The information provided on EL7.AI is for educational and informational purposes only and does not constitute financial advice.
Sign in to access this content
Sign InAmid rising cyber threats targeting blockchain infrastructure, Injective confirmed that user funds are not at risk after malicious code was discovered in 18 of its official npm developer packages. According to reports, this breach constitutes a supply chain attack where backdoor code was planted within the tools developers use to build applications on the network.
Security firms warned that the attack specifically aimed to steal private keys and seed phrases passing through the compromised software, posing a direct threat to wallet security. This incident occurs during a sensitive period for the Decentralized Finance (DeFi) sector, which has seen similar protocols face breaches targeting vulnerabilities in open-source libraries, leading experts to call for more rigorous auditing of software tools before live integration.
While the project maintains that no funds were lost, such incidents place pressure on developer confidence in official tooling. As current price data for the INJ token is unavailable at the time of this report, traders are monitoring network stability as a key factor for future direction. Investors should watch for further security updates from the technical team to ensure the vulnerability is fully remediated.