Slow Mist Technology Chief Information Security Officer 23pds posted on the X platform that the DuckDB NPM account was hacked, and malicious versions such as duckdb and duckdb-wasm were released. These malicious software are consistent with the wallet theft malicious software that appeared in the supply chain attack. Pay attention to risk prevention.
慢雾科技首席信息安全官 23 pds 在 X 平台发文称,DuckDB NPM 帐户遭入侵,恶意版本 duckdb、duckdb-wasm 等被发布,这些恶意软件与供应链攻击中出现的钱包窃取恶意软件一致。注意风险防范。