Beginners

Mitrade Insights is dedicated to providing investors with rich, timely and most valuable financial information to help investors grasp the market situation and find timely trading opportunities.

2021

Best News & Analysis Provider

FxDailyInfo

2022

Best Forex Educational Resources Global

International Business Magazine

Insights

News

Cryptocurrencies

XRP Ledger Compromised? Validator Warns Projects And Developers Of Critical Issues

Source Bitcoinist

An XRP Ledger (XRPL) validator has warned projects and developers that the network is compromised. He revealed some critical issues on the network, which put users and their funds at risk of an exploit.

Validator Warns That XRP Ledger is Compromised

In an X post, XRP Ledger validator Vet told the network’s developers and projects that use the XRPL js library not to update or use any version 4.2.1 or higher, as it has been compromised. He remarked that any project utilizing the newest version of XRPL is putting users and funds at risk of an attack from hackers.

Vet’s warning was in response to a post by Aikido Security, in which they stated that they had discovered a backdoor in the official XRP Ledger NPM package. The blockchain security firm added that this back door steals private keys and sends them to attackers. The affected versions are 4.2.1 and 4.2.4, so developers and projects should not upgrade to these versions.

Ripple Chief Technology Officer (CTO) David Schwartz also commented on the Ledger situation, noting that it was just the XRPL.js from NPM that was compromised. He also alluded to a post by Ripple senior software engineer Mayukha Vadari. Vadari mentioned that the Ledger itself is unaffected by the malware.

The engineer confirmed that the malware packages only affected services that use xrpl.js and were upgraded to the malicious versions that were published about a day ago. He added that GitHub remains safe, as only npm has been compromised. Vadari urged users to avoid services that have access to their private keys and seed phrases until they have confirmed that these services are unaffected by this malware.

XRPL Foundation Provides Update

The XRP Ledger Foundation also provided an update on the malware situation. In an X post, the Foundation clarified that the vulnerability is in xrpl.js, a JavaScript library for interacting with the XRPL. They further stated that the vulnerability does not affect the network’s codebase or the GitHub repository itself. Meanwhile, the Foundation urged projects using xrpl.js to upgrade to v4.2.5 immediately.

The XRP Ledger Foundation also confirmed in the thread that it had deprecated the compromised xrpl.js versions on npm. They mentioned that they will share a detailed post-mortem soon and again urged projects and developers to ensure that they are using versions 4.2.5 or 2.14.3.

In another X post, the Foundation announced that it has published an updated npm package for users of the 2.14.x branch to remove the previously compromised version. They asked these XRP Ledger users to update immediately to version 2.14.3 to prevent an attack.

Disclaimer: For information purposes only. Past performance is not indicative of future results.

Recommended Articles

Bitcoin Must Clear This Critical Cost Basis Level For Continued Upside, Analyst Says In a recent CryptoQuant Quicktake post, contributor Crazzyblockk highlighted key Bitcoin (BTC) cost basis zones that the leading cryptocurrency must clear – or avoid breaking below – to

Author NewsBTC

4 Month 23 Day Wed

In a recent CryptoQuant Quicktake post, contributor Crazzyblockk highlighted key Bitcoin (BTC) cost basis zones that the leading cryptocurrency must clear – or avoid breaking below – to

Solana (SOL) Holding Strong Above $150 — Breakout Zone In Play Solana started a fresh increase from the $132 support zone. SOL price is now consolidating and might climb further above the $155 resistance zone. SOL price started a fresh increase above the $135

Author NewsBTC

4 Month 25 Day Fri

Solana started a fresh increase from the $132 support zone. SOL price is now consolidating and might climb further above the $155 resistance zone. SOL price started a fresh increase above the $135

Cardano (ADA) Struggles Deepen: Price Slips Further, Investors on Edge Cardano price started a fresh decline below the $0.70 zone. ADA is now consolidating and might aim decline further below the $0.650 zone. ADA price started a fresh decline below $0.720 and $0.700.

Author NewsBTC

6 Month 05 Day Thu

Cardano price started a fresh decline below the $0.70 zone. ADA is now consolidating and might aim decline further below the $0.650 zone. ADA price started a fresh decline below $0.720 and $0.700.

Ethereum Price Tests Ascending Channel Resistance – Breakout Or Breakdown?Ethereum pushed above the $2,820 mark yesterday, strengthening the bullish case for a breakout after weeks of consolidation. The move has created renewed optimism among traders who expect ETH to

Author NewsBTC

6 Month 12 Day Thu

Ethereum pushed above the $2,820 mark yesterday, strengthening the bullish case for a breakout after weeks of consolidation. The move has created renewed optimism among traders who expect ETH to

Gold price hangs near two-week low on Israel-Iran ceasefire; downside lacks follow-through Gold price (XAU/USD) touches a nearly two-week low, around the $3,333 area during the Asian session on Tuesday, though it lacks follow-through amid mixed fundamental cues.

Author FXStreet

22 hours ago

Gold price (XAU/USD) touches a nearly two-week low, around the $3,333 area during the Asian session on Tuesday, though it lacks follow-through amid mixed fundamental cues.

Popular Symbols