PANews September 4 news, according to Cointelegraph, based on research by the digital asset compliance company ReversingLabs, hackers have recently exploited Ethereum smart contracts to store malicious instructions and spread new types of malware through the Node Package Manager (NPM) software package repository. The "colortoolsv2" and "mimelib2" packages released in July query blockchain smart contracts to obtain the download addresses of the second stage of malicious software, circumventing traditional security scans.
This attack is part of a large-scale social engineering scam, where hackers create fake cryptocurrency trading bot repositories on GitHub, creating a credible image through forged commit records, maintaining accounts, and professional documentation. Researchers point out that although the North Korean hacker group Lazarus has used similar techniques, this is the first time that malware URLs have been hosted via smart contracts, indicating that attack strategies are continuously evolving.
This page may contain third-party content, which is provided for information purposes only (not representations/warranties) and should not be considered as an endorsement of its views by Gate, nor as financial or professional advice. See Disclaimer for details.
Research: Hackers Find New Ways to Hide Malware in Ethereum Smart Contracts
PANews September 4 news, according to Cointelegraph, based on research by the digital asset compliance company ReversingLabs, hackers have recently exploited Ethereum smart contracts to store malicious instructions and spread new types of malware through the Node Package Manager (NPM) software package repository. The "colortoolsv2" and "mimelib2" packages released in July query blockchain smart contracts to obtain the download addresses of the second stage of malicious software, circumventing traditional security scans. This attack is part of a large-scale social engineering scam, where hackers create fake cryptocurrency trading bot repositories on GitHub, creating a credible image through forged commit records, maintaining accounts, and professional documentation. Researchers point out that although the North Korean hacker group Lazarus has used similar techniques, this is the first time that malware URLs have been hosted via smart contracts, indicating that attack strategies are continuously evolving.