News

The Hacker News5d
Ripple's xrpl.js npm Package Backdoored to Steal Private Keys in Major Supply Chain Attack
xrpl.js is a popular JavaScript API for interacting with the XRP Ledger blockchain, also called the Ripple Protocol, a ...
The Register on MSN6d
Ripple NPM supply chain attack hunts for private keys
A mystery thief and a critical CVE involved in crypto cash grab Many versions of the Ripple ledger (XRPL) official NPM ...
The Currency Analytics5d
XRP Security Breach Exposes Private Keys in xrpl.js Attack
XRP's xrpl.js library was compromised in a supply chain attack, exposing private keys. Ripple urges immediate update to ...
Hackaday5d
This Week In Security: XRP Poisoned, MCP Bypassed, And More
Researchers at Aikido run the Aikido Intel system, an LLM security monitor that ingests the feeds from public package ...
How Critical XRP Ledger Software Got Compromised With Crypto-Stealing 'Backdoor' In 'Potentially Catastrophic Supply Chain Attack'
XRP holders have been targeted in “a potentially catastrophic” exploit. Efforts to identify the bad actor are underway. The ...
Benzinga.com2d
How Critical XRP Ledger Software Got Compromised With Crypto-Stealing 'Backdoor' In 'Potentially Catastrophic Supply Chain Attack'
XRP, the cryptocurrency associated with blockchain payments firm Ripple, has increasingly been ... started releasing new versions of the SDK on NPM. But the firm could not match these releases ...
Analytics Insight6d
Ripple's XRP Ledger Under Siege: Security Breach Raises Concerns
Ripple CTO David Shwartz reported that the attack was contained only in the NPM package and did not happen to the XRP Ledger core or GitHub repositories. Ripple software engineer Muyukha Vadari ...