Atomic and Exodus wallets become new targets for cybersecurity vulnerabilities

According to Cointelegraph, cybersecurity personnel have discovered the latest threat that attackers targeting Atomic wallet and Exodus wallet users are uploading malicious software packages to online code repositories with the intention of stealing cryptocurrency private keys. ReversingLabs security researchers pointed out that this vulnerability exploits by hiding malicious code in seemingly legitimate npm packages, which are widely used by software developers. Malicious software packages lock the locally installed Atomic wallet and Exodus wallet files by installing patches, overwrite the original files to tamper with the user interface, and induce unsuspecting victims to transfer cryptocurrency to fraudulent addresses. As the cryptocurrency industry continues to play a cat and mouse game with hackers, software supply chain attacks are becoming a new type of threat vector against coin holders - attackers use increasingly complex evasion detection methods to attempt to steal user funds.