Hackers find new way to hide malware in Ethereum smart contracts
ReversingLabs researchers uncovered two NPM packages that used Ethereum smart contracts to hide malicious URLs and bypass security scans.
Threat actors have found a new way to deliver malicious software, commands, and links inside Ethereum smart contracts to evade security scans as attacks using code repositories evolve.
Cybersecurity researchers at digital asset compliance firm ReversingLabs have found new pieces of open-source malware discovered on the Node Package Manager (NPM) package repository, a large collection of JavaScript packages and libraries.
The malware packages “employ a novel and creative technique for loading malware on compromised devices — smart contracts for the Ethereum blockchain,” ReversingLabs researcher Lucija Valentić said in a blog post on Wednesday.
Source: Cointelegraph →Related News
- 2 hours ago
Etherealize raises $40M to market Ethereum, firms add $1.2B this week
- 2 hours ago
BitMine buys $65M of ETH as chairman touts ‘1971 moment’ for Ethereum
- 2 hours ago
Ether whales have added 14% more coins since April price lows
- 3 hours ago
Huge week for tokenized RWAs as Fed preps DeFi, payment talks
- 3 hours ago
Coinbase CEO wants AI to write 50% of his platform’s code by October