Login
Sign Up
Woofun AI reports that a supply chain attack compromised the Injective blockchain ecosystem, targeting the @injectivelabs/sdk-ts package to steal wallet keys and seed phrases through malicious code embedded in a widely distributed software development kit.
The attack vector exploited the trust placed in legitimate developer tools, with hackers modifying version 1.20.21 of the @injectivelabs/sdk-ts npm package. This specific package, which recorded approximately 50,000 weekly downloads, serves as a foundational component for applications built on the Injective layer 1 network. Security firm Socket identified the intrusion, noting that the malicious release hooked into standard wallet key-derivation functions. When developers’ applications invoked these functions, the malware secretly captured private keys and mnemonics—critical credentials for accessing crypto wallets. The stolen data was then encoded and exfiltrated via fake telemetry, disguised as legitimate network traffic to an address mimicking an official Injective server.
Structurally, the compromise extended beyond the primary SDK; Socket revealed that the malicious package was pinned across 17 other packages within the Injective Labs npm scope. This amplification mechanism exposed users who may not have installed the SDK directly, significantly widening the potential attack surface for any application handling Injective wallet workflows.
The timeline of the breach began on Thursday, June 8, when suspicious commits appeared on a compromised developer GitHub account. These commits introduced the malicious code into the repository, marking the entry point for the supply chain attack. The compromised GitHub account served as the vector for injecting the malware into the npm package distribution pipeline.
Notably, the attack did not target the blockchain’s underlying cryptography or smart contracts directly. Instead, it focused on the trusted developer tools used to build wallets, exchanges, and applications, a relatively new and increasingly sophisticated attack vector in the Web3 security landscape.
Woofun AI data shows that Injective, an interoperable layer 1 designed specifically for DeFi applications, has seen its usage metrics shift significantly over the past two years. According to DefiLlama, the network’s total value locked (TVL) has shrunk by 88%, dropping from a peak of $71 million in mid-2024 to current levels of $8.2 million. Despite this decline in economic activity, the network remains a critical infrastructure component for developers, making the compromise of its core SDK particularly significant. The disparity between the network’s reduced TVL and the high volume of SDK downloads underscores the persistent reliance on Injective’s developer tools, even as financial activity wanes.
Response efforts were initiated quickly after the breach was detected. Socket reported that the developer whose account was infiltrated identified the compromise promptly, but the malware had already been downloaded more than 300 times. Consequently, the campaign is not yet fully contained, raising concerns about the extent of potential credential theft. Injective CEO Eric Chen stated that the issue "is already fixed," and the affected versions on npm have been deprecated. He assured that no funds on the network are at risk, although Socket did not specify whether any private keys had successfully resulted in fund theft. The rapid deprecation of the package mitigates further exposure, but the 300+ downloads remain a critical variable in assessing the full scope of the incident.
The broader threat landscape reflects a growing trend of attackers leveraging legitimate platforms to deliver malicious payloads. The Security Alliance (SEAL) highlighted in its second-quarter threat report that attackers are increasingly using trusted services like GitHub, npm, and Google to distribute malware. SEAL noted that modern malware campaigns have become more comprehensive, often combining infostealers, remote access trojans (RATs), and backdoor capabilities in single cross-platform packages. This includes a rise in macOS-specific campaigns. Precedents for this attack style include a similar supply chain attack on Axios npm releases in March, and a malware campaign called TrapDoor discovered in May, which targeted crypto, DeFi, AI, and security developers.
Additionally, GitHub itself was exploited on May 20, following unauthorized access to internal repositories after an employee’s device was compromised, illustrating the vulnerability of even major infrastructure providers.
The financial impact of such security failures is substantial. CertiK reported on Monday that wallet compromises were the most costly attack vector in the first half of 2026, with $444 million stolen across 33 incidents. This statistic underscores the critical importance of securing developer tools and supply chains. The Injective incident, while contained, adds to the growing list of supply chain attacks that threaten the integrity of Web3 infrastructure. As attackers continue to refine their tactics, leveraging legitimate platforms to bypass traditional security measures, the industry must prioritize robust verification processes for all integrated software components. This marks another significant example of how supply chain vulnerabilities can expose millions of users to potential credential theft, even when the underlying blockchain remains secure.