Scan to download
Home Flash
Calendar
BTC $65,473.63 +3.20%
ETH $1,904.65 +3.64%
BNB $595.27 +0.29%
XRP $1.42 -4.56%
SOL $81.67 -4.53%
TRX $0.2795 -0.47%
DOGE $0.0974 -3.83%
ADA $0.2735 -4.22%
BCH $499.77 +1.68%
LINK $8.64 -2.97%
HYPE $28.98 -1.81%
AAVE $122.61 -3.42%
SUI $0.9138 -6.63%
XLM $0.1605 -4.62%
ZEC $260.31 -8.86%
BTC $65,473.63 +3.20%
ETH $1,904.65 +3.64%
BNB $595.27 +0.29%
XRP $1.42 -4.56%
SOL $81.67 -4.53%
TRX $0.2795 -0.47%
DOGE $0.0974 -3.83%
ADA $0.2735 -4.22%
BCH $499.77 +1.68%
LINK $8.64 -2.97%
HYPE $28.98 -1.81%
AAVE $122.61 -3.42%
SUI $0.9138 -6.63%
XLM $0.1605 -4.62%
ZEC $260.31 -8.86%
Home
Article
Flash
Specials
Columns
ETF
Knowledge Base
Calendar
Activity
Tools

duckdb

DuckDB confirms its Node.js and Wasm packages were attacked in the npm supply chain

ChainCatcher news, DuckDB's official Twitter account stated that the DuckDB Node.js and Wasm packages were compromised with malware in a recent npm supply chain attack. The official team has investigated and deprecated the affected versions, while releasing new versions. DuckDB stated that, according to npm data, no users have downloaded the affected packages. The team has released a security announcement detailing the post-analysis and response measures.
2025-09-10
DuckDB
npm
malware

Slow Fog: DuckDB NPM account compromised, be aware of risk prevention

ChainCatcher message, Slow Mist Technology's Chief Information Security Officer 23 pds posted on X platform that the DuckDB NPM account was compromised, and malicious versions such as duckdb, duckdb-wasm, etc. were released. These malware are consistent with wallet-stealing malware seen in supply chain attacks. Please be aware of risk prevention.
2025-09-09
Slow Fog Technology
DuckDB
Supply Chain Attack
Copyright © 2023
About Us
Media Kit
Apply column
Privacy Policy
Disclaimer
API
Hiring
Qiong ICP No. 2021009392
Qiong ICP No. 2021009392
app_icon
ChainCatcher Building the Web3 world with innovations.