chaindrainMVP
Preview surface — demo data. Where real data exists today (e.g. RealT, BlackRock BUIDL, Lift Dollar) we render it; everywhere else we render synthetic enrichment generated deterministically from public signal and clearly marked Demo or Inferred. The Phase 3 roadmap replaces every synthetic source with live ingestion — see Methodology → Exposure Graph & Similarity Engine.
← back to incident ledger

supply chain npmDemo

Apr 12, 2024 · $365.9K · infrastructure

Narrative

On 2024-04-12, Ethereum Calldata suffered a supply chain npm incident resulting in approximately $365,870 in losses. The exploit targeted the infrastructure layer. Attribution: internal. This is a demonstration entry — not a real incident.

Victims

Classification

Root cause
supply_chain_npm
Secondary causes
Attack layer
infrastructure
Strategy
tech_vuln
Actor role
target
Attribution
internal
Attacker address
0x15cec761c42a70c117667188d8d2c02636fe547b
Flash loan
no
Audited at time
no
Bounty at time
no

AADAPT mappings

DEMO:AADAPT.TA0001DEMO:AADAPT.TA0011DEMO:AADAPT.T1195.002

Evidence

Disclosure date
Apr 12, 2024
Funds recovered
$100.2K
Audit firms at time
Post-mortem URLs (synthetic)
  • https://medium.com/ethereum-calldata/post-mortem-ethereum-calldata-2024-04-12
  • https://rekt.news/ethereum-calldata-rekt
  • https://blog.ethereum-calldata.xyz/incident-report
tx hashes (1)
  • 0x313a355911afa38fdc3a4096fcdb38aa0f852509d521ce59c9a2522d9fb2cf2f