News

The Register on MSN15d
Ripple NPM supply chain attack hunts for private keys
A mystery thief and a critical CVE involved in crypto cash grab Many versions of the Ripple ledger (XRPL) official NPM package are compromised with malware injected to steal cryptocurrency.… The NPM ...
Ripple cryptocurrency software library hit by major security issue, wallets under threat
A malicious actor used a compromised Ripple dev account to publish commits to NPM The commits would grant access to people's crypto wallets They were downloaded around 450 times before being pulled ...
Bleeping Computer17d
Ripple's recommended XRP library xrpl.js hacked to steal wallets
The recommended Ripple cryptocurrency NPM JavaScript library named "xrpl.js" was compromised to steal XRP wallet seeds and private keys and transfer them to an attacker-controlled server ...
The Currency Analytics14d
XRP Security Breach Exposes Private Keys in xrpl.js Attack
XRP's xrpl.js library was compromised in a supply chain attack, exposing private keys. Ripple urges immediate update to ...
BeInCrypto16d
Hackers Target Ripple’s XRP Ledger in a Critical Supply Chain Attack
Ripple's xrpl.js package breach threatens DeFi wallets on XRP. No major thefts reported, and Ripple has deprecated the compromised version.
CoinDesk16d
XRP Ledger Bug Patched After 'Serious' Flaw Spotted in XRPL Library
The issue only affects versions of Node Package Manager (NPM), a site where developers share reusable code for projects.
Hackaday13d
This Week In Security: XRP Poisoned, MCP Bypassed, And More
Researchers at Aikido run the Aikido Intel system, an LLM security monitor that ingests the feeds from public package ...
Bleeping Computer17d
Latest xrpl.js news
The recommended Ripple cryptocurrency NPM JavaScript library named "xrpl.js" was compromised to steal XRP wallet seeds and private keys and transfer them to an attacker-controlled server ...