Threats Tagged 'developer account compromise'
View all threats tagged with 'developer account compromise'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'developer account compromise'
Click on any threat for detailed analysis and mitigation recommendations
Compromised Injective SDK npm Package Exfiltrates Wallet Keys and Mnemonics 0 A compromised version (1.20.21) of the Injective Labs TypeScript SDK npm package was published containing malicious code that exfiltrates cryptocurrency wallet private keys and mnemonic phrases. The malicious package was distributed via a compromised developer account and disguised exfiltration traffic by sending base64-encoded POST requests to legitimate Injective infrastructure endpoints. Approximately 310 downloads of the malicious version occurred before detection and containment within hours. The incident poses a significant supply chain risk due to the package's high usage and many dependent packages. Join the discussion | AlienVault OTX General | 07/10/2026, 03:46:31 UTC Added: 07/10/2026, 07:47:32 UTC |
Showing 1 to 1 of 1 result