SushiSwap's CTO Matthew Lilley has issued a cautionary statement on social media, urging users to refrain from interacting with any decentralised applications (dApps) due to a suspected security breach.
The alert follows the discovery of a potential compromise in a widely used web3 connector, potentially allowing malicious code injection across numerous dApps.
Lilley has requested Ledger, a prominent hardware wallet company, to conduct an in-depth investigation into the issue.
Blockaid, a Web3 security firm, suspects a supply chain attack on the ledgerconnect kit, leading to the injection of a wallet-draining payload affecting several popular dApps.