The hacker behind the attack on Ledger’s connector library has stolen at least $484,000, according to blockchain analysis platform Lookonchain.
The hacker behind the attack on Ledger’s connector library had stolen at least 4.334 Ether (ETH) worth nearly $484,000, according to blockchain analysis platform Lookonchain. Ledger has not yet confirmed the figures, but the impact of the security breach could be in the hundreds of thousands, according to the company.
Users on X (Twitter) flagged the incident on Dec. 14, claiming that a popular Web3 connector was compromised, allowing malicious code to be injected into multiple decentralized applications (DApps).
Protocols affected by the incident include Zapper, SushiSwap, Phantom, Balancer and Revoke.cash, but the damage could be even greater. According to some users on X, the vulnerability could exist in other, similar programs that are alternatives to LedgerHQ/connect-kit.