A large-scale supply chain attack is currently occurring: the NPM account of a well-known developer has been compromised. The download count of the affected packages has exceeded 1 billion, indicating that the entire JavaScript ecosystem may be at risk.
Malicious code can tamper with cryptocurrency addresses in the background to steal funds.
If you are using a hardware wallet, please pay attention to signing each transaction before proceeding, and ensure security.
If you are not using a hardware wallet, please refrain from making any chain transactions for the time being.