News

The Hacker News2d

Malicious npm Package nodejs-smtp Mimics Nodemailer, Targets Atomic and Exodus Wallets

The package, named nodejs-smtp, impersonates the legitimate email library nodemailer with an identical tagline, page styling, ...
The Hacker News1d

Malicious npm Packages Exploit Ethereum Smart Contracts to Target Crypto Developers

Two npm packages hide downloader commands via Ethereum smart contracts; uploaded July 2025; targeting crypto developers.
Crypto News10h

Hackers Exploit Ethereum to Inject Malware in Popular Coding Libraries

Hackers are exploiting Ethereum smart contracts to inject malware into popular NPM coding libraries, using packages to run ...
Cyber Security Intelligence6d

Malicious Packages Discovered On npm Targeting Chrome User Data

Unsecured platforms can be susceptible to malicious actors inserting harmful packages to exploit unsuspecting users.
Coinlaw8h

Crypto Hackers Exploit Ethereum Smart Contracts in NPM Attacks

Hackers use Ethereum smart contracts to hide malware in NPM packages, launching a stealthy crypto-themed supply chain attack.