URL has been copied successfully!
Nine-Year-Old npm Packages Hijacked to Exfiltrate API Keys via Obfuscated Scripts
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

Nine-Year-Old npm Packages Hijacked to Exfiltrate API Keys via Obfuscated Scripts


Tags: , , ,

Cybersecurity researchers have discovered several cryptocurrency packages on the npm registry that have been hijacked to siphon sensitive information such as environment variables from compromised systems.”Some of these packages have lived on npmjs.com for over 9 years, and provide legitimate functionality to blockchain developers,” Sonatype researcher Ax Sharma said. “However, […] the latest

First seen on thehackernews.com

Jump to article: thehackernews.com/2025/03/nine-year-old-npm-packages-hijacked-to.html

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. New Malware Targets Exposed Docker APIs for Cryptocurrency Mining
  2. Solana SDK backdoored for stealing secrets, private keys
  3. Solana SDK backdoored to steal secrets, private keys
  4. 2025 Cybersecurity and AI Predictions