Live News
CRITICAL
Hot 88%
Breaking News

SlowMist Uncovers Large-Scale JavaScript Infostealer Campaign Targeting DeFi Users

Security firm SlowMist identified a widespread attack using malicious JavaScript infostealers distributed through fake trading bot and DeFi package repositories to steal crypto wallet credentials and sensitive data.

Telegram

SlowMist, a blockchain security firm, has identified a large-scale attack campaign distributing JavaScript infostealers through fraudulent repositories impersonating legitimate trading bot and DeFi package projects. The malicious code targets both cryptocurrency users and developers across the DeFi ecosystem.

The infostealer malware is capable of exfiltrating seed phrases, private keys, wallet data, browser cookies, saved passwords, API tokens, and other sensitive authentication credentials from affected systems. The attack vector exploits developers' reliance on open-source package repositories, which poses a significant supply-chain risk across the cryptocurrency industry.

SlowMist disclosed the findings on X (formerly Twitter), highlighting that the campaign's use of counterfeit repositories mimicking popular trading and DeFi tools increases the likelihood of accidental installation by developers unfamiliar with security best practices. The discovery underscores ongoing vulnerabilities in cryptocurrency development infrastructure and the need for enhanced package repository verification protocols.

Source:x.com

Related News

Stay updated with the latest crypto news

Subscribe to Our Newsletter

Get the latest crypto news and market analysis delivered to your inbox.

Published on

Updated on