COMMENT: Researchers discovered a malicious npm package called pdf-to-office, posing as a PDF tool but designed to inject malware into local crypto wallets and steal funds. https://t.co/ITUq7LHwMV
🚨JUST IN: EXODUS AND ATOMIC WALLETS USERS EXPOSED TO MALWARE THAT STEAL CRYPTO KEYS - REVERSINGLABS
Malicious npm Package Targets Atomic Wallet, Exodus Users by Swapping Crypto Addresses https://t.co/7LgaUzOitc
Kaspersky researchers have identified new malware targeting cryptocurrency investors, specifically through malicious software named ClipBanker. This malware replaces cryptocurrency addresses in the clipboard with those of the attacker, posing a significant risk to users. Additionally, hackers are embedding malware within fake Microsoft Office extensions uploaded to SourceForge, which, when opened, can bypass security measures and compromise digital assets. Recent reports also indicate that a malicious npm package, disguised as a PDF tool called pdf-to-office, is designed to inject malware into local crypto wallets, further endangering users. Both Exodus and Atomic Wallet users are particularly at risk, as highlighted by ReversingLabs, which confirmed that these wallets are exposed to malware capable of stealing crypto keys.
