chaindrainMVP
Preview surface — demo data. Where real data exists today (e.g. RealT, BlackRock BUIDL, Lift Dollar) we render it; everywhere else we render synthetic enrichment generated deterministically from public signal and clearly marked Demo or Inferred. The Phase 3 roadmap replaces every synthetic source with live ingestion — see Methodology → Exposure Graph & Similarity Engine.
← back to incident ledger

supply chain npmDemo

Sep 26, 2024 · $1M · infrastructure

Narrative

On 2024-09-26, MEXC suffered a supply chain npm incident resulting in approximately $1,037,831 in losses. The exploit targeted the infrastructure layer. Attribution: dprk_lazarus. This is a demonstration entry — not a real incident.

Victims

Classification

Root cause
supply_chain_npm
Secondary causes
frontend_dns_hijack
Attack layer
infrastructure
Strategy
tech_vuln
Actor role
target
Attribution
dprk_lazarus
Attacker address
0xe553ddb22dca662497b8a4601aa2b88fc5501c8a
Flash loan
no
Audited at time
no
Bounty at time
no

AADAPT mappings

DEMO:AADAPT.TA0001DEMO:AADAPT.TA0011DEMO:AADAPT.T1195.002

Evidence

Disclosure date
Sep 27, 2024
Funds recovered
Audit firms at time
Post-mortem URLs (synthetic)
  • https://medium.com/mexc/post-mortem-mexc-2024-09-26
  • https://rekt.news/mexc-rekt
tx hashes (1)
  • 0xd0d556bef30f30386def5f50591937f7091079a3e15c8a545260b0c7e03107ed