Hackers Exploit JavaScript Developer Accounts in Massive Crypto Malware Attack

BTCC / BTCC Square / Global Cryptocurrency /

Author:

Release Time:

2025-09-08 21:39:02

BTCCSquare news:

A major supply-chain attack has compromised widely used JavaScript packages, potentially endangering billions in cryptocurrency assets. Charles Guillemet, CTO at Ledger, revealed that hackers hijacked a reputable developer's Node Package Manager (NPM) account to inject malicious code into packages downloaded over a billion times.

The malware stealthily replaces cryptocurrency wallet addresses during transactions, diverting funds to attackers. "The code systematically swaps transaction addresses with hacker-controlled ones," Guillemet stated. The breach targets NPM, a Core JavaScript development tool, allowing attackers to infiltrate decentralized applications and software wallets through compromised dependencies.

By:

Log in to Reply

Meta Platforms to Invest Over $600 Billion in AI, Boosting Chipmakers and Data Center Demand

Articles on this site are sourced from public networks or curated by AI for informational purposes only and do not represent BTCC’s views. Original rights belong to the respective authors. For copyright concerns, please contact [email protected]. BTCC assumes no liability for the accuracy, timeliness, or completeness of this information, and disclaims all liability arising from reliance on such content. This content is for reference only and should not be taken as investment, legal, or commercial advice.