Security News > 2024 > October > Malicious npm Packages Target Developers' Ethereum Wallets with SSH Backdoor
2024-10-22 09:33
Cybersecurity researchers have discovered a number of suspicious packages published to the npm registry that are designed to harvest Ethereum private keys and gain remote access to the machine via the secure shell (SSH) protocol. The packages attempt to "gain SSH access to the victim's machine by writing the attacker’s SSH public key in the root user’s authorized_keys file," software supply
News URL
https://thehackernews.com/2024/10/malicious-npm-packages-target.html
Related news
- Malicious npm packages target Ethereum developers' private keys (source)
- Cybercriminals Target Ethereum Developers with Fake Hardhat npm Packages (source)
- Malicious Obfuscated NPM Package Disguised as an Ethereum Tool Deploys Quasar RAT (source)
- Chinese cyberspies use new SSH backdoor in network device hacks (source)
- North Korea targets crypto developers via NPM supply chain attack (source)