A recently discovered software supply chain attack has targeted blockchain developers by deploying eleven malicious npm packages designed to steal cryptocurrency wallet credentials and compromise development infrastructure. The campaign highlights a growing trend of threat actors exploiting open-source ecosystems to target the financial assets of Web3 projects and cloud-native environments. Cyfirma Research recently identified a […]
The post Malicious npm Packages Abuse Postinstall Scripts to Steal Ethereum Private Keys and Mnemonic Phrases appeared first on Cyber Security News.