Summary: The xrpl.js JavaScript library used for the Ripple cryptocurrency has been compromised through a software supply chain attack, potentially exposing users’ private keys. Affected versions include 4.2.1 to 4.2.4 and 2.14.2, with patched versions released as 4.2.5 and 2.14.3. Users are urged to upgrade immediately to avoid security risks.
Affected: Ripple (xrpl.js JavaScript library)
Keypoints :
- The library was tampered with to introduce a backdoor to steal cryptocurrency private keys.
- A user named “mukulljangid” is believed to be linked to the attack, likely indicating a compromised account of a Ripple employee.
- Users should update to versions 4.2.5 and 2.14.3 to mitigate threats, as the vulnerability does not affect the XRP Ledger codebase.
Source: https://thehackernews.com/2025/04/ripples-xrpljs-npm-package-backdoored.html