Supply Chain Attack on Popular Animation Library Lottie-Player Targets Web3 Users
Penetration Testing
2024-10-31 22:38:14
收藏
In a sophisticated supply chain attack, malicious actors infiltrated the widely-used JavaScript library lottie-player, injecting code that opens a Web3 wallet connection prompt on legitimate websites. This prompt, if accepted...
The post Supply Chain Attack on Popular Animation Library Lottie-Player Targets Web3 Users appeared first on Cybersecurity News.
目录
最新
- Microsoft Urges TPM 2.0 for Windows 11 Upgrade as Win 10 Support Nears End
- Android 16 Beta Boosts Linux Terminal Storage with Dynamic Allocation
- Broadcom Backtracks: Reinstates Lower VMware Core Licensing After Backlash
- Linux Kernel 6.13 Reaches End-of-Life After Short 3-Month Support
- Cellebrite Android Zero-Day Exploit PoC Released: CVE-2024-53104
- Critical PyTorch Vulnerability CVE-2025-32434 Allows Remote Code Execution
- Billbug Group Targets Southeast Asia in Sophisticated Espionage Campaign
- Yokogawa Recorders Vulnerable to Attack Due to Insecure Default Settings