Bitget App
Trade smarter
Buy cryptoMarketsTradeFuturesEarnSquareMore
Bitget
News
Markets
NPM Worm Attack Hits 400+ Crypto Packages

NPM Worm Attack Hits 400+ Crypto Packages

CoinomediaCoinomedia2025/11/25 02:24
By:Ava NakamuraAva Nakamura

Over 400 NPM packages, including ENS and crypto libraries, were targeted by a worm-style attack stealing wallet keys and dev credentials.Key Crypto Libraries CompromisedWhat Developers Should Do Now

  • Over 400 NPM packages infected by a malicious worm
  • ENS and crypto libraries among the affected
  • Attackers stole wallet keys and developer credentials

In a significant security incident, more than 400 NPM packages have been compromised by a sophisticated worm-style attack. The breach affected numerous key crypto-related libraries, including those connected to the Ethereum Name Service (ENS), sending shockwaves across the blockchain developer community.

According to initial reports, the worm infiltrated the packages and silently stole sensitive data such as wallet private keys and developer credentials. This method of attack is especially dangerous as it spreads from one package to another, increasing its reach with every compromised dependency.

Key Crypto Libraries Compromised

Some of the impacted packages include vital libraries used by developers building on Ethereum and other blockchain networks. This includes packages related to ENS, a widely used decentralized domain service on Ethereum. These libraries are often integrated deep within larger projects, making the worm’s reach extensive and dangerous.

The attack highlights vulnerabilities in software supply chains, especially when developers rely on open-source packages without rigorous audits. Once a developer installs an infected package, their credentials and wallet data could be silently exfiltrated, putting both personal and project assets at risk.

What Developers Should Do Now

Security experts recommend that all developers using NPM, especially in Web3 or crypto-related projects, conduct immediate audits of their dependencies. Here are some steps to take:

  • Check for recent updates to any packages related to ENS or wallet functionality.
  • Review NPM package maintainers and verify the integrity of packages you depend on.
  • Rotate developer credentials and regenerate any wallet keys that may have been exposed.
  • Use security tools that monitor for malicious behavior in dependencies.

This incident serves as a stark reminder that even trusted package ecosystems like NPM can be vectors for large-scale attacks. Vigilance and quick action are crucial in minimizing damage and preventing future compromises.

0

Disclaimer: The content of this article solely reflects the author's opinion and does not represent the platform in any capacity. This article is not intended to serve as a reference for making investment decisions.

PoolX: Earn new token airdrops
Lock your assets and earn 10%+ APR
Lock now!

You may also like

XRP News Update: Grayscale Introduces DOGE and XRP ETFs Amidst Six-Week Crypto Market Downturn

- Grayscale's GDOG and GXRP ETFs for Dogecoin and XRP launched on NYSE Arca, expanding regulated crypto investment options. - Both ETFs offer 0% fees initially to attract inflows, aligning with industry trends of temporary fee waivers to boost adoption. - Despite mixed market reactions and price declines for DOGE/XRP, analysts view regulated products as long-term positives for altcoin adoption. - SEC's relaxed oversight has triggered a wave of altcoin ETFs, with over 100 expected in six months, including l

Bitget-RWA2025/11/25 04:40
XRP News Update: Grayscale Introduces DOGE and XRP ETFs Amidst Six-Week Crypto Market Downturn

Modern Monetary Theory and the Changing Landscape of Cryptocurrency Valuation: The Influence of Macroeconomic Strategies on Investor Perceptions and Token Behavior

- Modern Monetary Theory (MMT) indirectly reshapes crypto valuation logic by altering market perceptions of fiscal policy and inflation management in 2025. - Central bank digital currencies (CBDCs) challenge decentralized cryptocurrencies as MMT-aligned state-backed assets gain regulatory traction. - Social media sentiment analysis improves crypto price prediction accuracy by 20-35%, reflecting speculative retail demand amid MMT-driven macroeconomic shifts. - Institutional investors prioritize U.S. regulat

Bitget-RWA2025/11/25 04:40
Modern Monetary Theory and the Changing Landscape of Cryptocurrency Valuation: The Influence of Macroeconomic Strategies on Investor Perceptions and Token Behavior

Hyperliquid News Today: Paxos Introduces USDG0: Compliant Stablecoin Designed for Cross-Chain DeFi

- Paxos launches USDG0, an omnichain stablecoin built on LayerZero's OFT protocol to enable cross-chain dollar-backed liquidity without wrapped tokens. - Plume, Hyperliquid, and Aptos lead USDG0's launch, with Plume emphasizing its role in RWA innovation for 280,000+ holders and $645M TVL. - USDG0 maintains 1:1 USD backing and regulatory compliance via GDN, differentiating itself from USDT/USDC through institutional-grade cross-chain flexibility. - The launch aligns with U.S. GENIUS Act and MiCA regulation

Bitget-RWA2025/11/25 04:22
Hyperliquid News Today: Paxos Introduces USDG0: Compliant Stablecoin Designed for Cross-Chain DeFi

Ethereum News Update: Key $25 Support Faces Pressure as BitMine Endures $4.2B ETH Decline

- BitMine (BMNR) faces $4.2B ETH unrealized loss as prices fall 40% from $3,997 to $2,790, dragging its stock down 85%. - Despite $328M net income and $11.2B crypto/cash reserves, BMNR trades near critical $25–$27 support zone amid ETH volatility. - CEO Lee's "5% ETH" strategy and MAVAN staking network aim to boost yields, but equity dilution and crypto outflows challenge recovery. - Institutional backing contrasts with 146M new shares issued, while ETH's $3.79B monthly outflows test BitMine's resilience a

Bitget-RWA2025/11/25 04:22

Trending news

More
1

XRP News Update: Grayscale Introduces DOGE and XRP ETFs Amidst Six-Week Crypto Market Downturn

2

Modern Monetary Theory and the Changing Landscape of Cryptocurrency Valuation: The Influence of Macroeconomic Strategies on Investor Perceptions and Token Behavior

Crypto prices

More
Bitcoin
Bitcoin
BTC
$88,457.34
+1.98%
Ethereum
Ethereum
ETH
$2,938.17
+4.14%
Tether USDt
Tether USDt
USDT
$0.9997
+0.01%
XRP
XRP
XRP
$2.25
+9.40%
BNB
BNB
BNB
$864.19
+2.32%
Solana
Solana
SOL
$138.84
+5.76%
USDC
USDC
USDC
$0.9998
-0.01%
TRON
TRON
TRX
$0.2728
-1.40%
Dogecoin
Dogecoin
DOGE
$0.1518
+4.50%
Cardano
Cardano
ADA
$0.4270
+3.90%
How to buy BTC
Bitget lists BTC – Buy or sell BTC quickly on Bitget!
Trade now
Become a trader now?A welcome pack worth 6200 USDT for new users!
Sign up now
About Bitget
About Bitget Contact us Community Careers Bitget Academy Bitget Blog Bitget Token (BGB) Announcement Center Proof of Reserves Protection Fund Partner links LALIGA partnership MotoGP partnership Blockchain4Youth Blockchain4Her Sitemap
Products
Spot Futures Onchain Stock Margin Earn Spot copy trading Futures copy trading Bot copy trading Bots APIs TraderPro Web3 wallet Fiat OTC Bitget Swap Telegram Apps Center Discord Apps Center Airdrop library
Buy crypto
Buy crypto Buy Bitcoin Buy ETH Buy DOGE Buy XRP Buy BGB Buy SHIB Crypto prices Bitcoin price Ethereum price Solana price chart Calculator Bitcoin ETF Crypto wiki XRP price Pi Network price ADA price Solana price Trump coin price Dogecoin price BRC-20 price
Support
Submit feedback Help Center Verify official channels Anti-scam hub Listing application VIP services Affiliate program Institutional services Asset custody Download data Promotions Referral program Fee schedule Tax filing API
Legal
Law enforcement request Regulatory request Compliance Regulatory license AML/CFT policies Privacy policy Terms of Service Risk disclosure
Scan to download
© 2025 Bitget