infrastructure, AI summaries, and continued platform development.

Support HappeningNow