• About Us
  • Careers
  • Contact
No Result
View All Result
Thursday, June 5, 2025
DeFi Planet
  • News
    • People
    • Business
    • Crime
    • Regulation
    • Crypto
    • CBDC
  • Markets
    • Bitcoin
    • Ethereum
    • Stablecoins
    • Altcoins
    • Crypto ETFs
    • Memecoins
  • Policy
  • Articles
    • Press Releases
    • Opinion
    • Explainers
    • Guest Post
    • Sponsored
  • Directory
    • Companies
    • People
    • Products
    • Wallets
  • Multimedia
    • Videos
    • Podcasts
  • Learn
    • DeFi Basics
    • Tutorials
    • Reviews
    • Blockchain Fundamentals
  • Research
    • Case Studies
  • Explore
    • DeFi
    • Crypto Gaming
    • NFT
    • DAO
    • Metaverses
  • Jobs
  • Markets Pro
    • DeFi Planet Pro
    • Spend Crypto
    • Swap Crypto
    • Coin Prices
    • Crypto Exchanges
    • Crypto Analyzer
  • News
    • People
    • Business
    • Crime
    • Regulation
    • Crypto
    • CBDC
  • Markets
    • Bitcoin
    • Ethereum
    • Stablecoins
    • Altcoins
    • Crypto ETFs
    • Memecoins
  • Policy
  • Articles
    • Press Releases
    • Opinion
    • Explainers
    • Guest Post
    • Sponsored
  • Directory
    • Companies
    • People
    • Products
    • Wallets
  • Multimedia
    • Videos
    • Podcasts
  • Learn
    • DeFi Basics
    • Tutorials
    • Reviews
    • Blockchain Fundamentals
  • Research
    • Case Studies
  • Explore
    • DeFi
    • Crypto Gaming
    • NFT
    • DAO
    • Metaverses
  • Jobs
  • Markets Pro
    • DeFi Planet Pro
    • Spend Crypto
    • Swap Crypto
    • Coin Prices
    • Crypto Exchanges
    • Crypto Analyzer
No Result
View All Result
DeFi Planet
No Result
View All Result

Malware Targets Ethereum, XRP, Solana Users Through NPM Supply Chain Attack

14 April 2025
in Crime, News
Reading Time: 3 mins read
109 4
Home News Crime

Cybersecurity experts have sounded the alarm on a new malware campaign targeting users of popular crypto wallets like Atomic and Exodus, with Ethereum, XRP, and Solana assets in the crosshairs.

According to researchers at ReversingLabs, the campaign exploits software supply chains by sneaking malicious code into seemingly harmless npm (Node Package Manager) packages used by developers. One of the key culprits identified is a package named “pdf-to-office,” which, despite appearing legitimate, harbours hidden code designed to compromise crypto wallet applications.

The attack occurs when developers unknowingly integrate the trojanized package into their projects. Once installed, the malware springs into action—scanning the infected system for crypto wallets and injecting code capable of silently hijacking transactions. Victims remain unaware as the malware replaces recipient wallet addresses with attacker-controlled ones while maintaining a normal-looking user interface.

ReversingLabs’ technical breakdown reveals a sophisticated, multi-stage attack strategy. The malware uses advanced obfuscation methods to bypass security scans and then locates application paths for crypto wallets. It extracts and repackages the application files after injecting its malicious payload, ensuring the altered software behaves as expected while concealing its true intent.

The malware’s ability to tamper with transactions involving Ethereum, Tron-based USDT, XRP, and Solana is particularly alarming. The attacker’s addresses are hidden using base64 encoding, allowing the malware to decode and insert them just as a user sends funds—without triggering red flags in the wallet’s interface.

The consequences are dire: transactions appear routine, but users later discover on the blockchain that their crypto assets were rerouted to unfamiliar addresses. This latest scheme highlights an escalating trend in software supply chain attacks aimed at draining funds from unsuspecting crypto holders.

Security researchers urge developers and users alike to remain vigilant, double-check installed npm packages, and monitor blockchain transactions to verify fund movements.

Meanwhile, Microsoft identified a new remote access trojan (RAT) to steal cryptocurrency from users by targeting 20 different wallet extensions on Google Chrome.

 

If you want to read more news articles like this, visit DeFi Planet and follow us on Twitter, LinkedIn, Facebook, Instagram, and CoinMarketCap Community.

“Take control of your crypto portfolio with MARKETS PRO, DeFi Planet’s suite of analytics tools.”

Don't miss out!

Subscribe To Our Newsletter

Receive top education news, lesson ideas, teaching tips and more!
Invalid email address
Give it a try. You can unsubscribe at any time.
Thanks for subscribing!
Tags: ReversingLabs
Share66Tweet41Share11
Previous Post

First Digital Labs Defends FDUSD Backing Amid Fraud Allegations from Justin Sun

Next Post

Chinese Fraudsters Launder $6M in USDT, Victimizing Thousands of Indians in Crypto Scam

Favour Okosodo

Favour Okosodo

Experienced web content writer with a strong command of SEO, specializing in creating concise, engaging content that drives traffic and enhances conversions across diverse industries.

Related Posts

source: reddit.com
Crypto

Lee Jae-myung Sworn In as South Korea’s President, Vows Economic Reforms and Crypto Innovation

4 June 2025
source: decrypt.co
Crypto

Vitalik Buterin Admits Bitcoin Holds Key Advantages Over Ethereum in Certain Areas

4 June 2025
source: coinbase.com
Crypto

Bitcoin Liquidity Crunch Could Fuel Fresh Price Surge, Says Sygnum Bank

4 June 2025
source: prnewswire.com
News

SolarBank Adopts Bitcoin Treasury Strategy to Boost Financial Resilience

4 June 2025

Featured Posts

The Hidden Dangers of Holding Crypto in Exchanges

The Hidden Dangers of Holding Crypto in Exchanges

byOlajumoke Oyalekeand1 others
27 May 2025
0

Should We Put a Price on Everything? The Ethics of Tokenizing Human Actions

Should We Put a Price on Everything? The Ethics of Tokenizing Human Actions

byFaari Labinjo
27 May 2025
0

The Most Influential Figures in Crypto History and Their Impact

The Most Influential Figures in Crypto History and Their Impact

byBobby Okposin
14 May 2025
0

Are Layer 2 Solutions Enhancing Ethereum—or Killing it?

byOlayinka Sodiqand1 others
6 January 2025
0

Beginner’s Guide To Earning Passive Income In Crypto | DeFi Planet

Simple Ways To Earn Passive Income From Your Crypto

byArjun Chandand1 others
1 September 2021
0

Read More

Chain of Thoughts

Are Stablecoins Bank Deposits?

Are Stablecoins Bank Deposits?

byOlu Omoyele
31 May 2025
0

...

DAOs and the Coordination of Human Endeavour

DAOs and The Coordination of Human Endeavour

byOlu Omoyele
27 April 2025
0

...

Should DeFi Be Regulated?

Should DeFi Be Regulated?

byOlu Omoyele
27 March 2025
0

...

Is Tokenization All That It’s Cracked Up To Be?

Is Tokenization All That It’s Cracked Up To Be?

byOlu Omoyele
26 February 2025
0

...

Markets Update

Your Weekend Crypto Roundup | May 2025 (Week 5)

4 days ago

Your Weekend Crypto Roundup | May 2025 (Week 4)

2 weeks ago

Your Weekend Crypto Roundup | May 2025 (Week 3)

3 weeks ago

Your Weekend Crypto Roundup | May 2025 (Week 2)

4 weeks ago

Your Weekend Crypto Roundup | May 2025 (Week 1)

1 month ago

Your Weekend Crypto Roundup | April 2025 (Week 4)

1 month ago
Read More

Events

Crypto Valley Conference
Crypto Valley Conference
5 Jun 25
Risch-Rotkreuz

Spotlight

All about Ethereum
All about Algorand
All about Bitcoin
All about Gora

Press Releases

BYDFi and Ledger Launch Global Campaign with Limited BYDFi x Ledger Nano X

bychainwire
5 June 2025
0

$ZEUS Marking His Territory: Announcing An IP Collaboration with Original Zeus Artist and Trademark Holder

bychainwire
4 June 2025
0

Huma Joins the Global Dollar Network to Advance Stablecoin Adoption on Solana

bychainwire
4 June 2025
0

Zircuit Joins Binance Alpha: ZRC Airdrop & Trading Competition Go Live

bychainwire
3 June 2025
0

CoinsBee Surpasses 5,000 Gift Card Brands, Becoming the Largest Crypto Gift Card Platform Worldwide

bychainwire
3 June 2025
0

Read More

ADVERTISING

ABOUT

TEAM

CAREERS

CONTACT

TERMS & CONDITIONS

PRIVACY POLICY

© Copyright 2025 DeFi Planet

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In

Add New Playlist

No Result
View All Result
  • News
    • People
    • Business
    • Crime
    • Regulation
    • Crypto
    • CBDC
  • Markets
    • Bitcoin
    • Ethereum
    • Stablecoins
    • Altcoins
    • Crypto ETFs
    • Memecoins
  • Policy
  • Articles
    • Press Releases
    • Opinion
    • Explainers
    • Guest Post
    • Sponsored
  • Directory
    • Companies
    • People
    • Products
    • Wallets
  • Multimedia
    • Videos
    • Podcasts
  • Learn
    • DeFi Basics
    • Tutorials
    • Reviews
    • Blockchain Fundamentals
  • Research
    • Case Studies
  • Explore
    • DeFi
    • Crypto Gaming
    • NFT
    • DAO
    • Metaverses
  • Jobs
  • Markets Pro
    • DeFi Planet Pro
    • Spend Crypto
    • Swap Crypto
    • Coin Prices
    • Crypto Exchanges
    • Crypto Analyzer

© Copyright 2024 DeFi Planet   |   Terms & Conditions   |   Privacy Policy

-
00:00
00:00

Queue

Update Required Flash plugin
-
00:00
00:00