Share.

    2 Kommentare

    1. coinfeeds-bot on

      tldr; Cybersecurity researchers at Zscaler ThreatLabz uncovered three malicious Bitcoin npm packages—bitcoin-main-lib, bitcoin-lib-js, and bip40—that installed malware called NodeCordRAT. This malware stole Google Chrome credentials, API tokens, and MetaMask wallet data, including private keys and seed phrases. The packages amassed over 3,400 downloads before removal in November 2025. NodeCordRAT used Discord servers for command-and-control communication and targeted developers through npm supply chain attacks.

      *This summary is auto generated by a bot and not meant to replace reading the original article. As always, DYOR.

    Leave A Reply