DEFISECURITY

Ledger experiences major security breach, numerous DApps affected, SlowMist: Do not operate, wait for updates from all parties

share
Ledger experiences major security breach, numerous DApps affected, SlowMist: Do not operate, wait for updates from all parties

Table of Contents

Ledger Module Hijacked

Cybersecurity firm SlowMist's founder, Yu Xian, tweeted on the evening of the 14th that the Ledger module was hijacked in the supply chain and tampered with. Many DApps rely on the affected Ledger Connect Kit. The extent of the impact is not yet clear, and users should exercise caution when executing DApp operations.

Frontends including Balancer, Zapper, and Sushi are affected. Permission querying tool Revoke.cash has temporarily shut down its website.

Ledger: Delete Malicious Versions, Avoid Interacting with Any DApp Temporarily

In a subsequent tweet, Ledger stated that they have identified and removed the malicious versions of the Ledger Connect Kit. They advised users to avoid interacting with any DApp temporarily. Ledger hardware devices and Ledger Live are not affected, and a comprehensive incident report will be provided later.

MetaMask: Will Release Fix

MetaMask recommends users to download and enable the Blockaid extension in response to this incident. The MetaMask Portfolio team has devised a fix that will be released shortly.

Yu Xian mentioned that the repair efforts from all parties are faster than expected, and the crisis should have subsided. However, he also advised that it is best to refrain from any operations at the moment and wait quietly for the repairs to be completed.