A supply chain attack on Ledger's Connect Kit library has compromised the security of various decentralized applications (dApps) and led to the draining of funds from users' wallets. The attack, which affected multiple dApps using Ledger connectors, prompted warnings to avoid interacting with any dApps. Ledger has confirmed the attack began due to a former employee falling victim to a phishing attack. Tether froze the wallet of the Ledger library exploiter, and the exploit led to the theft of at least $484K in assets. Many dApps, including SushiSwap and OpenSea, temporarily disabled Ledger Connect support. The exploit has raised concerns about the security of hardware wallets and the safety of digital assets.
Apparently theres 3 contracts now 2 confirmed and a 3rd potential @NftTrader Trader contract draining people https://t.co/Izm4khVDHl connect wallet Search by Authorized Spender Contract 0x13d8faF4A690f5AE52E2D2C52938d1167057B9af 0x657E383EdB9A7407E468acBCc9Fe4C9730c7C275… https://t.co/K0Uv7H3vow
I feel awful for those affected by the NFTTrader hack. I used to use the site early on in my NFT journey. I'm fortunate that I practice wallet hygiene and revoke permissions on my wallets regularly. But know that's not something everyone does. This is a site that I personally…
Seems like NFT Trader was hacked. Head to https://t.co/baaCfsq9gQ and remove permissions, you can find their authorized spender at these addresses when you search, and it's all by collection. 0x657E383EdB9A7407E468acBCc9Fe4C9730c7C275 0x13d8faF4A690f5AE52E2D2C52938d1167057B9af… https://t.co/pUzppXeFZj
If you ever used @NftTrader, (I haven’t) Make sure to remove approvals for ALL of their contracts including batch
Man imagine if the ledger hack coincided with this NFTtrader hack. People will go to https://t.co/EDCI9S7Q9l to revoke access to NFTtrader only to get hit by the ledger exploit. It’s a dangerous world here in web3, always be vigilant.
the people I've spoken with who were robbed haven't used NFT Trader for many months. very old permissions exploited here.
Hey @blur_io @BendDAO and @ParallelFi Please alert your users to revoke permissions to the NFTTrader contract. If they withdraw their assets from your platforms into a vulnerable wallet, it will get drained (likely immediately).
Hearing about a hack going on right now involving NFTTrader. If you ever used the site, you should revoke permissions immediately. I believe it's safe to use https://t.co/PERs2Ukfpr again after the hack from earlier this week with Ledger's library. But DYOR in that regard. You…
Only the OGs in the space have interacted with NFTtrader before. Which makes it even more painful. Sorry to everyone who was a victim.
Hearing about a hack going on right now involving NFTTrader. If you ever used the site, you should use https://t.co/PERs2Ukfpr immediately. I believe it's safe to use again after the hack from earlier this week with Ledger's library. Be safe friends.
.@NftTrader Trader contract draining people https://t.co/Izm4khVDHl connect wallet Search by Authorized Spender Contract 0x13d8faF4A690f5AE52E2D2C52938d1167057B9af and 0x657E383EdB9A7407E468acBCc9Fe4C9730c7C275 Revoke that shit https://t.co/yaU8ZFlS68
Hate to wake up to another massive hack in the space. Please everyone make sure your high value assets are in wallets which have NO APPROVALS for any dapps. Cold, vault, whatever you want to call them. Just make sure no dapp has access to any tokens within them!!
Due to a reentrancy issue, @NftTrader appears to have been exploited. Please revoke approval for the following addresses ASAP: 0x13d8faf4a690f5ae52e2d2c52938d1167057b9af 0xc310e760778ecbca4c65b6c559874757a4c4ece0
FUCK @NftTrader its so fucking bad .... revoke right now!!
Seems like NFT Trader was hacked. Head to https://t.co/baaCfsq9gQ and remove permissions, you can find their authorized spender at these addresses when you search, and it's all by collection. 0x657E383EdB9A7407E468acBCc9Fe4C9730c7C275 0x13d8faF4A690f5AE52E2D2C52938d1167057B9af… https://t.co/9E5cC0pxMk
Seems like NFT Trader was hacked. Head to https://t.co/baaCfsq9gQ and remove permissions, you can find their authorized spender at this address when you search, and it's all by collection. 0x657E383EdB9A7407E468acBCc9Fe4C9730c7C275 60 apes and mutants so far including blue… https://t.co/pjPVZ5ZBP5
HOLY SHYT huge exploit on NFT TRADER Omgggggg REVOKE ASAP!!!!! Massive drain Jesus lord 😭😭😭😭 this is so sad to see. Many familiar faces https://t.co/ucYs7sRalq
🚨Dozens of apes are being drained via an approval for NFTTrader 🚨 Revoke any open approvals to NFTTrader (and others just to be safe) We'll update as soon as we know more. But if you have any apes in lending protocols and have ever used NFTTrader, revoke approvals to…
Ledger hacker basically got $500K by compromising majority of dApps on ETH. Ape hacker got $2.6M+ worth of NFTs through an old contract people forgot about. Man this space really sucks huh.
🚨Dozens of apes are being drained via an approval for NFTTrader 🚨 Revoke any open approvals to NFT trading sites ASAP We'll update as soon as we know more. But if you have any apes in lending protocols and have ever used NFTTrader, revoke approvals before withdrawing!
.@NftTrader Trader contract draining people https://t.co/Izm4khVDHl connect wallet Search by Authorized Spender Contract 0x13d8faF4A690f5AE52E2D2C52938d1167057B9af Revoke that shit https://t.co/rfBqXa7BRl
URGENT: Apes are being drained. Revoke all of your permissions. DO NOT APPROVE UNLIMITED SPEND. EVER. https://t.co/qKucQKcEyC
🚨🚨🚨🚨 RED ALERT If you've ever used NFT Trader in the past, revoke approval to their contract ASAP (0x13d8faF4A690f5AE52E2D2C52938d1167057B9af) So far already 37 BAYC and 13 MAYC have already been drained to this address https://t.co/KBdpkb8woX
Ledger Exploit Elicits Mixed Reactions From #Crypto Sphere; Dapps and #Tether Respond Promptly to Breach https://t.co/QpLwerOY9C
Hundreds of thousands of dollars in crypto stolen after Ledger code poisoned https://t.co/qHACZ0iXbu
Since late November, Angel Drainer, the tool used in the Ledger hack, has been leveraging a smart contract to modify static file domains https://t.co/bc926h9GxA
.@Ledger’s recent security breach has raised serious concerns. How secure are our digital assets in hardware wallets? https://t.co/4gd0222Yxt
Connect Kit Exploit Sparks Criticism of Ledger's Security Framework; #Crypto Dapps and Tether Respond Promptly to Breach https://t.co/QpLwerOY9C
Disaster almost struck DeFi, with an exploit that could have drained almost every wallet. Crypto... @nlw discuss the hack and all of the news of the week. 9 AM EST https://t.co/DnchryY01H
Crypto hardware wallet maker Ledger faces a major software breach, resulting in the theft of $600,000+ worth of virtual assets. Read details here: https://t.co/gD2Q0YlYK4 #cybersecurity #cryptocurency #hacking
Ledger announced that it had completely removed the exploit and replaced the hacked library https://t.co/65xlVbp7SV
🚨SlowMist Security Alert🚨 After a thorough analysis of the @Ledger Connect Kit supply chain attack, the SlowMist security team identified that the attack was orchestrated by the well-known phishing group called #AngelDrainer. Additionally, the Angel Drainer phishing group…
🧐The entire process of supply chain attacks on @Ledger Connect Kit. The analysis of this article once again emphasizes that #DeFi security is not just contract security, but a whole.👇 https://t.co/GzBnKwgoiy
Crypto wallet maker Ledger updates Connect Kit, saying a former employee "fell victim to a phishing attack" that let a hacker insert malicious code (@stacyannj / Decrypt) https://t.co/EGAFgvDIUI 📫 Subscribe: https://t.co/OyWeKSRpIM https://t.co/VQE03dAvfw
remember when there was a Ledger exploit? Yeah That was like 8 hours ago lol
Remember the Ledger exploit? That was this morning
The DeFi ecosystem was hit by the Ledger Connect Attack today - a supply chain attack that compromised the front-end of dozens of dApps and prompted users to sign malicious contracts. But how did this happen? Let’s explore! https://t.co/rM1D2ZuLcB
Ledger later confirmed the attack began because “a former Ledger employee fell victim to a phishing attack." Read more: https://t.co/2rwjtJqlkA
ledger abuse D:< https://t.co/44Zoz5nQS3
ICYMI: Tether freezes wallet of Ledger library exploiter; Ledger provides more details https://t.co/U528GE6CZX
A hacker broke into Ledger’s connector library and grabbed at least $484,000 from different DApps. https://t.co/60GbjL2V6d
Ledger Library #Breach: #Crypto Experts Advise Halting Dapp Usage to Dodge Wallet Drainer https://t.co/vG63TnUOus
Supply Chain Attack Targeting Ledger Crypto Wallet Leaves Users Hacked https://t.co/5dT8bJ4lHm
A compromise of Ledger Connect Kit software led to hundreds of thousands of dollars being drained from users’ wallets https://t.co/NLHt2PQTMB
We are closely monitoring the ledger issue. We believe our Yield v2 app is not directly affected, but we would encourage ledger users to exercise caution until we have updated our app with all the relevant patches.
The latest crypto hack involved one of the industry’s top names in security: hardware wallet-maker Ledger https://t.co/MjyoRJh6ev
Woke up to a ledger compromised tweet. Rushed to check my NFT wallet only to discover my bored apes and mutant apes were gone. Thank you ledger for cleaning up my wallet 🙏🏼
The latest crypto hack involved one of the industry’s top names in security: hardware wallet-maker Ledger https://t.co/V82h8W1CPK
The latest crypto hack involved one of the industry’s top names in security: hardware wallet-maker Ledger https://t.co/YWH28dBYQX
Update on today’s @Ledger compromise: The malicious code has been removed & a solution has been implemented. No VeeFriends interfaces were impacted. Users should still remain vigilant & clear the application cache, and wait 24 hours before using any decentralized apps (dApps)…
ICYMI: Security issue in Ledger ConnectKit library affects multiple decentralized applications https://t.co/TTOhZRhWEt
The example interface at https://t.co/WHiAg3hIfG is safe from the recent Ledger dependency hack. No past versions of the interface included the vulnerable dependency and no code updates have been applied related to this issue. Both the v2 and v3 interfaces were reviewed and…
Ledger later confirmed the attack began because “a former Ledger employee fell victim to a phishing attack." Read more: https://t.co/6U0TNy7CiG
What happened today with the Ledger Connect Kit attack? Our honest thoughts and recommendations 🛡️ https://t.co/zvwxnaViEs
The Scroll bridge is safe to use. Scroll Bridge UI dependencies were updated at roughly 14:00 UTC in response to the Ledger supply chain attack. Please ensure you clear your browser cache before interacting with the Bridge. We are continuing to track this issue. If you have…
Big news in crypto of course is Ledger vulnerability. I asked the DeepNewz chat for specifics, and how to avoid exposure. What do you think of the answers? https://t.co/mjpfjjiV2V
Ledger hack is insanely bullish It means people value our coins Think about it 👉🧠
Ledger hack is insanely bullish It means people value crypto
Ledger wallet got hit by a supply chain attack, exploiting that their connect-kit-loader library. A phished credential token was enough to publish a newer version. It was automatically included and distributed further. Let's do a deep dive on how the drainer worked 👇🧵
Attention BEASTs: Our products and infrastructure remain unaffected by the recent ledger security issue. However, we advise against connecting your ledger wallets to decentralized apps for now. Don't forget our partnership with @wallet_guard – a great option for enhanced…
Attention BEASTs: Our products and infrastructure remain unaffected by the recent ledger security issue. However, we advise against connecting your ledger wallets to decentralized apps for now. Don't forget our partnership with @wallet_guard – a great option for enhanced…
A Ledger employee just got phished. DeFi users lost over $600k https://t.co/Md8gUkYs1p
today's ledger library attack is connected to "angel drainer". learn more about it in this @SlowMist_Team analysis. https://t.co/KrtOO8RFen https://t.co/FBPFsw80Id
We are aware of a compromise involving a popular NPM package this morning. We do not use the affected package across any of our products, however out of an abundance of caution we still recommend avoiding connection to any dapps (including ours) for the next 24 hours. https://t.co/kdY5DOcf7k
Funds are Safu The https://t.co/hxS1y4ia3w dapp is unaffected by this recent Ledger security incident. https://t.co/34JHjW3aVY
📢 @Ledger's swift response to the Connect Kit Breach raises questions about access control after a former employee's account leads to major vulnerability! Read more in our detailed article below. 🔒 👇 https://t.co/OCkUTuQj5U
I don’t feel safe ever using a @ledger. If you don’t believe it or don’t get it, I don’t have the time to try to convince you, sorry.
Tether freezes wallet of Ledger library exploiter; Ledger provides more details https://t.co/DEKLNdVV0E
Sushi's Chief Technology Officer @MatthewLilley has warned of an industry-wide exploit after the compromise of @Ledger's Connect Kit reportedly prompts users to connect a wallet via a pop-up, triggering a token drainer. https://t.co/Mn039pObCR https://t.co/1xJOOwuTDo
🚨WARNING: DeFi under threat: SushiSwap hit by exploit. Ledger connect kit vulnerability exposed Users are advised to avoid all dApp interactions as the exploit impacts a wide range of applications using ledger connectors. https://t.co/zMm71KzQBQ
NEWS: Ledger confirmed that a former employee fell victim to a phishing scam, leading to the attack https://t.co/iRSY3HKbOP
📣 Latest News: Decentralized applications pause Ledger Connect as exploit fix deployed #news #cryptonews #crypto
Ledger Exploit Endangers DeFi; Sushi Says ‘Do Not Interact With ANY dApps’ #DisruptiveTech https://t.co/BK3OKSteCx
quit with clarity on the ledger connectkit drama https://t.co/RWdXHySP0T
The compromise of hardware wallet maker @Ledger’s library on Thursday morning has led to multiple wallets being drained as well as confusion and panic in the crypto community about what’s safe to do. @httpsageyd reports https://t.co/gFiM9lXi1U
TL;DR of the @Ledger issue: A malicious version of the Ledger Connect SDK was pushed that caused a malicious Connect Wallet modal on top of the real modal. This is why MetaMask users (and all wallets) are still potentially affected by this, not just Ledger users. After… https://t.co/w3Tucx2dhQ
“- This morning CET, a former Ledger Employee fell victim to a phishing attack that gained access to their NPMJS account.” “Security will always prevail with the help of the whole ecosystem.” https://t.co/TgMhLkRnwI
A compromised version of @Ledger software has prompted a warning for crypto users to avoid interacting with dapps. https://t.co/lDfes2lU1M
The #Ledger exploiter is transferring funds to a new address and is swapping $USDC for $ETH. So far ~$150K assets moved. Previously he tested to mix some $ETH on @ChangeNOW_io . Ledger Exploiter Group address: https://t.co/sVmeLSaP6y https://t.co/KBFMblG38m
why anyone touches ledger after their massive data leak years ago is beyond me
📣 Latest News: Ledger attacker drained at least $484K #news #cryptonews #crypto
Don't interact with any dApps or connect your wallet to anything for the time being, including Revoke Cash.
Get in this spaces now! The ledger hack is affecting everything in defi. You need to be informed. https://t.co/bsGsenoO8A
Tether blocked the address of #LedgerExploiter 40 mins ago. https://t.co/4SS83UcCrK https://t.co/VwI6QYkw4E https://t.co/jtupm8VPkC
BREAKING 🚨🚨 Tether has frozen the Ledger exploiter address which contains $44k USDT. The exploiter still has over $400k worth of assets.
In light of a security concern associated with the Ledger Connect library, out of an abundance of caution, we've opted to temporarily halt the use of Ledger as a connection method for Flux. Our team is actively working to ensure Ledger's security before reinstating this… https://t.co/lo0KutOT3I
Been up for 5 minutes but here's my understanding: - A malicious ledger connectkit package was published to npm by a compromised privileged account. - this package gets hotloaded so it was immediately in use by most dapps that use connectkit (most dapps) - it has since been… https://t.co/OsdS19Oci7
There is an ongoing security vulnerability related to the Ledger Connect library, which is utilized by many web3 projects. To safeguard our users, we've temporarily suspended Ledger as a connection method for Ondo. We'll reinstate it as soon as we have confidence that it's… https://t.co/BKRzkz0FdS
Attention Art Blocks users! The software versions affected by @Ledger malware do not apply to Art Blocks. Your wallets are completely secure when connected to Art Blocks. 🎨 🔒 AB uses a version of Ledger connect kit that is unaffected by this issue.
Attack targeting @Ledger crypto wallet leaves users hacked https://t.co/op6u5MOeIC via @lorenzofb
Make sure to clear your cache and cookies before interacting with any dapps, if you see an extra wallet connect window pop up abort! https://t.co/BOt2Kno14g
As a reminder, practice good cold wallet hygiene by never directly interacting with dAPPs with your cold wallet and instead transfer out to hot wallets => completing the interaction and sending it back https://t.co/EcZTpcnNDt
Supply chain attack targeting Ledger crypto wallet leaves users hacked https://t.co/oRJ59cD5ch
NEW: Hackers have compromised the software library created by crypto company Ledger in a supply chain attack. The malicious version of the library was pushed to all Ledger users, who would give hackers control of their crypto if they accepted the push. https://t.co/2W3tQ4cRCJ
Dear Maker Community, Due to recent developments involving a malicious attack on a npm package used by many dApps, we strongly advise you to stay informed through official channels. Lastly, users must regularly verify with vault providers to secure their funds. Please be…
Supply chain attack on Ledger puts much of defi at risk December 14, 2023 https://t.co/wznvrsXj4L https://t.co/vSDIobNq3z
We have temporarily disabled Ledger Connect support on both @opensea and @openseapro until the @Ledger security incident is fully resolved. DO NOT connect to any dApps using Ledger Connect until further notice.
Discussing Ledger's security incident and getting a major update on web3 art! https://t.co/2q91T4wzb1
Dear Maker Community, Due to recent developments involving a malicious attack on a npm package used by many dApps, we strongly advise you to stay informed through dApp's official channels. Lastly, users must regularly verify with vault providers to secure their funds. Please be…
The two wallets associated with the Ledger hack are 0x65 and 0x41 (angel-drainer.eth) 👇
Web3 security researchers advised using extreme caution this morning as multiple dApps report exposure to a vulnerability in Ledger’s connect-kit. 🚨 The advice to users? Don’t do anything—even revoking allowances. Learn more below ⬇️ https://t.co/P4pGs6WrOx
We have temporarily disabled Ledger Connect support on both @opensea and @openseapro until the @Ledger security incident is resolved. DO NOT connect to any dApps until further notice.
A hacker attacked #Ledger and has stolen ~$484K assets. #LedgerExploiter transferred 4.334 $ETH to #AngelDrainer. And the #AngelDrainer is also receiving assets currently and holds $363K assets. https://t.co/ZG5SRlKBjW https://t.co/RK9aPyAjEE
most tweets about ledger are wrong here’s what you need to know: ALL ACTIVE ETHEREUM WALLETS ARE AT RISK don’t connect ANY ethereum/evm wallets to ANY apps until further notice doesn’t matter if it’s a ledger or not if you didn’t use your wallet today you’re safe
SushiSwap Chief Technical Officer Mathew Lilley has disclosed the compromise of a widely employed web3 connector within Ledger's delivery network https://t.co/TGundBOJO6
Looks like with Ledger disabled or not clicked, our frontend is safe. Ledger updated the file in CDN, so it is probably safe also. However, we turn ledger back on once it is clear that the hacker cannot replace the library again.
Why does Ledger even have a Connect Kit library? You should never connect your cold wallet to a DAPP.
It’s all over the timeline but in case you haven’t seen it, there’s an exploit in dApps & many seem to be affected. Recommendation is not to use anything & do nothing. No transactions, no buying or selling, no interacting with MM wallet or any other type. You can get drained.
$150 MILLION DOLLARS stolen using the @Ledger javascript injection vulnerability. This is insane!
Yoyo don’t use your ledgers. Confirmed vulnerability, stay tuned for updates. This has nothing to do with Ronin or Ronin wallet. It comes from Ledger’s side. https://t.co/wbZ0wqb8zr
The vulnerability with Ledger Connect Kit should be resolved now 🙏 This appears to have been an EVM-only exploit, but we can confirm Phantom users on dapps with compromised front-ends would have seen the proper warnings in our transaction preview.
Just cause I'm hearing a bit of mis-info on this: your Ledger has nothing to do with this vulnerability. A library which is part of Ledger's ecosystem has the vulnerability and any site can use this. Doesn't matter what wallet you're using.
The ledger issue is now fixed. To make sure you don't have the malicious library cached, go to https://t.co/MSVgii7Ufk and ensure the version is 1.1.8. If it's not, clear your cache. chrome- F12> Chrome Developer Tools > Application tab > Storage in left tree> Clear site data. https://t.co/BtNUiO4vXF
Ledger attack has been mitigated by Ledger, would recommend holding off on doing any heavy DeFi until later in the day to make sure the changes have propagated down, but should be in the clear now. Moral of the story: Check the txn you’re signing, it’s the only way to be sure
In case anyone needs to do anything critical with their ledger today, our ledger wallet plugin for Ape is completely independent of the affected ledger JS code https://t.co/5gFeJmxJT9
don’t even click anything right now — don’t touch your wallets — don’t revoke anything do nothing
What the hell is Ledger connect kit?
How can we be expected to trust @Ledger after what happened this morning?
don't click any twitter links you could get drained don't use any dApps you could get drained don't do anything just sit there and watch your breath or you too will get drained https://t.co/XtsoIjlnaY
Will be interesting to see whether the market, which already recovered a bit, shrugs this off within the next few hours. 'Stop Using Dapps': Ledger Library 'Compromised' With Wallet Drainer (via @decryptmedia) https://t.co/rEwzuPMnRf
"I learned my lesson with FTX, only cold storage from now on 😎 I'm gonna play it safe and put everything on my Ledger." *Ledger gets compromised* https://t.co/wb5owSLSGq
Wondering if you have been affected by the ledger exploit? You would have felt it immediately. Simplest explanation I can give: it would have been a transaction swap. you do one thing but the transaction popping up is draining your wallet - you would have sent all your coins
https://t.co/G9yuE2FaZa is confirmed safe from the Ledger supply chain attack. We checked both direct dependencies and subdependencies. You can confirm independently by cloning the repo, running ‘bun install -y’ and looking up “Ledger” in the generated yarn.lock file where you…
https://t.co/G9yuE2FaZa is confirmed safe from the Ledger supply chain attack. We check both direct dependencies and subdependencies. You can confirm independently by cloning the repo, running ‘bun install -y’ and looking up “Ledger” in the generated yarn.lock file where you…
🚨 ⚠️ 🚨 ⚠️ 🚨 ⚠️ Be Safe frens @Ledger, @RevokeCash, & others all compromised. experts currently advising everybody to “do nothing” https://t.co/I5hCwb9RO6
Crypto dumping on the news that some library by ledger is compromised Easy buy https://t.co/UnLdIyvhKn
ledger exploit nuking the crypto market as users are told not to interact with any dapps until further notice
What's happened with Ledger vulnerability. 👇 - Connect Kit (connect-kit) by Ledger was compromised. This Connect Kit is used by a lot of Dapps. - Metamask SDK also uses Connect Kit. - RabbitX does not use Ledger Connect Kit. We are evaluating if Metamask SDK is also at risk.
⚠️ URGENT ⚠️ Crypto developers are urging DeFi users to abstain from interacting with web3 dApps amid a serious exploit compromising Ledger's connector library. Ledger is yet to acknowledge the incident. Read More: https://t.co/vc6HBQ9Gun https://t.co/ndmBDirjVW
tl;dr- just DON'T interact with any apps right now using front-ends as long as you don't do that, you should be fine regardless of where your funds are stored at present
🚨🚨🚨 Just touch some grass please. Don't connect your wallets with any website at the moment. Don't do any transactions. https://t.co/dD36V3O7jO