🚨SlowMist TI Alert🚨 A large-scale NPM supply chain attack is underway... 📩A reputable developer's NPM account was targeted by a fake "NPM 2FA Update" email phishing attack, allowing the attacker to inject an obfuscated index.js into a popular package (downloaded over 1 billion times). The attack payload hijacked browser wallets (such as 🦊MetaMask) and intercepted network requests (fetch and XMLHttpRequest), silently exchanging cryptocurrency addresses (#ETH/#BTC/#SOL/#TRX) to the attacker's wallet (0xFc4a4858bafef54D1b1d7697bfb5c52F4c166976). 🔒 Immediate Action: 👨‍💻 Developers/Wallets/DeFi → Audit dependencies, rotate credentials, and remove compromised packages. 🔑 Users → Prefer using hardware wallets and verifying every transaction. ⛔ Software wallet users → Avoid on-chain transactions until safe. Stay vigilant! ⚠️ #Security #SupplyChainAttack