• About Us
  • Careers
  • Contact
No Result
View All Result
Wednesday, June 25, 2025
DeFi Planet
  • News
    • People
    • Business
    • Crime
    • Regulation
    • Crypto
    • CBDC
  • Markets
    • Bitcoin
    • Ethereum
    • Stablecoins
    • Altcoins
    • Crypto ETFs
    • Memecoins
  • Policy
  • Articles
    • Press Releases
    • Opinion
    • Explainers
    • Guest Post
    • Sponsored
  • Directory
    • Companies
    • People
    • Products
    • Wallets
  • Multimedia
    • Videos
    • Podcasts
  • Learn
    • DeFi Basics
    • Tutorials
    • Reviews
    • Blockchain Fundamentals
  • Research
    • Case Studies
  • Explore
    • DeFi
    • Crypto Gaming
    • NFT
    • DAO
    • Metaverses
  • Jobs
  • Markets Pro
    • DeFi Planet Pro
    • Spend Crypto
    • Swap Crypto
    • Coin Prices
    • Crypto Exchanges
    • Crypto Analyzer
  • News
    • People
    • Business
    • Crime
    • Regulation
    • Crypto
    • CBDC
  • Markets
    • Bitcoin
    • Ethereum
    • Stablecoins
    • Altcoins
    • Crypto ETFs
    • Memecoins
  • Policy
  • Articles
    • Press Releases
    • Opinion
    • Explainers
    • Guest Post
    • Sponsored
  • Directory
    • Companies
    • People
    • Products
    • Wallets
  • Multimedia
    • Videos
    • Podcasts
  • Learn
    • DeFi Basics
    • Tutorials
    • Reviews
    • Blockchain Fundamentals
  • Research
    • Case Studies
  • Explore
    • DeFi
    • Crypto Gaming
    • NFT
    • DAO
    • Metaverses
  • Jobs
  • Markets Pro
    • DeFi Planet Pro
    • Spend Crypto
    • Swap Crypto
    • Coin Prices
    • Crypto Exchanges
    • Crypto Analyzer
No Result
View All Result
DeFi Planet
No Result
View All Result

Malware Targets Ethereum, XRP, Solana Users Through NPM Supply Chain Attack

14 April 2025
in Crime, News
Reading Time: 3 mins read
109 4
Home News Crime

Cybersecurity experts have sounded the alarm on a new malware campaign targeting users of popular crypto wallets like Atomic and Exodus, with Ethereum, XRP, and Solana assets in the crosshairs.

According to researchers at ReversingLabs, the campaign exploits software supply chains by sneaking malicious code into seemingly harmless npm (Node Package Manager) packages used by developers. One of the key culprits identified is a package named “pdf-to-office,” which, despite appearing legitimate, harbours hidden code designed to compromise crypto wallet applications.

The attack occurs when developers unknowingly integrate the trojanized package into their projects. Once installed, the malware springs into action—scanning the infected system for crypto wallets and injecting code capable of silently hijacking transactions. Victims remain unaware as the malware replaces recipient wallet addresses with attacker-controlled ones while maintaining a normal-looking user interface.

ReversingLabs’ technical breakdown reveals a sophisticated, multi-stage attack strategy. The malware uses advanced obfuscation methods to bypass security scans and then locates application paths for crypto wallets. It extracts and repackages the application files after injecting its malicious payload, ensuring the altered software behaves as expected while concealing its true intent.

The malware’s ability to tamper with transactions involving Ethereum, Tron-based USDT, XRP, and Solana is particularly alarming. The attacker’s addresses are hidden using base64 encoding, allowing the malware to decode and insert them just as a user sends funds—without triggering red flags in the wallet’s interface.

The consequences are dire: transactions appear routine, but users later discover on the blockchain that their crypto assets were rerouted to unfamiliar addresses. This latest scheme highlights an escalating trend in software supply chain attacks aimed at draining funds from unsuspecting crypto holders.

Security researchers urge developers and users alike to remain vigilant, double-check installed npm packages, and monitor blockchain transactions to verify fund movements.

Meanwhile, Microsoft identified a new remote access trojan (RAT) to steal cryptocurrency from users by targeting 20 different wallet extensions on Google Chrome.

 

If you want to read more news articles like this, visit DeFi Planet and follow us on Twitter, LinkedIn, Facebook, Instagram, and CoinMarketCap Community.

“Take control of your crypto portfolio with MARKETS PRO, DeFi Planet’s suite of analytics tools.”

Don't miss out!

Subscribe To Our Newsletter

Receive top education news, lesson ideas, teaching tips and more!
Invalid email address
Give it a try. You can unsubscribe at any time.
Thanks for subscribing!
Tags: ReversingLabs
Share66Tweet41Share11
Previous Post

First Digital Labs Defends FDUSD Backing Amid Fraud Allegations from Justin Sun

Next Post

Chinese Fraudsters Launder $6M in USDT, Victimizing Thousands of Indians in Crypto Scam

Favour Okosodo

Favour Okosodo

Experienced web content writer with a strong command of SEO, specializing in creating concise, engaging content that drives traffic and enhances conversions across diverse industries.

Related Posts

WF Holding Ltd Enters Crypto Sector, Appoints Bull Coin Asset Management
Crypto

WF Holding Ltd Enters Crypto Sector, Appoints Bull Coin Asset Management

25 June 2025
Arizona House Approves Bitcoin Reserve Bill Using Seized Crypto
Bitcoin

Arizona House Approves Bitcoin Reserve Bill Using Seized Crypto

25 June 2025
Polymarket Nears $1B Valuation Amid Global Scrutiny, New Partnership With Elon Musk’s X
Crypto

Polymarket Nears $1B Valuation Amid Global Scrutiny, New Partnership With Elon Musk’s X

25 June 2025
Ledger Teams Up with San Antonio Spurs in Latest Crypto-Sports Revival
Crypto

Ledger Teams Up with San Antonio Spurs in Latest Crypto-Sports Revival

25 June 2025

Featured Posts

Has Web3 Failed to Protect the Core Innovations of Crypto and DeFi?

Has Web3 Failed to Protect the Core Innovations of Crypto and DeFi?

byOlajumoke Oyaleke
15 June 2025
0

Are Green Cryptocurrencies the Future of Blockchain Sustainability?

Are Green Cryptocurrencies the Future of Blockchain Sustainability?

byOlayinka Sodiq
12 June 2025
0

Web3 Gaming’s Scaling Crisis: Why Innovation Alone Isn’t Enough

Web3 Gaming’s Scaling Crisis: Why Innovation Alone Isn’t Enough

byOlayinka Sodiq
10 June 2025
0

What Is Price Slippage in Crypto & How Can You Avoid It

What Is Price Slippage in Crypto & How Can You Avoid It

byOlayinka Sodiq
4 June 2025
0

The Rise of Decentralized Identity Solutions in DeFi

The Rise of Decentralized Identity Solutions in DeFi

byOlayinka Sodiq
20 October 2024
0

Read More

Chain of Thoughts

Are Stablecoins Bank Deposits?

Are Stablecoins Bank Deposits?

byOlu Omoyele
31 May 2025
0

...

DAOs and the Coordination of Human Endeavour

DAOs and The Coordination of Human Endeavour

byOlu Omoyele
27 April 2025
0

...

Should DeFi Be Regulated?

Should DeFi Be Regulated?

byOlu Omoyele
27 March 2025
0

...

Is Tokenization All That It’s Cracked Up To Be?

Is Tokenization All That It’s Cracked Up To Be?

byOlu Omoyele
26 February 2025
0

...

Markets Update

First XRP ETF Approved on Toronto Stock Exchange— Is This a Green Light for XRP ETF Approvals in More Countries?

1 day ago

Your Weekend Crypto Roundup | June 2025 (Week 3)

5 days ago

Your Weekend Crypto Roundup | June 2025 (Week 2)

2 weeks ago

Your Weekend Crypto Roundup | June 2025 (Week 1)

3 weeks ago

Your Weekend Crypto Roundup | May 2025 (Week 5)

4 weeks ago

Your Weekend Crypto Roundup | May 2025 (Week 4)

1 month ago
Read More

Events

  • No events
  • Spotlight

    All about Ethereum
    All about Algorand
    All about Bitcoin
    All about Gora

    Press Releases

    Gelato and Morpho Partner To Offer Embedded Crypto-Backed Loans for Wallets, Brokers, and Fintech Apps

    bychainwire
    25 June 2025
    0

    GSR Launches Enhanced Systematic OTC Platform, Expanding FX Capabilities and Asset Coverage

    bychainwire
    25 June 2025
    0

    Magic Newton Foundation Redefines Fair Token Launches with $NEWT

    bychainwire
    25 June 2025
    0

    Moca Foundation announces Moca Chain for self-sovereign, privacy-preserving identity and user verification

    bychainwire
    25 June 2025
    0

    RoboCorp.co Debuts World’s First Search Engine That Converts Human Data and Expertise Into Crypto Income

    bychainwire
    25 June 2025
    0

    Read More

    ADVERTISING

    ABOUT

    TEAM

    CAREERS

    CONTACT

    TERMS & CONDITIONS

    PRIVACY POLICY

    © Copyright 2025 DeFi Planet

    Welcome Back!

    Login to your account below

    Forgotten Password?

    Retrieve your password

    Please enter your username or email address to reset your password.

    Log In
    Please enter and activate your license key for Cryptocurrency Widgets PRO plugin for unrestricted and full access of all premium features.

    Add New Playlist

    No Result
    View All Result
    • News
      • People
      • Business
      • Crime
      • Regulation
      • Crypto
      • CBDC
    • Markets
      • Bitcoin
      • Ethereum
      • Stablecoins
      • Altcoins
      • Crypto ETFs
      • Memecoins
    • Policy
    • Articles
      • Press Releases
      • Opinion
      • Explainers
      • Guest Post
      • Sponsored
    • Directory
      • Companies
      • People
      • Products
      • Wallets
    • Multimedia
      • Videos
      • Podcasts
    • Learn
      • DeFi Basics
      • Tutorials
      • Reviews
      • Blockchain Fundamentals
    • Research
      • Case Studies
    • Explore
      • DeFi
      • Crypto Gaming
      • NFT
      • DAO
      • Metaverses
    • Jobs
    • Markets Pro
      • DeFi Planet Pro
      • Spend Crypto
      • Swap Crypto
      • Coin Prices
      • Crypto Exchanges
      • Crypto Analyzer

    © Copyright 2024 DeFi Planet   |   Terms & Conditions   |   Privacy Policy

    -
    00:00
    00:00

    Queue

    Update Required Flash plugin
    -
    00:00
    00:00