A hacker has stolen approximately 4.334 Ether (ETH), equivalent to nearly $484,000, in an attack on Ledger's connector library, according to blockchain analysis platform Lookonchain. Although Ledger has not yet confirmed the figures, the company believes that the security breach could result in losses amounting to hundreds of thousands of dollars.
Web3 Connector Compromised
On December 14, users on social media platform X (formerly Twitter) raised concerns about a popular Web3 connector being compromised. This allowed the injection of malicious code into multiple decentralized applications (DApps). The incident has impacted protocols such as Zapper, SushiSwap, Phantom, Balancer, and Revoke.cash. However, according to some X users, the vulnerability may also exist in other similar programs that serve as alternatives to LedgerHQ/connect-kit.
MetaMask Users Affected
MetaMask, a popular wallet provider, has confirmed that its users have also been affected by the hack. The company has deployed a fix for its platform, urging users on the latest version (v2.121.0) to refresh their site data and transact as usual. MetaMask advises its users to be cautious and verify the information displayed on their Ledger device matches that on their computer or phone screen.
Immediate Action Required
Approximately three hours after the incident, Ledger announced that the malicious version of the file had been replaced with the genuine version. The company is urging its users to always clear sign transactions and to immediately stop any transaction if there is a discrepancy between the Ledger device screen and the computer/phone screen.
Protocols Take Precautionary Measures
Following the attack, several protocols have disabled the affected library. Tether, a stablecoin issuer, has also frozen the exploiter address, according to Paolo Ardoino.
This is an ongoing story, and more information will be provided as it becomes available.
