• bitcoinBitcoin (BTC) $ 84,454.00
  • ethereumEthereum (ETH) $ 1,613.90
  • tetherTether (USDT) $ 0.999702
  • xrpXRP (XRP) $ 2.14
  • bnbBNB (BNB) $ 585.82
  • solanaSolana (SOL) $ 130.69
  • usd-coinUSDC (USDC) $ 0.999984
  • dogecoinDogecoin (DOGE) $ 0.164766
  • tronTRON (TRX) $ 0.255181
  • cardanoCardano (ADA) $ 0.641733
  • staked-etherLido Staked Ether (STETH) $ 1,613.42
  • wrapped-bitcoinWrapped Bitcoin (WBTC) $ 84,388.00
  • leo-tokenLEO Token (LEO) $ 9.40
  • avalanche-2Avalanche (AVAX) $ 19.87
  • chainlinkChainlink (LINK) $ 12.78
  • stellarStellar (XLM) $ 0.239969
  • suiSui (SUI) $ 2.25
  • shiba-inuShiba Inu (SHIB) $ 0.000012
  • usdsUSDS (USDS) $ 1.00
  • hedera-hashgraphHedera (HBAR) $ 0.166780
  • the-open-networkToncoin (TON) $ 2.83
  • bitcoin-cashBitcoin Cash (BCH) $ 350.92
  • wrapped-stethWrapped stETH (WSTETH) $ 1,934.47
  • litecoinLitecoin (LTC) $ 78.27
  • polkadotPolkadot (DOT) $ 3.70
  • hyperliquidHyperliquid (HYPE) $ 15.55
  • binance-bridged-usdt-bnb-smart-chainBinance Bridged USDT (BNB Smart Chain) (BSC-USD) $ 0.998386
  • bitget-tokenBitget Token (BGB) $ 4.30
  • pi-networkPi Network (PI) $ 0.736155
  • ethena-usdeEthena USDe (USDE) $ 0.999232
  • wethWETH (WETH) $ 1,610.09
  • whitebitWhiteBIT Coin (WBT) $ 27.73
  • moneroMonero (XMR) $ 204.81
  • wrapped-eethWrapped eETH (WEETH) $ 1,718.20
  • uniswapUniswap (UNI) $ 5.39
  • okbOKB (OKB) $ 53.17
  • pepePepe (PEPE) $ 0.000007
  • daiDai (DAI) $ 0.999787
  • coinbase-wrapped-btcCoinbase Wrapped BTC (CBBTC) $ 84,515.00
  • aptosAptos (APT) $ 4.86
  • gatechain-tokenGate (GT) $ 22.56
  • ondo-financeOndo (ONDO) $ 0.862175
  • tokenize-xchangeTokenize Xchange (TKX) $ 33.79
  • nearNEAR Protocol (NEAR) $ 2.13
  • susdssUSDS (SUSDS) $ 1.05
  • internet-computerInternet Computer (ICP) $ 5.06
  • blackrock-usd-institutional-digital-liquidity-fundBlackRock USD Institutional Digital Liquidity Fund (BUIDL) $ 1.00
  • crypto-com-chainCronos (CRO) $ 0.085713
  • ethereum-classicEthereum Classic (ETC) $ 15.50
  • mantleMantle (MNT) $ 0.697254
  • ethena-staked-usdeEthena Staked USDe (SUSDE) $ 1.16
  • aaveAave (AAVE) $ 141.28
  • bittensorBittensor (TAO) $ 241.25
  • render-tokenRender (RENDER) $ 3.84
  • vechainVeChain (VET) $ 0.022874
  • kaspaKaspa (KAS) $ 0.073789
  • cosmosCosmos Hub (ATOM) $ 4.20
  • lombard-staked-btcLombard Staked BTC (LBTC) $ 84,192.00
  • fasttokenFasttoken (FTN) $ 4.05
  • first-digital-usdFirst Digital USD (FDUSD) $ 0.995641
  • ethenaEthena (ENA) $ 0.311625
  • official-trumpOfficial Trump (TRUMP) $ 8.28
  • filecoinFilecoin (FIL) $ 2.52
  • polygon-ecosystem-tokenPOL (ex-MATIC) (POL) $ 0.184027
  • algorandAlgorand (ALGO) $ 0.184346
  • sonic-3Sonic (prev. FTM) (S) $ 0.495852
  • celestiaCelestia (TIA) $ 2.46
  • arbitrumArbitrum (ARB) $ 0.303750
  • jupiter-perpetuals-liquidity-provider-tokenJupiter Perpetuals Liquidity Provider Token (JLP) $ 3.79
  • solv-btcSolv Protocol SolvBTC (SOLVBTC) $ 84,310.00
  • fetch-aiArtificial Superintelligence Alliance (FET) $ 0.506350
  • kucoin-sharesKuCoin (KCS) $ 10.38
  • xdce-crowd-saleXDC Network (XDC) $ 0.077533
  • makerMaker (MKR) $ 1,371.31
  • optimismOptimism (OP) $ 0.683272
  • jupiter-exchange-solanaJupiter (JUP) $ 0.386766
  • binance-staked-solBinance Staked SOL (BNSOL) $ 136.24
  • story-2Story (IP) $ 4.00
  • flare-networksFlare (FLR) $ 0.016756
  • nexoNEXO (NEXO) $ 1.03
  • usdt0USDT0 (USDT0) $ 1.00
  • bonkBonk (BONK) $ 0.000013
  • quant-networkQuant (QNT) $ 67.88
  • binance-peg-wethBinance-Peg WETH (WETH) $ 1,610.99
  • worldcoin-wldWorldcoin (WLD) $ 0.749953
  • blockstackStacks (STX) $ 0.617330
  • eosEOS (EOS) $ 0.617151
  • kelp-dao-restaked-ethKelp DAO Restaked ETH (RSETH) $ 1,675.28
  • binance-bridged-usdc-bnb-smart-chainBinance Bridged USDC (BNB Smart Chain) (USDC) $ 0.999442
  • sei-networkSei (SEI) $ 0.173408
  • dexeDeXe (DEXE) $ 14.79
  • paypal-usdPayPal USD (PYUSD) $ 1.00
  • fartcoinFartcoin (FARTCOIN) $ 0.829561
  • polygon-bridged-usdt-polygonPolygon Bridged USDT (Polygon) (USDT) $ 0.999818
  • tether-goldTether Gold (XAUT) $ 3,239.74
  • injective-protocolInjective (INJ) $ 8.08
  • curve-dao-tokenCurve DAO (CRV) $ 0.597901
  • rocket-pool-ethRocket Pool ETH (RETH) $ 1,819.10
  • mantra-daoMANTRA (OM) $ 0.812953
  • jasmycoinJasmyCoin (JASMY) $ 0.015715
  • the-graphThe Graph (GRT) $ 0.079581
  • solv-protocol-solvbtc-bbnSolv Protocol xSolvBTC (XSOLVBTC) $ 84,133.00
  • movementMovement (MOVE) $ 0.304172
  • immutable-xImmutable (IMX) $ 0.414378
  • wbnbWrapped BNB (WBNB) $ 585.70
  • pax-goldPAX Gold (PAXG) $ 3,243.12
  • usual-usdUsual USD (USD0) $ 0.997855
  • theta-tokenTheta Network (THETA) $ 0.712497
  • arbitrum-bridged-wbtc-arbitrum-oneArbitrum Bridged WBTC (Arbitrum One) (WBTC) $ 84,521.00
  • heliumHelium (HNT) $ 3.67
  • lido-daoLido DAO (LDO) $ 0.733260
  • galaGALA (GALA) $ 0.014564
  • the-sandboxThe Sandbox (SAND) $ 0.259695
  • bittorrentBitTorrent (BTT) $ 0.00000064
  • mantle-staked-etherMantle Staked Ether (METH) $ 1,713.72
  • chain-2Onyxcoin (XCN) $ 0.018972
  • usdx-money-usdxStables Labs USDX (USDX) $ 0.999065
  • jupiter-staked-solJupiter Staked SOL (JUPSOL) $ 143.42
  • iotaIOTA (IOTA) $ 0.163557
  • msolMarinade Staked SOL (MSOL) $ 167.46
  • kaiaKaia (KAIA) $ 0.099802
  • walrus-2Walrus (WAL) $ 0.464046
  • raydiumRaydium (RAY) $ 1.95
  • flokiFLOKI (FLOKI) $ 0.000059
  • bitcoin-svBitcoin SV (BSV) $ 28.34
  • pancakeswap-tokenPancakeSwap (CAKE) $ 1.90
  • flowFlow (FLOW) $ 0.352084
  • jito-governance-tokenJito (JTO) $ 1.71
  • tezosTezos (XTZ) $ 0.507438
  • honey-3Honey (HONEY) $ 0.999162
  • pendlePendle (PENDLE) $ 3.24
  • coredaoorgCore (CORE) $ 0.521758
  • zcashZcash (ZEC) $ 32.38
  • decentralandDecentraland (MANA) $ 0.271333
  • renzo-restaked-ethRenzo Restaked ETH (EZETH) $ 1,687.86
  • true-usdTrueUSD (TUSD) $ 0.997417
  • spx6900SPX6900 (SPX) $ 0.519392
  • pumpbtcpumpBTC (PUMPBTC) $ 83,234.00
  • pyth-networkPyth Network (PYTH) $ 0.131813
  • ethereum-name-serviceEthereum Name Service (ENS) $ 14.40
  • beldexBeldex (BDX) $ 0.068523
  • sonic-bridged-usdc-e-sonicSonic Bridged USDC.e (Sonic) (USDC.E) $ 0.999985
  • bridged-usdc-polygon-pos-bridgeBridged USDC (Polygon PoS Bridge) (USDC.E) $ 0.999984
  • kavaKava (KAVA) $ 0.421767
  • dogwifcoindogwifhat (WIF) $ 0.456641
  • telcoinTelcoin (TEL) $ 0.004769
  • ondo-us-dollar-yieldOndo US Dollar Yield (USDY) $ 1.10
  • bitcoin-avalanche-bridged-btc-bAvalanche Bridged BTC (Avalanche) (BTC.B) $ 84,279.00
  • grassGrass (GRASS) $ 1.55
  • dydx-chaindYdX (DYDX) $ 0.555961
  • apenftAPENFT (NFT) $ 0.00000043
  • berachain-beraBerachain (BERA) $ 3.92
  • binance-peg-dogecoinBinance-Peg Dogecoin (DOGE) $ 0.164609
  • clbtcclBTC (CLBTC) $ 84,183.00
  • reserve-rights-tokenReserve Rights (RSR) $ 0.007413
  • solayerSolayer (LAYER) $ 1.94
  • thorchainTHORChain (RUNE) $ 1.16
  • usdbUSDB (USDB) $ 0.999531
  • hashnote-usycHashnote USYC (USYC) $ 1.08
  • stakewise-v3-osethStakeWise Staked ETH (OSETH) $ 1,686.67
  • elrond-erd-2MultiversX (EGLD) $ 13.99
  • ecasheCash (XEC) $ 0.000020
  • ousgOUSG (OUSG) $ 110.66
  • mantle-restaked-ethMantle Restaked ETH (CMETH) $ 1,715.55
  • tbtctBTC (TBTC) $ 83,959.00
  • resolv-usrResolv USR (USR) $ 0.999897
  • neoNEO (NEO) $ 5.28
  • olympusOlympus (OHM) $ 22.56
  • compound-governance-tokenCompound (COMP) $ 41.06
  • starknetStarknet (STRK) $ 0.126200
  • axie-infinityAxie Infinity (AXS) $ 2.28
  • conflux-tokenConflux (CFX) $ 0.070284
  • chilizChiliz (CHZ) $ 0.037564
  • stargate-bridged-usdc-berachainStargate Bridged USDC (Berachain) (USDC.E) $ 1.00
  • virtual-protocolVirtuals Protocol (VIRTUAL) $ 0.545800
  • ubtcuBTC (UBTC) $ 77,106.00
  • aerodrome-financeAerodrome Finance (AERO) $ 0.437840
  • arweaveArweave (AR) $ 5.38
  • l2-standard-bridged-weth-baseL2 Standard Bridged WETH (Base) (WETH) $ 1,614.86
  • mantle-bridged-usdt-mantleMantle Bridged USDT (Mantle) (USDT) $ 0.998436
  • super-oethSuper OETH (SUPEROETHB) $ 1,609.69
  • apecoinApeCoin (APE) $ 0.427850
  • arbitrum-bridged-weth-arbitrum-oneArbitrum Bridged WETH (Arbitrum One) (WETH) $ 1,616.09
  • wormholeWormhole (W) $ 0.072053
  • binance-peg-busdBinance-Peg BUSD (BUSD) $ 1.00
  • aioz-networkAIOZ Network (AIOZ) $ 0.276366
  • roninRonin (RON) $ 0.519524
  • matic-networkPolygon (MATIC) $ 0.184294
  • terra-lunaTerra Luna Classic (LUNC) $ 0.000059
  • trust-wallet-tokenTrust Wallet (TWT) $ 0.771109
  • usddUSDD (USDD) $ 0.999616
  • based-brettBrett (BRETT) $ 0.032242
  • fraxFrax (FRAX) $ 0.999519
  • saros-financeSaros (SAROS) $ 0.121772
  • pudgy-penguinsPudgy Penguins (PENGU) $ 0.005046
  • infrared-beraInfrared Bera (IBERA) $ 3.97
  • beam-2Beam (BEAM) $ 0.005942
  • justJUST (JST) $ 0.031330
  • plumePlume (PLUME) $ 0.154406
  • wemix-tokenWEMIX (WEMIX) $ 0.738000
Bitcoin

SaaS animation platform LottieFiles alerts users to crypto threats

By admin
0 31

SaaS animation platform LottieFiles alerts users to crypto threats

LottieFiles revealed a supply chain compromise in which malicious code could lure users into connecting crypto wallets, potentially leading to asset theft.

LottieFiles, a platform that enables designers and developers to create animations, has issued a warning regarding a security breach involving its npm package, which may expose users to malicious code designed to compromise crypto wallets.

Incident Response for Recently Infected Lottie-Player versions 2.05, 2.06, 2.0.7

Comm Date/Time: Oct 31st, 2024 04:00 AM UTC

Incident: On October 30th ~6:20 PM UTC – LottieFiles were notified that our popular open source npm package for the web player @lottiefiles/lottie-player…

— LottieFiles (@LottieFiles) October 31, 2024

In an X post on Oct. 31, LottieFiles said that the affected versions — Lottie Web Player 2.0.5, 2.0.6, and 2.0.7 — were released on Oct. 30, prompting immediate concerns after multiple user reports surfaced about strange code injections. In response to the threat, LottieFiles released a new version, 2.0.8, reverting to the secure code.

“A large number of users using the library via third-party CDNs without a pinned version were automatically served the compromised version as the latest release.”

LottieFiles

You might also like: Web3 anti-scam sleuth uncovers phishing attack that drained $4.2m using a malicious opcode

For those unable to update, LottieFiles recommends informing end users about potential fraudulent wallet connection prompts associated with the Lottie-player. Users may also opt to remain on version 2.0.4 to avoid risk.

LottieFiles warned that applications using the compromised npm package may inadvertently prompt users to connect their crypto wallets, opening avenues for potential theft. The developer account linked to the malicious uploads has been stripped of access, and related tokens have been revoked to halt any further unauthorized activity, the firm added, though the full extent of the attack remains unknown.

Read more: GitHub repository exposed Binance’s internal passwords and code

Source

admin 8134 posts 0 comments
You might also like More from author

Leave A Reply

Your email address will not be published.