Check your repos... Crypto-coin-stealing code sneaks into fairly popular NPM lib (2m downloads per week)

by
from The Register on (#43R7Y)
Story ImageNode.js package tried to plunder Bitcoin wallets

A widely used Node.js code library listed in NPM's warehouse of repositories was altered to include crypto-coin-stealing malware. The lib in question, event-stream, is downloaded roughly two million times a week by application programmers."

External Content
Source RSS or Atom Feed
Feed Location http://www.theregister.co.uk/headlines.atom
Feed Title The Register
Feed Link https://www.theregister.com/
Feed Copyright Copyright © 2025, Situation Publishing
Reply 0 comments