Targeting NPM is an increasingly popular method of launching supply chain attacks for cybercriminals, primarily because of ...

A malicious actor used a compromised Ripple dev account to publish commits to NPM The commits would grant access to people's ...

xrpl.js is a popular JavaScript API for interacting with the XRP Ledger blockchain, also called the Ripple Protocol, a ...

The recommended Ripple cryptocurrency NPM JavaScript library named "xrpl.js" was compromised to steal XRP wallet seeds and ...

Software security firm Aikodo has alerted XRP Ledger developers to a vulnerability in the XRPL software development kit (SDK) ...

Ripple CTO David Schwartz warns users about compromised xrpl.js package that could steal private keys. The issue affects ...

Ripple's xrpl.js package breach threatens DeFi wallets on XRP. No major thefts reported, and Ripple has deprecated the compromised version.

A security crisis was avoided after a hacker exploited a developer’s access token to inject malicious code into a toolkit ...

The issue only affects versions of Node Package Manager (NPM), a site where developers share reusable code for projects.

On April 22, the XRP Ledger Foundation issued an urgent security warning regarding a critical vulnerability in its official ...