Ledger's NPM account has been hacked

248 点作者 meehow超过 1 年前

21 条评论

lrvick超过 1 年前

And once again calls to allow optional signing support natively to NPM will be rejected citing that it might intimidate drive-by devs who do not want to learn to setup a yubikey or nitrokey for artifact signing.I have talked to the NPM team about this multiple times over the last several years and they literally believe no signing at all is better than some devs feeling pressured to sign.You need no stronger evidence of the NPM teams negligence than these two times they refused to even accept community contributed optional signing support saying they would come up with something better than PGP. Still waiting 10 years later.<a href="https://github.com/npm/npm/pull/4016">https://github.com/npm/npm/pull/4016</a><a href="https://github.com/node-forward/discussions/issues/29#issuecomment-144505785">https://github.com/node-forward/discussions/issues/29#issuec...</a>Meanwhile PGP secures the supply chain of the Linux distros that power the whole internet, and Debian signs hundreds of npm packages used in their dependency graph, but it is still not good enough for NPM.You can use the well tested and rust-written Sequoia/sq now and never touch GnuPG. You can also self certify your keys with keyoxide. The past complaints are largely moot and still people stick to their guns on this.<a href="https://openpgp.dev/book/" rel="nofollow noreferrer">https://openpgp.dev/book/</a>

评论 #38647113 未加载

评论 #38650702 未加载

评论 #38646498 未加载

feross超过 1 年前

We've been building Socket [1] to detect and block this exact type of supply chain attack. Our Socket AI scanner [2] successfully detected this attack. It uses dozens of static signals combined with an LLM to detect novel attacks that evade traditional scanning tools.This is what Socket AI produces when given @ledgerhq/connect-kit 1.1.7 to analyze:> The obfuscated code block is highly suspicious and likely contains malicious behavior. The presence of obfuscation and the unclear purpose of the code raise significant red flags.Feeling very proud of our team right now as this validates that our static analysis + LLM approach works well on novel malicious dependencies. If you're interested, we maintain a listing of malicious packages detected by this system [3].Small plug: If you’d like real-time protection against attacks like this, you can install Socket for GitHub to automatically scan every PR in your repo. The free plan is incredibly generous. If you do decide to install it, it’s important that you enable the ‘AI Detected Security Risk’ alert type in your Security Policy to activate this protection.[1]: <a href="https://socket.dev" rel="nofollow noreferrer">https://socket.dev</a>[2]: <a href="https://socket.dev/blog/introducing-socket-ai-chatgpt-powered-threat-analysis" rel="nofollow noreferrer">https://socket.dev/blog/introducing-socket-ai-chatgpt-powere...</a>[3]: <a href="https://socket.dev/npm/issue/malware" rel="nofollow noreferrer">https://socket.dev/npm/issue/malware</a>

评论 #38646519 未加载

评论 #38646593 未加载

评论 #38653703 未加载

评论 #38645977 未加载

评论 #38646233 未加载

评论 #38645495 未加载

woah超过 1 年前

How did the exploit work? Obviously it looks really bad for Ledger to keep having these web security failures, but the entire point of a hardware wallet is to make it so that you don't have to rely on the security of the code on your computer.If the hardware wasn't compromised (sounds like this was just JS), then there was no way for the exploit to take anyone's private key. It sounds to me like the exploit would work by getting you to sign a transaction that would transfer out the funds, without the attacker ever getting your key.The only way this is possible is if users are signing transactions on their Ledger without looking at them.And this is place where the Ethereum community needs to look in the mirror. Blind signing is the default for using Ethereum with a Ledger. I'm not sure the technical reasons behind this, but I do happen to know that much of the information that gets signed is in very convoluted formats (meta transactions etc). This is not the case everywhere. Other ecosystems, like Cosmos, present the information to be signed in a plain text format that you can scroll through on the Ledger's screen before you sign it.Ethereum needs to put some serious effort into making sure that anything that gets signed can be viewed in a human-readable format before signing. Until then, hardware wallets are security theater.

评论 #38643895 未加载

评论 #38643938 未加载

评论 #38646524 未加载

zaphod420超过 1 年前

One of the comments on the github issue... <a href="https://github.com/LedgerHQ/connect-kit/issues/29">https://github.com/LedgerHQ/connect-kit/issues/29</a>"The @ledgerhq/connect-kit-loader allows dApps to load Connect Kit at runtime from a CDN so that we can improve the logic and UI without users having to wait for wallet libraries and dApps updating package versions and releasing new builds.This looks like an extremely dangerous approach now, if I understand it correctly, connect-kit-loader trusts whatever the CDN throws at your dApps. So when connect-kit is comprised, all downstream dApps are automatically exposed."

评论 #38642794 未加载

评论 #38642131 未加载

nathell超过 1 年前

Just yesterday I watched a talk [0] at WarsawJS about LavaMoat [1], a set of tools to protect against malicious behaviour from npm dependencies. Guess it’s time to look into it deeper.[0]: <a href="https://naugtur.pl/pres3/lava/2023end.html" rel="nofollow noreferrer">https://naugtur.pl/pres3/lava/2023end.html</a>[1]: <a href="https://github.com/LavaMoat/LavaMoat">https://github.com/LavaMoat/LavaMoat</a>

binarymax超过 1 年前

NPM forces 2fa, so I’m curious what the scenario was here. Was a committers phone compromised?

评论 #38641936 未加载

评论 #38642769 未加载

评论 #38644819 未加载

评论 #38641791 未加载

oefrha超过 1 年前

Pretty fascinating that the malicious code doesn’t seem to be obfuscated one bit. Even contains the word “drain” in multiple places. At least use innocuous looking variable names ffs.

coneonthefloor超过 1 年前

> Discover what security feels likeQuote from their sales site.

评论 #38642983 未加载

评论 #38645390 未加载

activescott超过 1 年前

Shouldn't this be considered an incident at <a href="https://status.ledger.com/" rel="nofollow noreferrer">https://status.ledger.com/</a> ??

cantSpellSober超过 1 年前

> Yes, .5/.6/.7 versions are compromisedSo was there a threat to Ledger users? Elsewhere it's said:> production build failed

评论 #38642530 未加载

asylteltine超过 1 年前

When will npm finally take security seriously? How many incidents do they need? Don’t allow non hardware mfa and add verified namespaces already!

评论 #38643383 未加载

评论 #38645470 未加载

neom超过 1 年前

I thought the whole point of ledger was that it's a physical wallet that can't easily be compromised. Not your keys not your crypto and all that?

评论 #38643561 未加载

jbirer超过 1 年前

I only have a Ledger because my required me in order to implement a crypto wallet on the website. I have 2 seed phrases written on the back of a book since 2017 and it has kept me well, no hacks so far.

评论 #38646495 未加载

wslh超过 1 年前

I have round up more information on this issue and the context here [1].[1] <a href="https://news.ycombinator.com/item?id=38646314">https://news.ycombinator.com/item?id=38646314</a>

kossTKR超过 1 年前

Ledger has been hacked so many times now i've lost count.I remember buying one in 2019, and shortly thereafter all customer data was dumped on the internet endangering everyone who bought one.Then after deep diving the tech i threw it in the trash, it seemed like security theatre product.There's also been so many phishing attempts, fake ledgers sold, bricked ones losing funds, it's total shitshow that ecosystem if you check their subreddit going back in time.The more you rely on 3. parties, and the more obfuscated your setup is, the more unsafe your data is. I just use isolated cheap laptops and encrypted usb's now.

评论 #38642496 未加载

评论 #38642328 未加载

评论 #38686604 未加载

评论 #38645533 未加载

评论 #38642262 未加载

评论 #38642275 未加载

评论 #38643240 未加载

评论 #38642171 未加载

NoGravitas超过 1 年前

LOL, I initially thought this was Ledger, the command-line personal finance management software, and was worried that it was actually something important.

评论 #38647036 未加载

评论 #38643822 未加载

tamimio超过 1 年前

>minimal drain valueI actually laughed! Anyway, this is the list of affected softwaregithub.com/wevm/wagmi github.com/wevm/wagmi github.com/family/connectkit github.com/scaffold-eth/scaffold-eth-2 github.com/RevokeCash/revoke.cash github.com/blocknative/web3-onboard github.com/blocknative/web3-onboard github.com/liquity/dev github.com/matter-labs/zksync-wallet-vue github.com/bankisan/zkShield github.com/zkemail/zk-email-verify github.com/iron-wallet/iron github.com/gmx-io/gmx-interface github.com/blocknative/web3-onboard github.com/reservoirprotocol/reservoir-kit github.com/daimo-eth/daimo github.com/AztecProtocol/aztec-packages github.com/lifinance/widget github.com/matter-labs/zksync-dapp-checkout github.com/gnosis/zodiac-modifier-roles github.com/scaffold-eth/Scaffold-ETH-DeFi-Challenges github.com/cowprotocol/cowswap github.com/cowprotocol/cowswap github.com/cowprotocol/cowswap github.com/canvasxyz/canvas github.com/lifinance/widget github.com/parity-asia/hackathon-2023-summer github.com/ubiquity/ubiquity-dollar github.com/TalismanSociety/talisman-web github.com/BanklessDAO/bankless-website github.com/lifinance/widget github.com/TalismanSociety/talisman github.com/zkemail/proof-of-twitter github.com/Ifechukwudaniel/Oracles github.com/Ifechukwudaniel/Oracles github.com/noir-lang/noir-examples github.com/voteagora/agora github.com/coinbase/build-onchain-apps github.com/Midas-Protocol/monorepo github.com/austintgriffith/stupid-staking github.com/MetaMask/metamask-sdk github.com/threshold-network/token-dashboard github.com/threshold-network/token-dashboard github.com/privacy-scaling-explorations/bandada github.com/lidofinance/lido-ethereum-sdk github.com/haqq-network/frontend github.com/reservoirprotocol/seaport-oracle github.com/ameensol/pools-ui github.com/Web3Auth/web3auth-wagmi-connector github.com/Orbiter-Finance/zkprover-dapp github.com/xmtp/xmtp-web github.com/etherspot/etherspot-react-transaction-buidler-demo-dapp github.com/base-org/web github.com/unlock-protocol/examples github.com/saRvaGnyA/decertify github.com/scaffold-eth/OP-RetroPGF3-Discovery-Voting github.com/lukso-network/universalprofile-test-dapp github.com/ScopeLift/token-shielder github.com/givepraise/praise github.com/0xRusso/fr3ela github.com/BreadchainCoop/breadchain-crowdstaking github.com/unstoppabledomains/uauth github.com/unstoppabledomains/uauth github.com/hyperlane-xyz/hyperlane-warp-ui-template github.com/mento-protocol/mento-web github.com/harendra-shakya/blockchain-lottery github.com/harendra-shakya/blockchain-lottery github.com/harendra-shakya/blockchain-lottery github.com/harendra-shakya/blockchain-lottery github.com/Koniverse/SubConnect github.com/saqlain1020/dapp-react-typescript-boiler github.com/carletex/notion-eip712 github.com/BuidlGuidl/event-wallet github.com/scobru/nimbus2000-ui github.com/scobru/nimbus2000-ui github.com/yieldprotocol/cacti-frontend github.com/BuidlGuidl/hacker-houses-streams github.com/jaxernst/scp github.com/bee-io/web3-connect github.com/bee-io/web3-connect github.com/bee-io/web3-connect github.com/moodysalem/eth-batch-deposit github.com/AztecProtocol/zk-money github.com/BuidlGuidl/zupass-scaffold-eth-2 github.com/LedgerHQ/connect-kit github.com/LedgerHQ/connect-kit github.com/LedgerHQ/connect-kit github.com/LedgerHQ/connect-kit github.com/LedgerHQ/connect-kit github.com/LedgerHQ/connect-kit github.com/LedgerHQ/connect-kit github.com/LedgerHQ/connect-kit github.com/LedgerHQ/connect-kit github.com/elmol/zk-proof-of-humanity github.com/swing-xyz/examples github.com/ahmetson/nft-bridge github.com/RogerPodacter/gas-lovers-nft github.com/kmjones1979/scaffold-eth-2-solidity github.com/irfanbozkurt/flashbot-recovery-bundler github.com/amy-jung/collectivedaoarchives.catalog github.com/ERC-3643/ERC-3643-DApp github.com/austintgriffith/impersonator-vision github.com/scaffold-eth/SablierV2_starterKit github.com/gnosis/mech npm/web3-onboard/ledger npm/web3-onboard/ledger npm/web3-onboard/ledger github.com/succinctlabs/telepathy-messenger-demo github.com/Votes-Project/votes-web github.com/wevm/wagmi github.com/cowprotocol/cowswap

ramijames超过 1 年前

Yikes.

rdl超过 1 年前

LOL <a href="https://twitter.com/Ledger/status/1735326240658100414" rel="nofollow noreferrer">https://twitter.com/Ledger/status/1735326240658100414</a>FINAL TIMELINE AND UPDATE TO CUSTOMERS:4:49pm CET:Ledger Connect Kit genuine version 1.1.8 is being propagated now automatically. We recommend waiting 24 hours until using the Ledger Connect Kit again.The investigation continues, here is the timeline of what we know about the exploit at this moment:- This morning CET, a former Ledger Employee fell victim to a phishing attack that gained access to their NPMJS account. - The attacker published a malicious version of the Ledger Connect Kit (affecting versions 1.1.5, 1.1.6, and 1.1.7). The malicious code used a rogue WalletConnect project to reroute funds to a hacker wallet. - Ledger’s technology and security teams were alerted and a fix was deployed within 40 minutes of Ledger becoming aware. The malicious file was live for around 5 hours, however we believe the window where funds were drained was limited to a period of less than two hours. - Ledger coordinated with @WalletConnect who quickly disabled the the rogue project. - The genuine and verified Ledger Connect Kit version 1.1.8 is now propagating and is safe to use. - For builders who are developing and interacting with the Ledger Connect Kit code: connect-kit development team on the NPM project are now read-only and can’t directly push the NPM package for safety reasons. - We have internally rotated the secrets to publish on Ledger’s GitHub. - Developers, please check again that you’re using the latest version, 1.1.8. - Ledger, along with @Walletconnect and our partners, have reported the bad actor’s wallet address. The address is now visible on @chainalysis . @Tether_to has frozen the bad actor’s USDT. - We remind you to always Clear Sign with your Ledger. What you see on the Ledger screen is what you actually sign. If you still need to blind sign, use an additional Ledger mint wallet or parse your transaction manually. - We are actively talking with customers whose funds might have been affected, and working proactively to help those individuals at this time. - We are filing a complaint and working with law enforcement on the investigation to find the attacker. - We’re studying the exploit in order to avoid further attacks. We believe the attacker’s address where the funds were drained is here: 0x658729879fca881d9526480b82ae00efc54b5c2dThank you to @WalletConnect , @Tether_io, @Chainalysis , @zachxbt , and the whole community that helped us and continue to help us identify and solve this attack.Security will always prevail with the help of the whole ecosystem.

评论 #38642861 未加载

评论 #38642872 未加载

评论 #38642880 未加载

评论 #38643548 未加载

评论 #38644934 未加载

评论 #38645215 未加载

ashishbijlani超过 1 年前

Plug: we've been building Packj [1] to detect malicious Python/NPM/Ruby/Rust/Java/PHP packages. It carries out static/dynamic/metadata analysis to look for "suspicious” attributes such as spawning of shell, invalid/expired email (i.e., no 2FA), use of files, network communication, use of decode+eval, mismatch of GitHub code vs packaged code, and several more.1. <a href="https://github.com/ossillate-inc/packj">https://github.com/ossillate-inc/packj</a>

评论 #38642369 未加载

评论 #38642411 未加载

评论 #38645222 未加载

louislang超过 1 年前

Co-founder @ Phylum here (<a href="https://phylum.io" rel="nofollow noreferrer">https://phylum.io</a>). We've been actively scanning dependencies across most open source package registries (e.g., npm, PyPI, Crates.io, etc.) for a few years now. Quite successfully, I might add, with recent findings targeting financial institutions [1], North Korean state actors [2], and some of the first malware staging to be seen on Crates.io [3].The fact that an attacker was able to pull this off against a _secure_ hardware device is shocking but not surprising. The mechanism by which they did it is interesting and fairly insidious. Unlike a lot of other attacks that will publish the malware to the registry, this one pulls the payload from a CDN. So, static analysis of the loader (i.e., the intermediary package on npm) is unlikely to yield sufficiently interesting results. Solely focusing on the obfuscation angle is also not of particular use since quite a bit of packages are obfuscated on npm (like, a surprising amount of it. In Q3 2023 we saw over 5,000 _new_ packages shipped with some form of obfuscation).Nonetheless, our automated platform pinged us this morning about some changes to this package and our research team has been digging into it to determine the impacts.With that said, we've produced (and open sourced!) several tools that aim to help with software supply chain style attacks:1. Birdcage is a cross-platform embeddable sandbox [4]2. Our CLI is extensible and integrates Birdcage so you can do things like `phylum npm install...` or `phylum pip install...` and have the package installations be sandboxed [5]We've also got a variety of integrations [6] along with a threat feed of software supply chain attacks (of which the Ledger package and other APT attacks have appeared).Happy to answer any questions! A collective of us are active in Discord (<a href="https://discord.gg/Fe6pr5eW6p" rel="nofollow noreferrer">https://discord.gg/Fe6pr5eW6p</a>), continuing to hunt attacks like these. If that's something that interests you, we'd love to have you!1. <a href="https://blog.phylum.io/encrypted-npm-packages-found-targeting-major-financial-institution/" rel="nofollow noreferrer">https://blog.phylum.io/encrypted-npm-packages-found-targetin...</a>2. <a href="https://blog.phylum.io/junes-sophisticated-npm-attack-attributed-to-north-korea/" rel="nofollow noreferrer">https://blog.phylum.io/junes-sophisticated-npm-attack-attrib...</a>3. <a href="https://blog.phylum.io/rust-malware-staged-on-crates-io/" rel="nofollow noreferrer">https://blog.phylum.io/rust-malware-staged-on-crates-io/</a>4. <a href="https://github.com/phylum-dev/birdcage">https://github.com/phylum-dev/birdcage</a>5. <a href="https://github.com/phylum-dev/cli">https://github.com/phylum-dev/cli</a>6. <a href="https://docs.phylum.io/docs/integrations_overview" rel="nofollow noreferrer">https://docs.phylum.io/docs/integrations_overview</a>