CZ: Web3 Will Redefine Web2 Security, We Are Still in the Early Days

BlockBeats News, September 9th. This morning, Binance founder CZ commented on the "NPM Supply Chain Security Incident," stating that even open-source software is not secure now. Web 3 will redefine the security of Web 2, and we are still in the early stages.

This morning, Ledger CTO Charles Guillemet posted, "A large-scale supply chain attack is currently taking place: a well-known developer's NPM account has been compromised. The affected package has been downloaded over 1 billion times, meaning the entire JavaScript ecosystem may be at risk. The malicious code works by silently manipulating cryptocurrency addresses in the background to steal funds."

Later this morning at 10 o'clock, according to CertiK Alert monitoring, developer Qix's NPM account was phished, and the attacker injected malicious code into npm. According to Security Alliance, the attacker seems to have only profited about 0.05 USD worth of ETH and 20 USD worth of Meme coin from it.