Hackers compromised the Injective Labs SDK project's GitHub repository and used it to publish a malicious package on the Node ...
Socket found a compromised Injective npm package stealing wallet keys amid rising crypto supply chain attacks.