Cryptocurrency investors will likely get their December dose of hacking news from an incident whose details may not have been fully clarified at the time this article was prepared. While the CTO of Sushi warned about a problem in their DeFi protocols, he mentioned that the issue is much bigger. Additionally, as this article is being written, warnings are being published regarding the Ledger code library.
Major DeFi Hack Incident
According to announcements from various sources, a vulnerability has emerged that affects numerous dApps and allows for malicious code injection. Popular protocols are at risk due to an issue with the Ledger code library. The claim that the Web3 connector has been compromised has been confirmed by expert accounts in the field, such as Matthewlilley.
Sushi CTO Matthew Lilley said the following;
“Do not interact with ANY dApp until the next announcement. It appears that a widely used web3 connector has been compromised, allowing the injection of malicious code affecting numerous dApps.”
Lilley also added that the suspicious code originated from the hardware wallet provider Ledger’s GitHub page. A user by the name of X wrote that Ledger’s library had been compromised. At this stage, connecting your wallet to protocols, including Revoke, could be extremely risky.
