Critical hack may put crypto funds at risk: Ledger CTO

Reports suggest hackers have hijacked a common JavaScript package, allowing them to redirect wallet transactions to their own accounts

by Blockworks /

September 8, 2025 02:03 pm

Art by Crystal Le

Newsletter

Subscribe to The Breakdown

A critical software hack may be putting crypto funds at risk, Ledger’s chief technology officer Charles Guillemet warned on Monday.

Hackers appear to have compromised the npm account of an unnamed developer who’s “well-known,” Guillemet said.

Loading Tweet..

The hackers slipped malicious code into a tiny but widely used JavaScript package called error-ex. That package has been downloaded more than one billion times and is embedded in countless apps and services.

The malware operates by silently monitoring for cryptocurrency activity. When a user tries to send Bitcoin, Ethereum, Solana, or other tokens, it swaps the destination wallet with one controlled by attackers. Victims may believe they are sending funds to a trusted address, but the money instead flows to malicious actors.

Security analysts warned that the code can hijack transactions at multiple layers — altering what websites display, changing background processes, and even tricking apps into misrepresenting what users are signing.

Guillemet advised hardware wallet owners to carefully confirm each transaction on the device’s screen before approving it. Because the hardware displays the true recipient address, diligent users can still spot tampering. For those using software wallets alone, he urged avoiding all on-chain transactions until the attack is better understood.

Researchers are describing the breach as possibly the largest open-source supply chain attack in history. It highlights the fragility of shared software libraries and the direct financial risk they can create in crypto.

This is a developing story.

This article was generated with the assistance of AI and reviewed by editor Jeffrey Albus before publication.

Get the news in your inbox. Explore Blockworks newsletters:

The Breakdown: Decoding crypto and the markets. Daily.
0xResearch: Alpha in your inbox. Think like an analyst.

Tags

Newsletter

The Breakdown

Decoding crypto and the markets. Daily, with Byron Gilliam.

Upcoming Events

Digital Asset Summit 2026

Javits Center North | 445 11th Ave

Tues - Thurs, March 24 - 26, 2026

Blockworks’ Digital Asset Summit (DAS) will feature conversations between the builders, allocators, and legislators who will shape the trajectory of the digital asset ecosystem in the US and abroad.

buy tickets learn more

recent research

Research

ERC 8004: Introducing Trust for AI Agents

ERC 8004 introduces a new trust layer for AI agents by standardizing onchain identity, reputation, and validation. As agents begin handling capital and coordinating autonomously, trust becomes the key constraint to broader adoption. The rollout mirrors the early x402 narrative, where adoption lagged the initial launch until major integrations and a viral use case pulled attention into the ecosystem. If ERC 8004 follows a similar path, downstream infrastructure tied to the standard could see outsized benefit as the narrative gains traction. The primary beneficiaries are likely to be agent frameworks and launchpads at the distribution layer, agent to agent coordination platforms that enable delegation and payments, and validation providers that offer stronger security and execution guarantees.

by Kunal Doshi