Malicious npm Package nodejs-smtp Mimics Nodemailer, Targets Atomic and Exodus Wallets



September 02, 2025 at 10:10AM

Cybersecurity researchers have discovered a malicious npm package that comes with stealthy features to inject malicious code into desktop apps for cryptocurrency wallets like Atomic and Exodus on Windows systems. The package, named nodejs-smtp, impersonates the legitimate email library nodemailer with an identical tagline, page styling, and README descriptions, attracting a total of 347

from The Hacker News https://ift.tt/yV86fGR

Genrerating Link.... 15 seconds.

Your Link is Ready.

Share this post