Socket found a compromised Injective npm package stealing wallet keys amid rising crypto supply chain attacks.
JadePuffer exploited a vulnerable Langflow server, harvested credentials, moved laterally, and encrypted more than 1,300 ...