The post Ledger Suffers Supply Chain Attack! appeared first on Coinpedia Fintech News

Ledger has suffered a supply chain attack. The library called connect-kit, which allows developers to connect their decentralized applications (DApps) to Ledger hardware wallets, has been compromised. The attacker injected a wallet-draining payload into the popular NPM package, potentially affecting numerous DApps, including Hey and many others. The Sushi CTO has warned against using any DApps that utilize LedgerHQ/connect-kit until further notice. This incident underscores the importance of supply chain security in the blockchain industry and highlights the need for increased vigilance and caution when using DApps.