Ars Technica

Malicious packages for dYdX cryptocurrency exchange empties user wallets

Open source packages published on the npm and PyPI repositories were laced with code that stole wallet credentials from dYdX developers and backend systems and, in some cases, backdoored devices, ...
WBUR

Endless Thread

In 2019, the internet was abuzz about bizarre ads for a mobile game called Lily's Garden. The ads were only about 15 seconds each, but they evoked a whole universe ...
Hosted on MSN

Malicious packages empty dYdX user wallets

Researchers have revealed that bad actors are targeting dYdX and using malicious packages to empty its user wallets. According to the report, some open source packages published on the npm and PyPi ...