Attackers compromised an Injective GitHub maintainer account and pushed a backdoored SDK version targeting wallet private keys across 18 npm packages.

Hackers compromised the Injective Labs SDK project's GitHub repository and used it to publish a malicious package on the Node Package Manager (npm) that stole cryptocurrency…

Attackers compromised an Injective GitHub maintainer account and pushed a backdoored SDK version targeting wallet private keys across 18 npm packages.