[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fRhqNyiVUGxDpGSd4HB-o1QfSiBeJti2Rpbe8kPY1zfE":3},{"article":4,"iocs":52},{"id":5,"title":6,"slug":7,"summary":8,"ai_summary":9,"brief":10,"full_text":11,"url":12,"image_url":13,"published_at":14,"ingested_at":15,"relevance_score":16,"entities":17,"category_id":29,"category":30,"article_tags":34},"915835c1-5233-4382-bf4b-fdd33e353a71","Injective Labs GitHub Compromise Pushes Wallet-Key-Stealing npm Packages","injective-labs-github-compromise-pushes-wallet-key-stealing-npm-packages-6a1f2b","Unknown threat actors compromised the Injective Labs SDK project's GitHub repository and leveraged it to publish a malicious package on the npm registry to steal cryptocurrency wallet private keys and mnemonic seed phrases. The compromised version, @injectivelabs\u002Fsdk-ts@1.20.21, came embedded with fake telemetry functionality that exfiltrated data from cryptocurrency wallets. The version was","Threat actors compromised the Injective Labs SDK project's GitHub repository, publishing a malicious npm package (@injectivelabs\u002Fsdk-ts@1.20.21) designed to steal cryptocurrency wallet private keys and seed phrases. The compromised version, released on July 8, 2026, embedded fake telemetry functionality that exfiltrated sensitive data via HTTPS POST requests to a remote server. The attack leveraged the trusted-publisher pipeline and the identity of an existing maintainer.","Injective Labs GitHub repo compromised, leading to wallet-stealing npm packages.","Injective Labs GitHub Compromise Pushes Wallet-Key-Stealing npm Packages Ravie LakshmananJul 10, 2026Software Supply Chain \u002F Malware Unknown threat actors compromised the Injective Labs SDK project's GitHub repository and leveraged it to publish a malicious package on the npm registry to steal cryptocurrency wallet private keys and mnemonic seed phrases. The compromised version, @injectivelabs\u002Fsdk-ts@1.20.21, came embedded with fake telemetry functionality that exfiltrated data from cryptocurrency wallets. The version was released on July 8, 2026, but has since been deprecated on the registry. That said, the release artifacts belonging to the compromised version are still available for download from GitHub as of writing. \"The malicious functionality was introduced to the project's official GitHub repository through commits submitted by a GitHub account belonging to a developer with an established history of contributions to the repository,\" Socket said. The software supply chain security firm said the threat actor behind the attack also published version 1.20.21 across 17 additional @injectivelabs scoped packages that depended on and pinned the malicious SDK version, thereby putting transitive users who may not have installed the library directly. This includes - @injectivelabs\u002Futils @injectivelabs\u002Fnetworks @injectivelabs\u002Fts-types @injectivelabs\u002Fexceptions @injectivelabs\u002Fwallet-base @injectivelabs\u002Fwallet-core @injectivelabs\u002Fwallet-cosmos @injectivelabs\u002Fwallet-private-key @injectivelabs\u002Fwallet-evm @injectivelabs\u002Fwallet-trezor @injectivelabs\u002Fwallet-cosmostation @injectivelabs\u002Fwallet-ledger @injectivelabs\u002Fwallet-wallet-connect @injectivelabs\u002Fwallet-magic @injectivelabs\u002Fwallet-strategy @injectivelabs\u002Fwallet-turnkey @injectivelabs\u002Fwallet-cosmos-strategy The malware present within the package is fairly simple and straightforward, which gets triggered when the library functionality is used by an unsuspecting developer. By avoiding lifecycle scripts and not launching it during the installation phase, it helps the malware fly under the radar. Specifically, the poisoned version has been found to modify legitimate functions used in workflows to generate private keys by invoking a \"trackKeyDerivation()\" function under the guise of collecting anonymized usage metrics for SDK optimization. \"Tracks which key derivation methods are used (hex vs mnemonic) and derives timing patterns to help the SDK team identify performance bottlenecks and understand adoption of different key formats across the ecosystem,\" reads the description of the supposed telemetry function. \"All metrics are fire-and-forget and never block or affect key derivation.\" According to Socket, parameters passed to the function include a hard-coded marker describing the method used to generate the private key and the actual sensitive information needed for generating the private key. The captured material is enough for the threat actor to regenerate the private key at their end. \"The malware adds crypto wallet stealing logic to a crypto wallet package, every time a legitimate user creates or uses the logic that reads mnemonic phrases – which are basically the master key for any crypto wallet, the malware reads them and sends them to the remote server,\" OX Security said. In an attempt to reduce the number of outbound requests, the exfiltration mechanism is designed to append multiple key derivations over a two-second window into a single queue and then send them in the form of an HTTPS POST request to an external server (\"testnet.archival.chain.grpc-web.injective[.]network\") in a single beacon. StepSecurity noted the malicious release was facilitated through the repository's own trusted-publisher (OIDC) pipeline, adding that the malicious commits were authored and pushed under the identity of an existing, trusted maintainer (\"thomasRalee\"). Users who have installed the malicious version are recommended to update to the newly published, clean version of the package (1.20.23), treat any private key or mnemonic phrase passed through the package as compromised and rotate them, and check for transitive dependencies. Found this article interesting? Follow us on Google News, Twitter and LinkedIn to read more exclusive content we post. SHARE     Tweet Share Share Share SHARE  Credential Theft, cryptocurrency, data theft, Developer Security, GitHub, Malware, NPM, Open Source Security, Package Security, Software Supply Chain ⚡ Top Stories This Week ThreatsDay: AI Compute Hijacking, Apple Email Flaw, BlueHammer Ransomware + 14 Stories Chrome Ad Blocker with 10M+ Installs Found with Dormant Script Injection Capability New DirtyClone Linux Kernel Flaw Lets Local Users Gain Root via Cloned Packets Amazon Q Developer Flaw Could Let Malicious Repos Run Code via MCP Configs New Linux pedit COW Exploit Enables Root Access by Poisoning Cached Binaries OpenAI Previews GPT-5.6 Sol With Restricted Access and Stronger Cyber Safeguards FBI Warns Russian Intelligence Hackers Target Signal Backup Recovery Keys Public PoC Released for Critical libssh2 CVE-2026-55200 Client-Side SSH Flaw Microsoft Removes 119 Edge Extensions That Hid Malware in Images and Fonts ⚡ Weekly Recap: Linux Kernel Flaws, AI Malware Tricks, Turla Backdoor, Infostealers and More Mustang Panda Uses Zoho WorkDrive as Command Channel in Indian Government Attacks WhatsApp is Finally Getting Usernames to Help Keep Phone Numbers Private Oracle E-Business Suite Flaw CVE-2026-46817 Actively Exploited in the Wild New BioShocking Attack Tricks AI Browsers Into Leaking User Credentials AirDrop and Quick Share Flaws Let Nearby Attackers Trigger Crashes and Bypass Checks 282 iOS AI Apps Leak API Keys and Open AI Proxy Access in Network Traffic Study GuardFall Exposes Open-Source AI Coding Agents to Decades-Old Shell Injection Risks Microsoft Warns Poisoned MCP Tool Descriptions Can Make AI Agents Leak Data RustDuck Botnet Rebuilds in Rust to Hijack Routers and Servers for DDoS ⭐ Featured Resources What 200+ Security Teams Reveal About Using IP Intelligence in 2026 Get Hands-On SANS Training for Today’s Cyber Defense and Offensive Security Challenges See What’s Really Exposed Across Your IT, OT, IoT, Cloud, and Mobile Assets Get Gartner’s Guide to AI Agent Supervision and Runtime Controls","https:\u002F\u002Fthehackernews.com\u002F2026\u002F07\u002Finjective-labs-github-compromise-pushes.html","https:\u002F\u002Fblogger.googleusercontent.com\u002Fimg\u002Fb\u002FR29vZ2xl\u002FAVvXsEhTNxzPo9jxkW3GuuZLBgtPOrG3vZ3va6E710jDJu_JF0jCpyQ1JTpymdVwdSH2VHL6-Ib6YLInvKsuNwgFJxna1nvDhwKMZ_hycTik5OgQniZei2FQ59-F3s80lsnPmhQ1aJsr7qIWWrf63V0AtHQxd_1Nlk6LkVEheoN5lRYH8aTeBoJ-kM1-bOjUgAwa\u002Fs1600\u002Fnpm-malware-2.jpg","2026-07-10T17:29:28+00:00","2026-07-10T18:00:26.333951+00:00",9,[18,21,24,27],{"name":19,"type":20},"@injectivelabs\u002Fsdk-ts","product",{"name":22,"type":23},"Injective Labs","vendor",{"name":25,"type":26},"npm","technology",{"name":28,"type":26},"GitHub","26b0b636-0e31-4db1-bffb-61bdf9f20a58",{"id":29,"icon":31,"name":32,"slug":33},null,"Supply Chain","supply-chain",[35,37,42,47],{"category":36},{"id":29,"icon":31,"name":32,"slug":33},{"category":38},{"id":39,"icon":31,"name":40,"slug":41},"89f78b1c-3503-45a1-9fc7-e23d2ce1c6d5","Malware","malware",{"category":43},{"id":44,"icon":31,"name":45,"slug":46},"ade75414-7914-4e23-a450-48b64546ee70","Open Source","open-source",{"category":48},{"id":49,"icon":31,"name":50,"slug":51},"e7b231c8-5f79-4465-8d38-1ef13aea5a14","Threat Intelligence","threat-intelligence",[53,55],{"type":41,"value":19,"context":54},"Compromised npm package version used for wallet key exfiltration.",{"type":56,"value":57,"context":58},"domain","testnet.archival.chain.grpc-web.injective[.]network","Remote server used for exfiltrating stolen wallet data."]