Key notes
- The stolen door found in the XRPL.JS 4.2.1 to 4.2.4 versions could expose private keys to XRPL.
- Core XRP Ledger is not affected, but library applications can be at risk.
- Xaman and XRPSCAN confirmed that their platforms were secure and not affected.
A new security concern appeared in the XRP Ledger community (XRPL). The reports show that a stolen door has been discovered in the official NPM XRPL package. Vulnerability, which could lead to stolen private keys and lost funds, has put developers and users on high alert.
XRP Ledger: backdoor found in the popular XRPL.JS library
According to reports, the Aikido Security cybersecurity company revealed on social networks that the XRPL.JS library, a key tool used by developers to create applications on the large XRP book, had been compromised. It was reported that a hidden stolen door was found in versions 4.2.1 to 4.2.4 of the library.
According to Aikido, this vulnerability allows the library to secretly send private keys to attackers, which endanger user portfolios. It should be noted that the warning was published for the first time on April 22.
In addition to the publication, Aikido Security has downloaded a screenshot showing part of the malicious code in a file named New Striptest (). As detailed, this file was designed to steal information sensitive to user or developers.
It is important to add that the revelation has aroused concerns in the space for the development of cryptography. Since the announcement on X, projects using the affected library versions are invited to immediately demote.
Aikido Security also warned that those who use previous versions should avoid upgrading for the moment. The XRPL.JS library is hosted on the NPM platform, which makes it widely accessible and widely integrated into various applications and cryptography tools.
Security researchers and digital assets of community members on X help disseminate the warning. It has been specified that the big XRP book does not remain affected. However, the concern has developed around projects and applications based on the compromised library, as they could always expose users at serious risks.
A user mentioned the discovery and highlighted the importance of returning to a safe version. From this publication, the Aikido Security post had received more than 146,000 views in a few hours, stressing how seriously the community has taken update.
This marks another notable vulnerability in 2025. Coinspeaker said that Unilend Finance had suffered a loss of $ 197,000 due to a defect in the calculation of collateral token scales.
Xrpscan and Xaman Wallet confirm that they are not affected
It should be noted that, by responding to the growing concern, the team behind the XRPSCAN explorer said that the platform was safe. According to post X, Xrpscan does not treat private keys and uses an earlier version of the XRPL.J library which does not contain the stolen door.
XRPSCAN is sheltered from this vulnerability of the XRPL.JS. We do not treat private keys and use an old version of XRPL.JS. For projects using XRPL.JS, we recommend that you check the versions of the library as soon as possible, especially if an update has been carried out recently.
– xrpscan (@xrpscan) April 22, 2025
In addition, the team advised all developers to examine their code and check their dependencies immediately, especially if updates had been made recently.
XRPL Labs also reacted to the situation. The group behind the Xaman portfolio confirmed that their infrastructure was not based on the vulnerable library. They also clarified that Xaman manages private keys using its systems, which protects its users from the compromise.
This incident emphasizes the critical need for in -depth journals of third -party tools in the development of cryptography. As previously indicated by Coinspeaker, Bybit took action to strengthen his security following a February hack. The exchange recently announced a partnership with La Garde de Zodia to help prevent future exploits.
following
Non-liability clause: Coinspeaker undertakes to provide impartial and transparent reports. This article aims to provide precise and timely information, but should not be considered as financial or investment advice. Since market conditions can change quickly, we encourage you to check the information for yourself and consult a professional before making decisions according to this content.
Benjamin Godfrey is a blockchain enthusiast and a journalist who savor the writing of actual applications for blockchain technology and innovations to stimulate general acceptance and global integration of emerging technology. His desire to educate people on cryptocurrencies inspires his contributions to renowned media and blockchain sites.
