Security News Injective SDK on npm infected with cryptocurrency wallet stealer BleepingComputer Daniel Bender 09 Jul 2026 Share Hackers compromised the Injective Labs SDK project's GitHub repository and used it to publish a malicious package on the Node Package Manager (npm) that stole cryptocurrency wallet private keys and mnemonic seed phrases.