Key Points:

• A threat actor took advantage of a developer access token related to the XRP Ledger, allowing for unauthorized code publication which could have had severe consequences for the network.
• The vulnerability was limited to certain versions of the Node Package Manager (NPM). Notably, major XRP services like Xaman Wallet and XRPScan continued unaffected.
• The XRP Ledger Foundation swiftly released updated tool versions to mitigate the issue, urging immediate upgrades to the latest releases.

---

A malicious actor reportedly exploited a developer access token related to the XRP Ledger to introduce unauthorized code to the emerging network, an action that could have proved “catastrophic,” according to security experts. Charlie Eriksen from Aikido Security, who identified the flaw, indicated that a concealed issue had been included in the latest updates of a toolkit used for creating applications that integrate with the XRP infrastructure.

“A developer’s NPM access token was stolen by the threat actors,” noted Aikido in a statement. “It remains unclear how this incident occurred or who is behind it, although we have some leads we are pursuing.”

The flaw only impacts versions of Node Package Manager, a platform providing reusable code for developers. Major XRP services confirmed on their platforms that they remained unaffected by the vulnerability. As part of their response, the XRP Ledger Foundation released updated packages to rectify the issue promptly, advising developers to transition to version 4.2.5 without delay.

This flaw posed a risk of exposing users’ private keys, theoretically allowing unauthorized access to their cryptocurrency wallets. Eriksen highlighted that the npm issue serves as a reminder of the importance of verifying the code being utilized.

As a result of the incident, XRP prices surged by 8.5% within the last 24 hours, reflective of a broader market rebound.