Supply Chain Attack on Popular Animation Library Lottie-Player Targets Web3 Users
In a sophisticated supply chain attack, malicious actors infiltrated the widely-used JavaScript library lottie-player, injecting code that opens a Web3 wallet connection prompt on legitimate websites. This prompt, if accepted...