Close Menu
    Defi

    Crypto apps see malicious popups after Ace Drainer hacks animation library

    By No Comments2 Mins Read
    HI, Hacking hacker computer, digital code, ransomware attacks, malware, crime, hack

    30s Summary

    On October 30, multiple crypto applications were hit by a cyberattack through a compromised animation library update. Some decentralized finance apps, like 1inch and TEN Finance, displayed popups asking for wallet links, a tactic for stealing users’ details via software called “Ace Drainer”. Hackers targeted the Lottie Player library, utilized by apps and websites, including Apple, Spotify, and Disney, for animations. The compromised versions of the library have been removed by LottieFiles, the company owning the library, urging users to install the latest safe version. However, websites still running the affected versions could remain vulnerable.

    Full Article

    On October 30, a bunch of online crypto apps got hacked. The bad guys wormed their way in with some nasty code hidden in an update of a popular animation library that lots of apps use.

    A few decentralized finance apps, like 1inch and TEN Finance, started showing popups asking users to link their wallet. But that was just a trick to get users’ details for a crypto stealing software called “Ace Drainer,” according to a post by crypto security firm Blockaid.

    Wiz’s security boss, Gal Nagli, explained the hackers attacked the Lottie Player library, a really popular service that tons of apps and websites use for their animations. Even big names like Apple, Spotify, and Disney use this service.

    The crazy thing about this attack is that it literally just added a dodgy popup onto websites that otherwise seemed totally fine. Usually, hackers go after popular social media accounts and trick people into clicking on dodgy links.

    Jawish Hameed, the tech VP at LottieFiles, the company that makes the animation library, took to GitHub to let people know that they’d removed the affected versions of the library. He also recommended people install the latest version to keep safe.

    Hameed explained the hackers had managed to get into the GitHub account of one of LottieFiles’ top software engineers and sneak three nasty updates onto the library. But, they’ve since sorted out the issue and removed the compromised account access.

    Nagli warned that any website still using the affected versions of the library could still be at risk. He recommended users check which version of the library websites are using to make sure they’re safe — either 2.0.4 or the latest 2.0.8.

    As of now, LottieFiles hasn’t commented on the issue.

    Source: Cointelegraph

    Related Posts