THREATOPS
THREAT OPSThreat News › Not-so-anonymous telemetry: The @injectivelabs/sdk-ts backdoor

Not-so-anonymous telemetry: The @injectivelabs/sdk-ts backdoor

lowdatadog_seclabsPublished 2026-07-09

A malicious commit disguised as SDK telemetry briefly compromised @injectivelabs/sdk-ts, exfiltrating wallet mnemonics and private keys.

MITRE ATT&CK techniques

Original source: https://securitylabs.datadoghq.com/articles/not-so-anonymous-telemetry-injectivelabs-sdk-ts-backdoor/