Hackers sneak Crypto-Stealing code into popular JavaScript packages

In a startling cybersecurity incident, attackers have successfully compromised several popular JavaScript packages, inserting malicious code designed to steal cryptocurrency from unsuspecting users.

 The packages affected are among the most widely used in the npm ecosystem, collectively downloaded billions of times, which amplifies the potential impact of the breach.

According to security researchers, the attackers gained access through a targeted phishing email aimed at the accounts of package maintainers.

Once inside, they modified the code to include scripts capable of exfiltrating credentials and cryptocurrency wallet data from anyone using the compromised packages.

This breach underscores the vulnerabilities inherent in open-source software supply chains, which have increasingly become a prime target for cybercriminals.

Experts warn that developers and organizations relying on these packages need to implement stricter security practices, including multi-factor authentication for maintainers, continuous dependency audits, and code review protocols.

The incident has prompted immediate action, with affected packages being patched and maintainers urging users to update their dependencies. The attack has raised broader questions about how open-source communities can secure the software that powers much of the modern internet.