Solana Hack Exposes Library Flaws, Costs Developers $160K

Solana’s Web3.js hack exposed library flaws, draining $160K from dApps and key projects. Developers urged to update Solana library to version 1.95.8 to secure dApps from future hacks. SOL price fell 1.3% after the $160K loss but remains up 289.58% year-over-year. Layer 1 blockchain network Solana (SOL) suffered a massive software supply chain attack on Tuesday, impacting the protocol’s users and developers. The attack involved the solana/web3.js JavaScript library, which is used by many decentralized applications (dApps) on the Solana blockchain. The Solana development team, Anza, reported that an account with access to publish the library was compromised. This allowed the attackers to introduce malicious code that captured private keys and transmitted them to a hardcoded address. As a result, the attackers drained funds from dApps that interacted with these private keys. Another bad day for Solana users and developers… a massive wallet draining attack was injected into their tech stack. The injected code captures private keys and transmits them to a hardcoded address. Believed to be the result of a social engineering/phishing attack targeting… — phil … The post Solana Hack Exposes Library Flaws, Costs Developers $160K appeared first on Coin Edition .

Source: Coin Edition