A Web3 developer shared the unfortunate story of losing funds after accidentally making his wallet keys publicly available on the developer platform GitHub. On June 5, Brian Guan, co-founder of the ...

吴说获悉，据慢雾创始人余弦消息，@solana/web3.js 的 1.95.6 和 1.95.7 版本被发现存在供应链投毒问题，嵌入的后门代码会窃取用户私钥。虽然这两个版本仅存活了数小时便被移除，但已发生真实攻击事件。当前未在知名钱包中发现该风险，但可能影响到及时更新 ...

Malware-poisoned versions of the widely used JavaScript library @solana/web3.js were distributed via the npm package registry, according to an advisory issued Wednesday by project maintainer Steven ...

我第一反应就是不知道哪个调皮的基友又把zone给XSS了，马上打开开发者工具分析。 可是为什么乌云会从github加载js呢，并且还是从greatfire和纽约时报镜像加载。 第一反应是页面有xss或者js被劫持了，找了半天终于找到了，居然是 就会得到上面的js文件，每隔2秒 ...

DevDapp incentivizes the work of developers through $RAIR token rewards Developers will also receive tokens from RAIR's partners, including Sony's Soneium The system ...