Crypto Flexs
  • DIRECTORY
  • CRYPTO
    • ETHEREUM
    • BITCOIN
    • ALTCOIN
  • BLOCKCHAIN
  • EXCHANGE
  • TRADING
  • SUBMIT
Crypto Flexs
  • DIRECTORY
  • CRYPTO
    • ETHEREUM
    • BITCOIN
    • ALTCOIN
  • BLOCKCHAIN
  • EXCHANGE
  • TRADING
  • SUBMIT
Crypto Flexs
Home»EXCHANGE NEWS»Aftermath: How did The Ledger Hacker’s $484,000 heist happen?
EXCHANGE NEWS

Aftermath: How did The Ledger Hacker’s $484,000 heist happen?

By Crypto FlexsDecember 16, 20233 Mins Read
Facebook Twitter Pinterest LinkedIn Tumblr Email
Aftermath: How did The Ledger Hacker’s 4,000 heist happen?
Share
Facebook Twitter LinkedIn Pinterest Email

As reported yesterday. Hackers launched a sophisticated attack targeting users of popular Web3 apps such as Zapper, SushiSwap, and Phantom, stealing approximately $484,000 in cryptocurrency funds. The attack focused on Ledger’s Connect Kit, a code library that enables connections between cryptocurrency wallets and decentralized apps.


key point

  • Ledger’s Connect Kit was compromised in a malicious attack, resulting in the theft of approximately $484,000 in funds.
  • The attackers used a phishing attack to gain access to a former Ledger employee’s account and inject malicious code.
  • Malware was distributed when apps such as Zapper, SushiSwap, and Phantom were updated with compromised Connect Kit code.
  • The malware tricked users into authorizing transactions to the attacker’s address rather than the intended app.
  • Ledger has now disabled the malware and declared the Connect Kit safe to use again, but called for continued efforts in signing transactions.

Hackers were able to access a former Ledger employee’s account on the node package manager platform NPMJS through a phishing attack. From this vantage point, the attackers injected malicious code into GitHub’s Ledger Connect Kit update. When vulnerable apps were updated to a compromised Connect Kit version, malware was distributed to unwitting users’ browsers.

Today’s security incident appears to be the culmination of three separate failures at Ledger.

1. Blindly load code without locking in a specific version and checksum.
2. We do not enforce the “two-person rule” when it comes to code review and deployment.
3. We do not revoke access from former employees.

— Jameson Lopp (@lopp) December 14, 2023

The malware allowed the hackers to trick users into approving transactions that would send funds to the attacker’s wallet rather than the intended app.

According to blockchain security platform Cybers, the code likely manipulates transaction data to trick users into confirming payments they don’t fully understand. For example, a user who authorized a token payment to activate an app feature may instead see the payment as authorized to the hacker’s address.

The exact techniques used require further analysis, but it is clear that the attack relied on clever social engineering to induce user error. Ledger and security experts recommend constant caution when approving cryptocurrency transactions and carefully reviewing addresses and details, even when an app appears legitimate.

It seems that after absorbing nearly half a million exploits, the hackers decided to stop working for fear of growing interest. Ledger was able to disable the malware and has now declared the Connect Kit safe for use once again.

However, the fact that these attacks easily compromised the critical infrastructure of popular apps sends a sobering warning to the Web3 community.

As the industry continues to work diligently to increase security and transparency for transactions, remembering the human element will be key.

Share. Facebook Twitter Pinterest LinkedIn Tumblr Email

Related Posts

AI Agents and Ethereum Protocol Security: What’s Changed

July 12, 2026

CASHCAT Trader converted $316 into $2.1 million on Robinhood Chain.

July 9, 2026

How to Hedge a Cryto Portfolio: A Beginner’s Guide (2026)

July 6, 2026
Add A Comment

Comments are closed.

Recent Posts

OpenSea adds Good Vibes Club NFT to NFT Reserve

July 13, 2026

Bitmine Immersion Technologies (BMNR) Announces ETH Holdings Reach 5.77 Million Tokens, And Total Crypto And Total Cash Holdings Of $11.3 Billion

July 13, 2026

BYDFi Participates In Peru Blockchain Conference 2026, Engaging The LATAM Web3 Community

July 13, 2026

Byreal Marks First Anniversary With Strong Growth, RWA Leadership, And AI-Native Innovation On Solana

July 13, 2026

Aurra Markets Strengthens MENA Presence Following Money Expo Abu Dhabi 2026

July 13, 2026

MEXC Expands Ondo Tokenized Stock Lineup With SK Hynix And Four Other Trading Pairs

July 13, 2026

Ethereum Futures Break Records: Are Traders Seeing Bottom?

July 13, 2026

Saylor’s strategic message doesn’t help push the Bitcoin story, says StanChart.

July 12, 2026

Kresus launches cryptocurrency inheritance service for self-managed wallet users.

July 12, 2026

AI Agents and Ethereum Protocol Security: What’s Changed

July 12, 2026

Pakistan’s cryptocurrency regulator calls for dialogue after ruling on cryptocurrency payments

July 12, 2026

Crypto Flexs is a Professional Cryptocurrency News Platform. Here we will provide you only interesting content, which you will like very much. We’re dedicated to providing you the best of Cryptocurrency. We hope you enjoy our Cryptocurrency News as much as we enjoy offering them to you.

Contact Us : Partner(@)Cryptoflexs.com

Top Insights

OpenSea adds Good Vibes Club NFT to NFT Reserve

July 13, 2026

Bitmine Immersion Technologies (BMNR) Announces ETH Holdings Reach 5.77 Million Tokens, And Total Crypto And Total Cash Holdings Of $11.3 Billion

July 13, 2026

BYDFi Participates In Peru Blockchain Conference 2026, Engaging The LATAM Web3 Community

July 13, 2026
Most Popular

A top analyst updated his outlook on the Dogecoin rival, which exploded more than 300% in three weeks, and said Solana could see higher gains.

January 25, 2024

According to cryptocurrency analyst Ali Martinez, signs of a potential rebound for Cardano (ADA) are here. His goals are:

February 11, 2024

The bullish trading pattern in BNB/USD looks set to explode soon. But what about the BNB/BTC pair?

September 30, 2024
  • Home
  • About Us
  • Contact Us
  • Disclaimer
  • Privacy Policy
  • Terms and Conditions
© 2026 Crypto Flexs

Type above and press Enter to search. Press Esc to cancel.