1inch was hacked: the incident affects dApp on Lottie Player and leads to the spread of malicious content through an updated npm package from Blockaid ⚠️

1inch, the front-end decentralized aggregator of cryptocurrency exchanges, has reportedly been hacked, according to a report from the cryptocurrency security company Coinspect Security. The incident reportedly affects not only 1inch but also all decentralized applications using Lottie Player. Blockaid confirmed that a new version of the npm package was deployed, leading to the execution of malicious operations in several real dApps. Additionally, non-cryptocurrency websites using this service are also spreading malicious content. Blockaid warns users against interacting with these platforms and recommends temporarily ceasing their use.