• bitcoinBitcoin (BTC) $ 75,293.00
  • ethereumEthereum (ETH) $ 2,317.72
  • tetherTether (USDT) $ 1.00
  • xrpXRP (XRP) $ 1.42
  • bnbBNB (BNB) $ 619.61
  • usd-coinUSDC (USDC) $ 0.999809
  • solanaSolana (SOL) $ 84.97
  • tronTRON (TRX) $ 0.330116
  • staked-etherLido Staked Ether (STETH) $ 2,265.05
  • figure-helocFigure Heloc (FIGR_HELOC) $ 1.04
  • dogecoinDogecoin (DOGE) $ 0.094139
  • whitebitWhiteBIT Coin (WBT) $ 54.59
  • usdsUSDS (USDS) $ 0.999702
  • hyperliquidHyperliquid (HYPE) $ 43.13
  • leo-tokenLEO Token (LEO) $ 10.14
  • wrapped-stethWrapped stETH (WSTETH) $ 2,779.67
  • cardanoCardano (ADA) $ 0.245469
  • bitcoin-cashBitcoin Cash (BCH) $ 441.49
  • wrapped-bitcoinWrapped Bitcoin (WBTC) $ 76,243.00
  • chainlinkChainlink (LINK) $ 9.18
  • binance-bridged-usdt-bnb-smart-chainBinance Bridged USDT (BNB Smart Chain) (BSC-USD) $ 0.998762
  • moneroMonero (XMR) $ 353.47
  • wrapped-beacon-ethWrapped Beacon ETH (WBETH) $ 2,466.93
  • memecoreMemeCore (M) $ 3.51
  • ethena-usdeEthena USDe (USDE) $ 0.999431
  • canton-networkCanton (CC) $ 0.147249
  • wrapped-eethWrapped eETH (WEETH) $ 2,465.31
  • stellarStellar (XLM) $ 0.168226
  • zcashZcash (ZEC) $ 323.43
  • susdssUSDS (SUSDS) $ 1.08
  • daiDai (DAI) $ 0.999433
  • litecoinLitecoin (LTC) $ 55.11
  • usd1-wlfiUSD1 (USD1) $ 0.999982
  • coinbase-wrapped-btcCoinbase Wrapped BTC (CBBTC) $ 76,366.00
  • paypal-usdPayPal USD (PYUSD) $ 0.999729
  • avalanche-2Avalanche (AVAX) $ 9.21
  • hedera-hashgraphHedera (HBAR) $ 0.088251
  • wethWETH (WETH) $ 2,268.37
  • suiSui (SUI) $ 0.944828
  • rainRain (RAIN) $ 0.007634
  • shiba-inuShiba Inu (SHIB) $ 0.000006
  • usdt0USDT0 (USDT0) $ 0.998824
  • the-open-networkToncoin (TON) $ 1.30
  • crypto-com-chainCronos (CRO) $ 0.069418
  • hashnote-usycCircle USYC (USYC) $ 1.12
  • tether-goldTether Gold (XAUT) $ 4,779.19
  • world-liberty-financialWorld Liberty Financial (WLFI) $ 0.078924
  • blackrock-usd-institutional-digital-liquidity-fundBlackRock USD Institutional Digital Liquidity Fund (BUIDL) $ 1.00
  • pax-goldPAX Gold (PAXG) $ 4,780.87
  • ethena-staked-usdeEthena Staked USDe (SUSDE) $ 1.22
  • bittensorBittensor (TAO) $ 245.31
  • global-dollarGlobal Dollar (USDG) $ 0.999751
  • mantleMantle (MNT) $ 0.654002
  • polkadotPolkadot (DOT) $ 1.26
  • uniswapUniswap (UNI) $ 3.28
  • falcon-financeFalcon USD (USDF) $ 0.998366
  • skySky (SKY) $ 0.075858
  • okbOKB (OKB) $ 83.72
  • pi-networkPi Network (PI) $ 0.172638
  • nearNEAR Protocol (NEAR) $ 1.33
  • little-pepe-5Little Pepe (LILPEPE) $ 2.16
  • aster-2Aster (ASTER) $ 0.667279
  • htx-daoHTX DAO (HTX) $ 0.000002
  • syrupusdcsyrupUSDC (SYRUPUSDC) $ 1.15
  • pepePepe (PEPE) $ 0.000004
  • janus-henderson-anemoy-treasury-fundJanus Henderson Anemoy Treasury Fund (JTRSY) $ 1.10
  • usddUSDD (USDD) $ 1.00
  • ripple-usdRipple USD (RLUSD) $ 0.999725
  • aaveAave (AAVE) $ 92.38
  • internet-computerInternet Computer (ICP) $ 2.46
  • bfusdBFUSD (BFUSD) $ 0.999891
  • ondo-us-dollar-yieldOndo US Dollar Yield (USDY) $ 1.12
  • bitget-tokenBitget Token (BGB) $ 1.87
  • ethereum-classicEthereum Classic (ETC) $ 8.35
  • ondo-financeOndo (ONDO) $ 0.254396
  • kucoin-sharesKuCoin (KCS) $ 8.46
  • gatechain-tokenGate (GT) $ 7.12
  • pump-funPump.fun (PUMP) $ 0.001834
  • jupiter-perpetuals-liquidity-provider-tokenJupiter Perpetuals Liquidity Provider Token (JLP) $ 4.00
  • morphoMorpho (MORPHO) $ 1.95
  • quant-networkQuant (QNT) $ 73.42
  • ethenaEthena (ENA) $ 0.117992
  • eutblSpiko EU T-Bills Money Market Fund (EUTBL) $ 1.24
  • united-stablesUnited Stables (U) $ 1.00
  • jito-staked-solJito Staked SOL (JITOSOL) $ 124.46
  • polygon-ecosystem-tokenPOL (ex-MATIC) (POL) $ 0.089158
  • kaspaKaspa (KAS) $ 0.034415
  • kelp-dao-restaked-ethKelp DAO Restaked ETH (RSETH) $ 2,404.69
  • algorandAlgorand (ALGO) $ 0.105420
  • render-tokenRender (RENDER) $ 1.77
  • binance-peg-wethBinance-Peg WETH (WETH) $ 2,262.26
  • nexoNEXO (NEXO) $ 0.893455
  • rocket-pool-ethRocket Pool ETH (RETH) $ 2,631.35
  • cosmosCosmos Hub (ATOM) $ 1.78
  • usdtbUSDtb (USDTB) $ 1.00
  • binance-bridged-usdc-bnb-smart-chainBinance Bridged USDC (BNB Smart Chain) (USDC) $ 0.999945
  • superstate-short-duration-us-government-securities-fund-ustbSuperstate Short Duration U.S. Government Securities Fund (USTB) (USTB) $ 11.05
  • worldcoin-wldWorldcoin (WLD) $ 0.260943
  • wbnbWrapped BNB (WBNB) $ 759.61
  • arbitrumArbitrum (ARB) $ 0.125032
  • ignition-fbtcFunction FBTC (FBTC) $ 76,389.00
  • blockchain-capitalBlockchain Capital (BCAP) $ 82.76
  • aptosAptos (APT) $ 0.931431
  • filecoinFilecoin (FIL) $ 0.921997
  • dexeDeXe (DEXE) $ 15.01
  • flare-networksFlare (FLR) $ 0.008096
  • syrupusdtsyrupUSDT (SYRUPUSDT) $ 1.11
  • official-trumpOfficial Trump (TRUMP) $ 2.84
  • hash-2Provenance Blockchain (HASH) $ 0.011515
  • jupiter-exchange-solanaJupiter (JUP) $ 0.177509
  • binance-staked-solBinance Staked SOL (BNSOL) $ 108.24
  • beldexBeldex (BDX) $ 0.080080
  • midnight-3Midnight (NIGHT) $ 0.037137
  • vechainVeChain (VET) $ 0.007075
  • justJUST (JST) $ 0.071005
  • ousgOUSG (OUSG) $ 114.95
  • xdce-crowd-saleXDC Network (XDC) $ 0.029787
  • new-x-ceo-is-backNEW X CEO IS BACK (XFLOKI) $ 0.506041
  • bridged-usdc-polygon-pos-bridgePolygon Bridged USDC (Polygon PoS) (USDC.E) $ 0.999720
  • yldsYLDS (YLDS) $ 1.00
  • solv-btcSolv Protocol BTC (SOLVBTC) $ 76,461.00
  • ghoGHO (GHO) $ 0.998984
  • lombard-staked-btcLombard Staked BTC (LBTC) $ 76,491.00
  • stable-2​​Stable (STABLE) $ 0.025598
  • usual-usdUsual USD (USD0) $ 0.998146
  • bonkBonk (BONK) $ 0.000006
  • clbtcclBTC (CLBTC) $ 76,920.00
  • pancakeswap-tokenPancakeSwap (CAKE) $ 1.53
  • true-usdTrueUSD (TUSD) $ 0.999334
  • a7a5A7A5 (A7A5) $ 0.012503
  • fetch-aiArtificial Superintelligence Alliance (FET) $ 0.216547
  • siren-2Siren (SIREN) $ 0.651336
  • adi-tokenADI (ADI) $ 4.33
  • stakewise-v3-osethStakeWise Staked ETH (OSETH) $ 2,419.84
  • virtual-protocolVirtuals Protocol (VIRTUAL) $ 0.686708
  • pudgy-penguinsPudgy Penguins (PENGU) $ 0.007136
  • kinetic-staked-hypeKinetiq Staked HYPE (KHYPE) $ 33.97
  • tbtctBTC (TBTC) $ 70,942.00
  • euro-coinEURC (EURC) $ 1.18
  • dashDash (DASH) $ 33.79
  • wrappedm-by-m0WrappedM by M0 (WM) $ 1.00
  • blockstackStacks (STX) $ 0.227708
  • chilizChiliz (CHZ) $ 0.040286
  • first-digital-usdFirst Digital USD (FDUSD) $ 0.999154
  • layerzeroLayerZero (ZRO) $ 1.63
  • venice-tokenVenice Token (VVV) $ 8.87
  • edgexedgeX (EDGE) $ 1.14
  • c8ntinuumc8ntinuum (CTM) $ 0.087592
  • janus-henderson-anemoy-aaa-clo-fundJanus Henderson Anemoy AAA CLO Fund (JAAA) $ 1.03
  • mantle-staked-etherMantle Staked Ether (METH) $ 2,455.82
  • ether-fiEther.fi (ETHFI) $ 0.474956
  • tezosTezos (XTZ) $ 0.360613
  • polygon-pos-bridged-dai-polygon-posPolygon PoS Bridged DAI (Polygon POS) (DAI) $ 0.999983
  • kinesis-goldKinesis Gold (KAU) $ 161.25
  • resolv-wstusrResolv wstUSR (WSTUSR) $ 1.13
  • monadMonad (MON) $ 0.032363
  • cocaCOCA (COCA) $ 1.30
  • bianrensheng币安人生 (BinanceLife) (币安人生) $ 0.388833
  • usxUSX (USX) $ 0.999591
  • sei-networkSei (SEI) $ 0.055227
  • doge-strategyDoge Strategy (DOGESTR) $ 0.288297
  • liquid-staked-ethereumLiquid Staked ETH (LSETH) $ 2,406.26
  • hastra-primePRIME (PRIME) $ 1.03
  • arbitrum-bridged-wbtc-arbitrum-oneArbitrum Bridged WBTC (Arbitrum One) (WBTC) $ 76,200.00
  • celestiaCelestia (TIA) $ 0.398415
  • decredDecred (DCR) $ 20.35
  • sun-tokenSun Token (SUN) $ 0.018320
  • aerodrome-financeAerodrome Finance (AERO) $ 0.380020
  • wrapped-flareWrapped Flare (WFLR) $ 0.009961
  • curve-dao-tokenCurve DAO (CRV) $ 0.226457
  • apenftAINFT (NFT) $ 0.00000034
  • l2-standard-bridged-weth-baseL2 Standard Bridged WETH (Base) (WETH) $ 2,266.86
  • steakhouse-usdc-morpho-vaultSteakhouse USDC Morpho Vault (STEAKUSDC) $ 1.12
  • lido-daoLido DAO (LDO) $ 0.382582
  • injective-protocolInjective (INJ) $ 3.21
  • gnosisGnosis (GNO) $ 121.10
  • bittorrentBitTorrent (BTT) $ 0.00000032
  • bitcoin-svBitcoin SV (BSV) $ 15.67
  • binance-peg-xrpBinance-Peg XRP (XRP) $ 1.59
  • crvusdcrvUSD (CRVUSD) $ 0.999713
  • ether-fi-liquid-ethEther.Fi Liquid ETH (LIQUIDETH) $ 2,443.47
  • kinesis-silverKinesis Silver (KAG) $ 82.34
  • renzo-restaked-ethRenzo Restaked ETH (EZETH) $ 2,421.84
  • conflux-tokenConflux (CFX) $ 0.059933
  • spx6900SPX6900 (SPX) $ 0.329628
  • noonNoon (NOON) $ 0.751949
  • sbtc-2sBTC (SBTC) $ 77,039.00
  • ravedaoRaveDAO (RAVE) $ 1.23
  • doublezeroDoubleZero (2Z) $ 0.084801
  • flokiFLOKI (FLOKI) $ 0.000030
  • jupiter-staked-solJupiter Staked SOL (JUPSOL) $ 115.56
  • kaiaKaia (KAIA) $ 0.048706
  • savings-usddSavings USDD (SUSDD) $ 1.03
  • usdaiUSDai (USDAI) $ 0.999584
  • jasmycoinJasmyCoin (JASMY) $ 0.005581
  • fraxLegacy Frax Dollar (FRAX) $ 0.994417
  • msolMarinade Staked SOL (MSOL) $ 133.18
  • ape-and-pepeApe and Pepe (APEPE) $ 0.000001
  • arbitrum-bridged-weth-arbitrum-oneArbitrum Bridged WETH (Arbitrum One) (WETH) $ 2,265.06
  • syrupMaple Finance (SYRUP) $ 0.234185
Bitcoin

SaaS animation platform LottieFiles alerts users to crypto threats

By admin
0 137

SaaS animation platform LottieFiles alerts users to crypto threats

LottieFiles revealed a supply chain compromise in which malicious code could lure users into connecting crypto wallets, potentially leading to asset theft.

LottieFiles, a platform that enables designers and developers to create animations, has issued a warning regarding a security breach involving its npm package, which may expose users to malicious code designed to compromise crypto wallets.

Incident Response for Recently Infected Lottie-Player versions 2.05, 2.06, 2.0.7

Comm Date/Time: Oct 31st, 2024 04:00 AM UTC

Incident: On October 30th ~6:20 PM UTC – LottieFiles were notified that our popular open source npm package for the web player @lottiefiles/lottie-player…

— LottieFiles (@LottieFiles) October 31, 2024

In an X post on Oct. 31, LottieFiles said that the affected versions — Lottie Web Player 2.0.5, 2.0.6, and 2.0.7 — were released on Oct. 30, prompting immediate concerns after multiple user reports surfaced about strange code injections. In response to the threat, LottieFiles released a new version, 2.0.8, reverting to the secure code.

“A large number of users using the library via third-party CDNs without a pinned version were automatically served the compromised version as the latest release.”

LottieFiles

You might also like: Web3 anti-scam sleuth uncovers phishing attack that drained $4.2m using a malicious opcode

For those unable to update, LottieFiles recommends informing end users about potential fraudulent wallet connection prompts associated with the Lottie-player. Users may also opt to remain on version 2.0.4 to avoid risk.

LottieFiles warned that applications using the compromised npm package may inadvertently prompt users to connect their crypto wallets, opening avenues for potential theft. The developer account linked to the malicious uploads has been stripped of access, and related tokens have been revoked to halt any further unauthorized activity, the firm added, though the full extent of the attack remains unknown.

Read more: GitHub repository exposed Binance’s internal passwords and code

Source

admin 20206 posts 0 comments
You might also like More from author

Leave A Reply

Your email address will not be published.