Two new malicious npm packages exploit Ethereum smart contracts to target crypto developers.
Thehackernews •
Revision history
3 recorded changes
Want your article here?
Promote with Leviathan NewsMore on npm
Axios RAT breach navigates npm seas—swift checks chart secure course ahead
𝕏/@VentureBeat ·
Axios npm breach navigates swift waters: key rotation charts secure course ahead
CoinTelegraph ·
Anthropic's Claude code exposed via map file in public npm registry
𝕏/@Fried_rice ·
Attacker hijacks Axios npm maintainer, ships cross-platform RAT to both 1.x and 0.x branches within 39 minutes
𝕏/@feross ·
Hackers hide malware in GitHub, npm, and VS Code packages using invisible Unicode so supply‑chain attacks bypass human review and common defenses.
Arstechnica ·
Malicious npm package disguised as OpenClaw AI installer deploys full RAT stealing crypto wallets, macOS Keychain, and cloud credentials
The Hacker News ·
Axios RAT breach navigates npm seas—swift checks chart secure course ahead
𝕏/@VentureBeat ·
Axios npm breach navigates swift waters: key rotation charts secure course ahead
CoinTelegraph ·
Anthropic's Claude code exposed via map file in public npm registry
𝕏/@Fried_rice ·
Attacker hijacks Axios npm maintainer, ships cross-platform RAT to both 1.x and 0.x branches within 39 minutes
𝕏/@feross ·
Hackers hide malware in GitHub, npm, and VS Code packages using invisible Unicode so supply‑chain attacks bypass human review and common defenses.
Arstechnica ·
Malicious npm package disguised as OpenClaw AI installer deploys full RAT stealing crypto wallets, macOS Keychain, and cloud credentials
The Hacker News ·