资讯

Crypto News1 天

Hackers Exploit Ethereum to Inject Malware in Popular Coding Libraries

Hackers are exploiting Ethereum smart contracts to inject malware into popular NPM coding libraries, using packages to run ...

Ethereum smart contracts quietly push javascript malware targeting developers

Hackers are using Ethereum smart contracts to conceal malware payloads inside seemingly benign npm packages, a tactic that ...

Hackers find new way to hide malware in Ethereum smart contracts

Security researchers found malware packages using the Ethereum blockchain to conceal malicious commands on GitHub repos.
Coinlaw1 天

Crypto Hackers Exploit Ethereum Smart Contracts in NPM Attacks

Hackers use Ethereum smart contracts to hide malware in NPM packages, launching a stealthy crypto-themed supply chain attack.
Security Boulevard5 小时

The GhostAction Campaign: 3,325 Secrets Stolen Through Compromised GitHub Workflows

On September 5, 2025, GitGuardian discovered GhostAction, a massive supply chain attack affecting 327 GitHub users across 817 ...
Cybernews4 天

The whole world depends on one overworked, underpaid developer, who might be from Moscow

A widely used Node.js utility called fast-glob is being maintained by a single Russian developer, prompting debate about the risks of solo maintainers and potential geopolitical influence.