A new program, known internally as Ripple, would open The Post to journalists at other publications and influential writers on Substack. By Benjamin Mullin The Washington Post has published some ...

60 packages have been discovered in the NPM index that attempt to collect sensitive host and network data and send it to a Discord webhook controlled by the threat actor.

Ripple’s legal chief said a US court’s rejection of a proposed XRP settlement with the Securities and Exchange Commission (SEC) does not pose a threat to Ripple’s win.

In a concerning development for the XRP ecosystem, Ripple’s widely-used JavaScript library, xrpl.js, has been compromised in a software supply chain attack that resulted in the exposure of users’ ...

Many versions of the Ripple ledger (XRPL) official NPM package are compromised with malware injected to steal cryptocurrency. The NPM package, xrpl, is a JavaScript/TypeScript library that devs use to ...

XRP Ledger Bug Patched After 'Serious' Flaw Spotted in XRPL Library The issue only affects versions of Node Package Manager (NPM), a site where developers share reusable code for projects.

A malicious actor used a compromised Ripple dev account to publish commits to NPM The commits would grant access to people's crypto wallets They were downloaded around 450 times before being ...

The Ripple cryptocurrency npm JavaScript library named xrpl.js has been compromised by unknown threat actors as part of a software supply chain attack designed to harvest and exfiltrate users' private ...