Criminals attempt to steal crypto currency via malware in popular animation tool
A popular animation tool called Lottie Player has been infected by cybercriminals with malicious code. This created a supply chain attack, through which the attackers attempted to extort cryptocurrency from victims.
The problem was discovered on Oct. 30, when several major cryptocurrency platforms saw a massive amount of pop-ups asking users to link their wallets, Coinpedia writes . It soon emerged that cybercriminals had broken into the GitHub account of LottieFiles, a company that creates animation tools used by Disney, Spotify and Apple, among others. The criminals had stolen a software engineer's login credentials, which they used to add rogue code to Lottie Player's npm package.
This rogue code caused users to see pop-ups in popular and trusted crypto applications. Those who responded to the request to link their wallet were redirected to Ace Drainer, a tool used to steal crypto currencies. How many victims were affected and how much money was stolen is not clear.
LottieFiles has since removed the rogue versions and released a new, secure version, writes LottieFiles co-founder and -cto Nattu Adnan on GitHub. Developers who do not receive the update automatically are advised to upgrade to version 2.0.8.
Translated with DeepL.com (free version)
source:
https://tweakers.net/nieuws/228216/criminelen-proberen-cryptovaluta-te-stelen-via-malware-in-populaire-animatietool.html
LePlebRoyale / Le Pleb Royale - SF
npub1cw…k70dv
2024-11-04 03:02:29
Author Public Key
npub1cwzduskqu6yuxjs2a75uptj3vzfa84gv5q3xlkcpzs6usjfey24qvk70dvPublished at
2024-11-04 03:02:29Event JSON
{
"id": "ca7531d9e61e337813730826857f759485c2ae32cc495fde02cafb2808ba4d9b",
"pubkey": "c384de42c0e689c34a0aefa9c0ae516093d3d50ca0226fdb011435c8493922aa",
"created_at": 1730689349,
"kind": 1,
"tags": [
[
"r",
"https://tweakers.net/nieuws/228216/criminelen-proberen-cryptovaluta-te-stelen-via-malware-in-populaire-animatietool.html"
]
],
"content": "Criminals attempt to steal crypto currency via malware in popular animation tool\n\nA popular animation tool called Lottie Player has been infected by cybercriminals with malicious code. This created a supply chain attack, through which the attackers attempted to extort cryptocurrency from victims.\nThe problem was discovered on Oct. 30, when several major cryptocurrency platforms saw a massive amount of pop-ups asking users to link their wallets, Coinpedia writes . It soon emerged that cybercriminals had broken into the GitHub account of LottieFiles, a company that creates animation tools used by Disney, Spotify and Apple, among others. The criminals had stolen a software engineer's login credentials, which they used to add rogue code to Lottie Player's npm package.\nThis rogue code caused users to see pop-ups in popular and trusted crypto applications. Those who responded to the request to link their wallet were redirected to Ace Drainer, a tool used to steal crypto currencies. How many victims were affected and how much money was stolen is not clear.\nLottieFiles has since removed the rogue versions and released a new, secure version, writes LottieFiles co-founder and -cto Nattu Adnan on GitHub. Developers who do not receive the update automatically are advised to upgrade to version 2.0.8.\n\nTranslated with DeepL.com (free version)\n\nsource:\nhttps://tweakers.net/nieuws/228216/criminelen-proberen-cryptovaluta-te-stelen-via-malware-in-populaire-animatietool.html",
"sig": "27c0ca7688d23ba49dca95f95fa0c634c56153eb754cded6b9fc22b5931a94b7a3ca4d2445d7176a28275e930eb97c8924b15d9fa9d7d91e7864a2deac030f41"
}