• Dapps:16.23K
  • Blockchains:78
  • Active users:66.47M
  • 30d volume:$303.26B
  • 30d transactions:$879.24M

New Threats: Hackers Use Smart Contracts to Conceal Malware

user avatar

by Giorgi Kostiuk

2 days ago

Cybercriminals are embedding malicious commands in Ethereum smart contracts, complicating detection for security systems.

Smart Contracts as Hosts for Malware

Research from ReversingLabs has revealed that attackers are uploading malicious packages to the Node Package Manager (NPM) repository, one of the largest hubs for JavaScript libraries. The packages "colortoolsv2" and "mimelib2," released in July, disguised themselves as legitimate tools and fetched command-and-control (C2) addresses from Ethereum smart contracts, bypassing standard security protocols.

A New Twist on Old Attacks

While using smart contracts for malware is not a new phenomenon, recent attacks suggest a novel approach. Instead of merely hiding malware within contracts, attackers are now embedding the very URLs for payload delivery inside Ethereum’s decentralized infrastructure.

Social Engineering in Cyber Threats

The malicious packages were part of a larger deception campaign targeting developers through GitHub repositories. Threat actors built fake cryptocurrency trading bot projects complete with fabricated commits, multiple fake maintainers, and polished documentation to establish credibility. These repositories lured unsuspecting developers into downloading the infected packages, further spreading the malware.

This incident underscores how attackers are merging blockchain technology with social engineering to bypass traditional security tools.

0

Rewards

chest
chest
chest
chest

More rewards

Discover enhanced rewards on our social media.

Other news

Top Cryptocurrencies: Investment Opportunities in Ethereum, XRP, Solana, and MAGACOIN FINANCE

chest

Analysis of current trends in the cryptocurrency market and investment prospects based on Ethereum, XRP, Solana, and MAGACOIN FINANCE.

user avatarGiorgi Kostiuk

Bullish Secures Full MiCAR License from BaFin for Services in Europe

chest

Bullish Europe GmbH has obtained a MiCAR license from BaFin, enabling the company to expand its crypto trading services in the EU.

user avatarGiorgi Kostiuk

750 Million Addresses in Solana DEX Ecosystem: Analysis of Active Users

chest

The Solana DEX ecosystem has reached 750 million addresses, but 96.6% are used for less than a day. Over 1.8 million addresses are active for more than a year.

user avatarGiorgi Kostiuk

Justin Sun Makes $20 Million Investment in WLFI After Conflict

chest

TRON founder Justin Sun announced plans to acquire $20 million worth of WLFI tokens following a wallet freeze, generating buzz in the community.

user avatarGiorgi Kostiuk

FG Nexus Rebrands and Increases Share Volume to Focus on Ethereum Strategy

chest

FG Nexus increases shares and announces a strategy to strengthen its positions in Ethereum, similar to MicroStrategy.

user avatarGiorgi Kostiuk

NFT Comeback: What to Know About Their Resilience and Storage

chest

NFTs are on the rise again, but their resilience is in question. How new technologies help protect digital art?

user avatarGiorgi Kostiuk

Important disclaimer: The information presented on the Dapp.Expert portal is intended solely for informational purposes and does not constitute an investment recommendation or a guide to action in the field of cryptocurrencies. The Dapp.Expert team is not responsible for any potential losses or missed profits associated with the use of materials published on the site. Before making investment decisions in cryptocurrencies, we recommend consulting a qualified financial advisor.