
Injective says no funds at risk after npm packages backdoored to steal wallet keys
Story
Injective has dismissed concerns that user funds were compromised after attackers planted wallet-key-stealing code in 18 of its official npm developer packages. Meanwhile, security firms warn that the attack exposed the private keys and seed phrases that passed through the software. What happened to Injective? The…