[SlowMist Alert: NPM Supply Chain Poisoning Attack Threatens DApp Users' Asset Security] SlowMist Technology's Chief Information Security Officer, 23pds, posted on the X platform, pointing out that recently attackers have been exploiting NPM supply chain poisoning by replacing SVG files referenced by decentralized platforms with versions embedded with malicious scripts. These malicious SVG files use cross-site scripting (XSS) attacks to generate pop-ups, luring DApp users into signing operations, thereby stealing user assets. SlowMist advises developers and users to strengthen security measures to prevent asset losses caused by supply chain vulnerabilities.

24/7 フラッシュニュース

もっと >

今日 2025-09-17

04:00

24/7 フラッシュニュース

US spot BTC ETF net inflow for 4 consecutive trading days, reaching $1.747 billion

Binance宣布上线Toshi(TOSHIUSDT)

马耳他金融监管机构反对欧盟加密货币监管集中化提议

OKX Announces Listing of Ethena (ENA)

BTC breaks through the $117000 mark

24/7 フラッシュニュース

US spot BTC ETF net inflow for 4 consecutive trading days, reaching $1.747 billion

Binance宣布上线Toshi(TOSHIUSDT)

马耳他金融监管机构反对欧盟加密货币监管集中化提议

OKX Announces Listing of Ethena (ENA)

BTC breaks through the $117000 mark