The malicious code was detected today by the cybersecurity researcher. Maciej Mensfeld. East could having compromised dozens of crypto services and platforms, including dydx, one of the giants of the Decentralized Finance sector. DyDx quickly made it known that patches had been applied, however the threat appears serious and requires the utmost vigilance.
Cyber alert on the crypto ecosystem
Earlier in the day, computer security specialist Maciej Mensfeld of the cybersecurity company arrangereported that his investigations led him to discover a set of npm Multiple npm packages) potentially infected with malicious code.
Initially made open source by CEX (decentralized exchange) DyDx, this code exposed on GitHub by Mensfeld would contain enough to divert sensitive user information from the platforms where it would be deployed.
The ” npm single packagecontains a library Ethereal of smart contracts Y Typescript. It appears that it was originally made available by a DyDx employee. However, at the heart of this package is hidden malicious code whose purpose is to extract sensitive information from users to send it to a foreign IP address.
If the details have not yet been communicated, this package could have been implemented on more than 40 other crypto platforms.
The DyDx team has Let it know 2 hours after the alert that a correction had been made. The platform emphasized that user funds were not compromised, nor were smart contracts on the decentralized exchange.
Will you support the Bitcoin revolution? It’s up to you to jump on the crypto bandwagon! To do this, and begin to familiarize yourself with this exciting world, do not wait create an account on Binancethe reference Bitcoin and cryptocurrency exchange (trading link).