Ledger Exploit Puts Users at Risk; Sushi Advises Against Interacting with dApps A cautionary message has been issued to the crypto community following the discovery of a compromised version of Ledger software urging users to steer clear of decentralized applications (dApps). Sushi's Chief Technology Officer (CTO) raised the alarm about a widespread exploit tied to Ledger's Connect Kit affecting the decentralized finance (DeFi) ecosystem due to a front-end vulnerability. Ledger renowned for its hardware wallets offers the Connect Kit software utilized by various DeFi protocols such as Lido Metamask Coinbase and Sushi to establish connections between decentralized applications (dApps) and Ledger products. Exploiting the front end of a website or application allows hackers to manipulate visible functions deceiving users into unknowingly sending funds to malicious actors instead of their intended wallets. Sushi's CTO Matthew Lilley issued a strong warning on X advising users not to engage with any dApps until further notice. He highlighted the compromise of a widely used web3 connector enabling the injection of malicious code that could impact numerous dApps. The reported exploit involves a pop-up prompt that tricks users into connecting their wallets subsequently triggering a token drain. Similar issues have been reported on other DeFi platforms including Zapper and RevokeCash. Sushi released a statement acknowledging the critical issue stating "We've identified a critical issue: the ledger connector has been compromised potentially allowing the injection of malicious code affecting various dApps." The advisory explicitly instructs users not to interact or connect their wallets if they encounter an unexpected 'Connect Wallet' pop-up on the Sushi page. A vigilant X user pointed out the compromise of Ledger's library replaced with a token drainer. Responding to the situation Ledger confirmed the identification and removal of the malicious Ledger Connect Kit version. The company assured users that a genuine version is being deployed to replace the compromised file. In the interim users are strongly advised not to interact with any dApps with ongoing updates promised as the situation evolves. Importantly Ledger reassured its users that neither Ledger devices nor Ledger Live were compromised in this incident.