Ledger patched a vulnerable library in their Connect Kit today. Summary from someone on Elons app:
1. They are loading JS from a CDN.
2. They are not version locking loaded JS.
3. They had their CDN compromised.
Ledger patched a vulnerable library in their Connect Kit today. Summary from someone on Elons app:
1. They are loading JS from a CDN.
2. They are not version locking loaded JS.
3. They had their CDN compromised.
Security blunder one after the other. How do people still trust Ledger
nostr:note1envyaxq4sdy8fetssv6fvnsfdxenujuvtpg8xwl8gp4gax8mpjzs59geza
