PANews reported on April 11 that according to Cointelegraph, cybersecurity personnel have discovered the latest threat. Attackers targeting Atomic Wallet and Exodus Wallet users are uploading malware packages to online code repositories with the intention of stealing cryptocurrency private keys. ReversingLabs security researchers pointed out that the vulnerability exploitation method implements attacks by hiding malicious code in seemingly legitimate npm packages. These pre-built code packages are widely used by software developers.
The malware package locks the locally installed Atomic Wallet and Exodus Wallet files by installing patches, overwriting the original files to tamper with the user interface, and tricking unsuspecting victims into transferring cryptocurrency to fraudulent addresses. As the cryptocurrency industry continues to play a cat-and-mouse game with hackers, software supply chain attacks are becoming a new threat vector for coin holders - attackers are using increasingly sophisticated means to evade detection in an attempt to steal user funds.
