A popular online animation tool was abused to trick people into handing over access to their cryptocurrency wallets, with at least one individual losing close to $700,000.

LottieFiles is a platform that provides tools and a library for creating, editing, and sharing lightweight, scalable animations in the Lottie format. These animations, together with the plugin LottiePlayer, are commonly used in websites and mobile applications with 94,000 weekly downloads and has been downloaded more than 4 million times since its launch.

Recently, an unnamed threat actor somehow obtained a session cookie from one of the developers of LottieFiles, and used that access to push three new versions of LottiePlayer (2.0.5, 2.0.6, and 2.0.7) to npmjs. Websites that use LottiePlayer and were configured to always use the latest version have had the malicious versions downloaded automatically.

New version released

These new versions prompted website visitors to connect their cryptocurrency wallets, which basically gives the site access to the stored funds. We don’t know how many people fell for the trick and connected their wallets, but we do know that at least one person did, and it cost them 10 BTC, which is $696,960 at press time. This information came from Scam Sniffer, a Web3 anti-scam platform.

"On October 30th ~6:20 PM UTC – LottieFiles were notified that our popular open source npm package for the web player @lottiefiles/lottie-player had unauthorized new versions pushed with malicious code," the project’s co-founder and CTO, Nattu Adnan, wrote on GitHub. "This does not impact our dotlottie player and/or SaaS services. Our incident response plans were activated as a result. We apologize for this inconvenience and are committed to ensuring safety and security of our users, customers, their end-users, developers, and our employees."

The attacker was quickly ousted, and a new version - 2.0.8, pushed live. This is a copy of the last safe version, which was 2.0.4.

"We have confirmed that our other open source libraries, open source code, GitHub repositories, and our SaaS were not affected."

Via The Register

More from TechRadar Pro

• Hackers stole billions of dollars of crypto in 2023
• Here's a list of the best firewalls today
• These are the best endpoint protection tools right now

from TechRadar - All the latest technology news https://ift.tt/2pblAxy

Latest Fortnite Remix live event teaser

(Image credit: Epic Games)

Teasers for the upcoming Fortnite Remix live event have started to come out, with the latest from Epic Games being an image of a butterfly. This butterfly resembles a rift portal, suggesting that players will be warping around the event, likely set to music. We'll have to wait and see how things play out, but it looks like we're in for a portal-hopping adventure.

A Fortnite Remix live event will lead into the next season, which is going to be a throwback to Chapter 2. This live event has been revealed as Fortnite Remix: The Prelude, and it'll give players the chance to come together to witness what's set to be a musical-themed blockbuster showing.

Now that we know that the next Season of Fortnite is another throwback in the vein of Fortnite OG, we can start looking ahead to the next month of action. Epic Games has been keeping fairly quiet on the full details regarding Fortnite Remix, however, we do know that things will start to ramp up later today (November 1).

Here's everything we know about the next Fortnite live event so far, including all of the confirmed details on Fortnite Remix: The Prelude. We'll break down the release date in your time zone, and update with new info as it drops.

Fortnite Remix live event start time for your timezone

(Image credit: Epic Games)

Fortnite Remix: The Prelude goes live on November 1 at 6:30PM ET / 3:30PM PT / 10:30PM GMT. You'll be able to load into the game at this point, though we don't yet know exactly what we'll be doing. Stay tuned for updates!

Fortnite Remix: The Prelude live event - what to expect

(Image credit: Epic Games)

Epic Games hasn't revealed any details on Fortnite Remix: The Prelude just yet, other than the time it'll be going live. A Tweet from the Fortnite account does provide a slight clue, however, telling players that they will want to have their "volume up".

The countdown begins! Join us for Remix: The Prelude in-game on November 1. When the timer hits zero, be there with the volume UP. pic.twitter.com/nah5aXPedzOctober 29, 2024

Given the Remix theming of Fortnite Chapter 2, it's likely that the upcoming live event will feature a musical element front and center. This could mean a performance of a remixed Chapter 2 track, a collaborative Fortnite Festival gameplay style, or something else entirely. We'll have to wait and see. For now, you can visit Restored Reels to see the countdown screen. It's likely that this is where the event will start.

(Image credit: Epic Games)

You Might Also Like...

• Best crossplay games
• Fortnite Chapter 4 review
• PS5 Pro games list

from TechRadar - All the latest technology news https://ift.tt/ry3XU1b