吴说区块链|Jan 09, 2026 00:06
Security research firm Zscaler ThreatLabz has discovered three malicious npm packages disguised as Bitcoin-related libraries (bitcoin-main-lib, bitcoin-lib-js, bip40). Before being taken down, these packages were downloaded over 3,400 times and were used to implant a remote access trojan (RAT) called NodeCordRAT. NodeCordRAT can steal Chrome login credentials, API tokens, and MetaMask wallet private keys/mnemonics, and it uses Discord servers for command and control. The malware activates through installation scripts without the developer's knowledge. The security team warns that npm supply chain risks are still on the rise. (cryptopolitan)
https://www.(wublock123.com)/index.php?m=content&c=index&a=show&catid=6&id=54804
Share To
Timeline
HotFlash
APP
X
Telegram
CopyLink