Slow Mist Cosine: Recommended to clear browser cache to eliminate Ledger malicious code

The founder of SlowMist, Yu Xian, posted on social media regarding the Ledger vulnerability. 1. The poisoning problem of the Ledger module ledgerhq/connect-kit has been basically resolved, but the poisoned code may still be cached in the browser. If not sure, be sure to clear the browser cache (including the built-in browser cache in the wallet app); 2. Users must confirm the content of each unsigned transaction in the wallet multiple times; 3. The Ledger wallet itself is not affected; 4. The details of this supply chain attack are intriguing, and such hunters are not rare in this dark forest; 5. Tether acted in a timely manner and froze the USDT profits from phishing. In comparison, USDC continues to ignore the issue.

Ledger Vulnerability

Comments

All Comments

Recommended for you

Cointime's Evening Highlights for May 24th

1. CryptoPunks Launches “Super Punk World” Digital Avatar Series
Pudgy Penguins and Lotte strategically cooperate to expand into the Korean market, and the floor price rose by 3.1% on the 7th

The NFT series "Pudgy Penguins" has recently announced a strategic partnership with South Korean retail and entertainment giant Lotte Group on the X platform to expand its market in South Korea and surrounding areas. More information will be announced in the future. According to CoinGecko data, the floor price of Pudgy Penguins is currently 11.8 ETH, with a 7-day increase of 3.1%.
CryptoPunks Launches “Super Punk World” Digital Avatar Series

Blue-chip NFT project CryptoPunks announced the launch of "Super Punk World" on X platform, which is the project's first release of 500 digital avatars inspired by the iconic CryptoPunks features and combined with Super Cool World attributes. It is reported that the series may launch auctions in the future, and more details about the collection and auction of this series will be announced soon.
Cointime精选 ·

‘We’re just scratching the surface’ of crypto and AI — Microsoft exec

The symbiotic relationship between AI and crypto is still in its nascent stages, according to tech execs.
Cointime精选 ·

Big miners pose a growing existential threat to Bitcoin

As of May, AntPool and Foundry USA controlled more than 50% of Bitcoin's hash rate. That could become a problem for Bitcoin users in the near future.
Cointime精选 ·

Bybit’s Notcoin listing debacle, China firm’s profits up 12-fold after crypto buy: Asia Express

Bybit CEO apologises for Notcoin listing woes, Hong Kong crypto ETFs dissapoint, China firm's profits surge 1100% after crypto buy
Cointime精选 ·

Is onboarding too hard? Crypto adoption still faces major obstacles

Progress has been made in streamlining the Web3 onboarding process, but the flood of mainstream users has not yet arrived.
Drift Foundation: The governance mechanism is gradually being improved, and DRIFT is one of the components

The Drift Foundation stated on the X platform that the DRIFT token is a component of governance and a key element in empowering the community to shape the future. The governance mechanism is gradually improving, and more information will be announced soon.
Cointime精选 ·

What the DOJ’s First MEV Lawsuit Means for Ethereum

In a highly technical overview of an exploit that has since been patched, government prosecutors find that exploiting code is a crime. CoinDesk reached out to several experts in the Ethereum community to get their views on the case.
U.S. senators propose spending $32 billion to develop AI and build safeguards around it

A bipartisan group of four senators led by Chuck Schumer, the leader of the majority party in the United States, has proposed that Congress spend at least $32 billion over the next three years to develop artificial intelligence (AI) and establish safeguards around it.