The North Korean hacking group Lazarus has begun spreading malware through JavaScript packages, affecting cryptocurrency wallets and raising concerns among developers and market participants.
Threat of Malicious JavaScript Packages
The Lazarus Group distributed malware via npm, targeting cryptocurrency wallets such as Solana and Exodus. Security researchers discovered six malicious packages, downloaded about 330 times before removal. Experts highlight vulnerabilities in open-source software, which pose significant security risks to cryptocurrencies.
Solana Market Reacts Amid Security Concerns
Market data shows Solana trading at $21.43, with minor daily fluctuations. Experts note that malware threats may affect investor confidence, leading to potential financial and regulatory disruptions.
Evolution of Obfuscation Tactics in Lazarus Attacks
Previous attacks by Lazarus employed sophisticated obfuscation tactics, avoiding detection and complicating defensive strategies for companies. Experts call for strengthening of crypto technology infrastructures and policy changes to mitigate such threats.
Lazarus group attacks underscore the importance of enhancing software development security and revising approaches to source code trust.
