Malicious npm Package nodejs-smtp Mimics Nodemailer, Targets Atomic and Exodus Wallets

Source: The Hacker News | Added:

Researchers have identified a malicious npm package named nodejs-smtp that mimics the legitimate library nodemailer. This package is designed to inject harmful code into cryptocurrency wallet applications like Atomic and Exodus on Windows systems.

---

Impact: Atomic, Exodus Wallets

In the Wild: Yes

Age: Newly disclosed

Remediation: Users should avoid using the nodejs-smtp package and ensure they are using legitimate libraries.

Read Full Original Article →