Hackers recently tried to insert a backdoor into the Injective npm package with the goal of stealing wallet keys, according to CoinTelegraph. This incident highlights ongoing risks in the crypto software supply chain, where malicious actors seek to exploit popular developer tools.

Security experts from Socket researchers emphasized that this attack is particularly important for developers and applications managing Injective wallet workflows, as compromised packages could lead to significant security breaches.

For Japanese investors and developers engaged in crypto and DeFi markets, this event underscores the critical need for vigilance and thorough security checks when integrating third-party packages, especially in the rapidly growing blockchain ecosystem.