[DuckDB NPM Account Compromised, Malicious Versions Released] SlowMist Technology CISO stated that the DuckDB NPM account was compromised, and malicious versions of duckdb, duckdb-wasm, etc., released early this morning are consistent with the wallet-stealing software from yesterday's supply chain attack. Users are advised to be vigilant and take precautions against risks.