Report: Hackers Use Ethereum Smart Contracts to Hide Malicious Code

Jinse Finance reported that according to the latest report from security company ReversingLabs, hackers are adopting innovative methods by using Ethereum smart contracts to hide malicious instructions in npm packages. Two malicious packages named "colortoolsv2" and "mimelib2" appeared in July this year, and instead of hardcoding links directly in the code, they obtain the next stage of attack instructions by querying Ethereum contracts, which greatly increases the difficulty of detection and removal. The attackers also created fake cryptocurrency-themed GitHub repositories, boosting credibility by forging stars and auto-generated commit records to lure developers into adding these dependencies.