1517 sats \ 0 replies \ @davidw 14 Dec 2023 \ on: Alert: ledger library confirmed compromised and replaced with a drainer. privacy
That company is so compromised and/or inept. From another tweet:
- They are loading Javascript from a CDN (Content Delivery Network).
- They are not version-locking loaded Javascript.
- They had their CDN compromised.
ELI5 version:
![](https://imgprxy.stacker.news/QZOJBM7txG585X8V_hbjnEq9jtc94T3dqsL0DvgPb9k/rs:fit:2560:1440/aHR0cHM6Ly9tLnN0YWNrZXIubmV3cy84MDU0)