A significant supply chain attack compromised the XRPL (Ripple) NPM package, introducing malicious code that steals cryptocurrency private keys. Detected on April 21, 2025, the attack affected thousands of applications. Users are advised to check for unauthorized connections and update to clean versions. The incident underscores rising threats to cryptocurrency infrastructure and emphasizes security audits for dependent systems.
New Phantom Stealer Campaign Hits Windows Machines Through ISO Mounting
Researchers have uncovered a sophisticated phishing campaign originating in Russia that deploys the Phantom information-stealing malware via malicious ISO files. The attack, dubbed “Operation MoneyMount-ISO,”
