BTCC / BTCC Square / Global Cryptocurrency /

Malicious Packages Compromise dYdX User Wallets, Threatening Crypto Assets

Malicious Packages Compromise dYdX User Wallets, Threatening Crypto Assets

Author:

Global Cryptocurrency

Published:

2026-02-07 10:27:01

12

3

BTCCSquare news:

Security researchers at Socket have uncovered a critical vulnerability in npm and PyPI packages linked to dYdX, a leading decentralized derivatives exchange. Malicious code embedded in versions @dydxprotocol/v4-client-js (3.4.1, 1.22.1, 1.15.2, 1.0.31) and dydx-v4-client (1.1.5post1) enables attackers to steal seed phrases and private keys, leading to complete wallet compromise.

The breach impacts all applications relying on these packages—including Trading Bots and automated strategies—with both developers and end-users at risk. dYdX, which has processed $1.5 trillion in volume since launch, now faces scrutiny as its $175 million open interest becomes a potential target for exploitation.

By:

Investors Pour $258M Into Crypto Startups Despite $2T Market Wipeout

|Square

Get the BTCC app to start your crypto journey

Download on the App Store GEI IT ON Google Play

Get started today Scan to join our 100M+ users

Risk warning: Digital asset trading is an emerging industry with bright prospects, but it also comes with huge risks as it is a new market. The risk is especially high in leveraged trading since leverage magnifies profits and amplifies risks at the same time. Please make sure you have a thorough understanding of the industry, the leveraged trading models, and the rules of trading before opening a position. Additionally, we strongly recommend that you identify your risk tolerance and only accept the risks you are willing to take. All trading involves risks, so you must be cautious when entering the market.

The world’s longest-running cryptocurrency exchange since 2011 © 2011 - 2026 BTCC.com. All rights reserved

All articles reposted on this platform are sourced from public networks and are intended solely for the purpose of disseminating industry information. They do not represent any official stance of BTCC. All intellectual property rights belong to their original authors. If you believe any content infringes upon your rights or is suspected of copyright violation, please contact us at [email protected]. We will address the matter promptly and in accordance with applicable laws.BTCC makes no explicit or implied warranties regarding the accuracy, timeliness, or completeness of the republished information and assumes no direct or indirect liability for any consequences arising from reliance on such content. All materials are provided for industry research reference only and shall not be construed as investment, legal, or business advice. BTCC bears no legal responsibility for any actions taken based on the content provided herein.