Injective Labs GitHub Compromise Pushes Wallet-Key-Stealing npm Packages
- Posted on July 10, 2026
- By The Hacker News
- 0 Views
- 1 min read
Injective Labs GitHub Compromise Pushes Wallet-Key-Stealing npm Packages
Unknown attackers compromised Injective Labs' GitHub repo to publish npm package 1.20.21, which steals wallet private keys and seed phrases.