The safety of cold crypto wallets is now in question following the cyberattack on Ledger, one of the popular cold crypto wallets, and the theft of $484,000 in digital currencies. Ledger explained that its security was breached as “a former employee falling victim to a phishing attack.”
As pointed out by blockchain analysts and confirmed by Ledger, hackers inserted a piece of malicious code into the GitHub library for Connect Kit, a javascript library widely used by the wallet platform.
Connect Kit enables decentralized finance (DeFi) protocols to connect with the hardware wallet. The nature of usability of the piece of code has now put several other DeFi platforms that use it at security risk. Sushi, Lido, Metamask, and Coinbase are only a few names using the Connect Kit.
Ledger has already confirmed that it has removed the malicious code. However, users are still at risk, as according to blockchain analysts, every protocol using Connect Kit needs to update their version manually.
UPDATE: The genuine Ledger Connect Kit 1.1.8 is now fully propagated. Ledger and WalletConnect can confirm that the malicious code was deactivated. You are now safe to use your Ledger Connect Kit. Reminder that that we always encourage clear signing.
— Ledger (@Ledger) December 14, 2023
“We worked swiftly, alongside our partner WalletConnect, to address the exploit, updating the NPMJS to remove and deactivate the malicious code within 40 minutes of discovery. This is a good example of the industry working swiftly together to address security challenges,” Ledger’s Chairman and CEO, Pascal Gauthier, wrote in a blog post.
Addressing the phishing attack on the former employee, he added: “This was an unfortunate isolated incident. It is a reminder that security is not static, and Ledger must continuously improve our security systems and processes.”
My personal commitment: Ledger will dedicate as much internal and external resources as possible to help the affected individuals recover their assets.
— Pascal Gauthier @Ledger (@_pgauthier) December 14, 2023
Raising Questions on the Cold Wallets’ Safety
Attacks on crypto exchanges and wallets are not new. Billions of dollars worth of crypto have been siphoned from these platforms. However, cryptocurrencies stored in cold wallet platforms are (or at least were) considered safe as these hardware platforms stay offline.
The latest attack on Ledger has now brought the risks against such cold crypto wallets to the surface.
Here is a list of dapps that may be affected by the @ledger hack! Do not interact at all with DEFI at all today! No app is safe regardless of whether you use a Ledger. pic.twitter.com/2ihbasF3R7
— Ran Neuner (@cryptomanran) December 14, 2023
“Ledger has engaged with authorities and is doing all we can to help as this investigation unfolds. Ledger will support affected users in helping to find this bad actor, bring them to justice, track the funds, and work with law enforcement to help recover stolen assets from the hacker,” Gauthier added.
The safety of cold crypto wallets is now in question following the cyberattack on Ledger, one of the popular cold crypto wallets, and the theft of $484,000 in digital currencies. Ledger explained that its security was breached as “a former employee falling victim to a phishing attack.”
As pointed out by blockchain analysts and confirmed by Ledger, hackers inserted a piece of malicious code into the GitHub library for Connect Kit, a javascript library widely used by the wallet platform.
Connect Kit enables decentralized finance (DeFi) protocols to connect with the hardware wallet. The nature of usability of the piece of code has now put several other DeFi platforms that use it at security risk. Sushi, Lido, Metamask, and Coinbase are only a few names using the Connect Kit.
Ledger has already confirmed that it has removed the malicious code. However, users are still at risk, as according to blockchain analysts, every protocol using Connect Kit needs to update their version manually.
UPDATE: The genuine Ledger Connect Kit 1.1.8 is now fully propagated. Ledger and WalletConnect can confirm that the malicious code was deactivated. You are now safe to use your Ledger Connect Kit. Reminder that that we always encourage clear signing.
— Ledger (@Ledger) December 14, 2023
“We worked swiftly, alongside our partner WalletConnect, to address the exploit, updating the NPMJS to remove and deactivate the malicious code within 40 minutes of discovery. This is a good example of the industry working swiftly together to address security challenges,” Ledger’s Chairman and CEO, Pascal Gauthier, wrote in a blog post.
Addressing the phishing attack on the former employee, he added: “This was an unfortunate isolated incident. It is a reminder that security is not static, and Ledger must continuously improve our security systems and processes.”
My personal commitment: Ledger will dedicate as much internal and external resources as possible to help the affected individuals recover their assets.
— Pascal Gauthier @Ledger (@_pgauthier) December 14, 2023
Raising Questions on the Cold Wallets’ Safety
Attacks on crypto exchanges and wallets are not new. Billions of dollars worth of crypto have been siphoned from these platforms. However, cryptocurrencies stored in cold wallet platforms are (or at least were) considered safe as these hardware platforms stay offline.
The latest attack on Ledger has now brought the risks against such cold crypto wallets to the surface.
Here is a list of dapps that may be affected by the @ledger hack! Do not interact at all with DEFI at all today! No app is safe regardless of whether you use a Ledger. pic.twitter.com/2ihbasF3R7
— Ran Neuner (@cryptomanran) December 14, 2023
“Ledger has engaged with authorities and is doing all we can to help as this investigation unfolds. Ledger will support affected users in helping to find this bad actor, bring them to justice, track the funds, and work with law enforcement to help recover stolen assets from the hacker,” Gauthier added.
#Crypto #Cold #Wallets #Safe #Ledger #Cites #Phishing #Attack #Hack
Source link