ChainCatcher message, according to Scam Sniffer monitoring, KlapAI has been hacked, and malicious code has been injected into the front end. Users are advised to use it with caution to avoid phishing risks.

ChainCatcher message, Ledger stated on social media that the official Ledger Connect Kit version 1.1.8 has now been pushed. Ledger and WalletConnect confirmed that the malicious code has been disabled. Users can safely use the Ledger Connect Kit, but it is recommended that users wait 24 hours and clear their browser cache.Previously, hackers exploited a vulnerability in the Ledger Connect Kit to steal approximately $484,000 in assets.Slow Mist founder Yu Sen emphasized that the Ledger wallet itself was not affected; the affected parties are some DApps that rely on the Ledger module.

ChainCatcher message, the Web3 anti-fraud service provider Scam Sniffer posted on social media that Ledger has updated its codebase to version 1.18 to remove malicious code.ChainCatcher reminds that it is currently uncertain whether it is safe to interact with dApps, and users are advised to proceed with caution.

ChainCatcher news, Slow Mist founder Yu Xian stated on the X platform that there has been a recent emergence of malicious code targeting http://friend.tech (ft).Scammers will lure target users to add this code as a bookmark, and when users visit the ft page, once the bookmark is executed, the malicious code will trick users into revealing their passwords (i.e., ft's 2FA), and steal tokens related to ft and its embedded wallet Privy. This means that users' ft accounts and related funds will be stolen.