News
Atomic and Exodus Wallets Hit by Malicious Package Exploit

Atomic and Exodus Wallets Hit by Malicious Package Exploit

profile-kostiantyn-tsentsura
Kostiantyn TsentsuraApr, 10 2025 19:06
#Crypto Wallet#Hackers
Atomic and Exodus Wallets Hit by Malicious Package Exploit

Threat actors have launched a fresh wave of cyberattacks aimed at crypto holders, specifically targeting users of Atomic and Exodus wallets through malicious software packages uploaded to coding platforms.

Security researchers warn that the malware, embedded within commonly used npm packages like pdf-to-office, is designed to harvest private keys by manipulating local wallet files.

According to analysis by ReversingLabs, the malicious code poses as legitimate software, but once installed, it stealthily modifies the user interface of Atomic and Exodus wallets. This manipulation tricks users into sending funds to addresses controlled by the attackers, effectively rerouting transactions without detection.

This kind of software supply chain attack highlights an increasingly dangerous trend in the crypto space, where hackers infiltrate development environments to carry out exploits at the infrastructure level.

The scale of such attacks continues to grow. In the first quarter of 2025 alone, cybersecurity firm Hacken estimates that crypto-related hacks and exploits resulted in losses exceeding $2 billion. A staggering $1.4 billion of that figure came from the Bybit hack in February - currently the largest in crypto history.

Following the incident, SafeWallet - a wallet provider implicated in the breach - shared a detailed post-mortem in March 2025. Investigators revealed that hackers compromised a developer's computer and hijacked AWS session tokens to infiltrate SafeWallet’s internal systems and orchestrate the Bybit theft.

Meanwhile, another deceptive tactic gaining traction is the "address poisoning" scam. Casa's chief security officer and well-known cypherpunk Jameson Lopp recently raised concerns over this subtle yet effective exploit.

In these attacks, scammers generate wallet addresses that visually resemble those in a victim’s transaction history - typically by mimicking the first and last few characters. A small transaction is then sent to the victim to implant the fake address into their history. If the user unknowingly reuses this address, their funds are redirected to the attacker.

Cyvers, a cybersecurity firm monitoring blockchain threats, reported that address poisoning alone led to over $1.2 million in stolen crypto during March 2025.

As threat actors evolve their methods, from manipulating development tools to exploiting user habits, cybersecurity professionals are calling for heightened vigilance across all fronts of the crypto ecosystem.

Disclaimer: The information provided in this article is for educational purposes only and should not be considered financial or legal advice. Always conduct your own research or consult a professional when dealing with cryptocurrency assets.
Latest News
Show All News
Why Bitcoin Crashed While Gold Soared, Crypto Analyst Explains
7 hours ago
Bitcoin has underperformed gold as a safe-haven asset in recent months, despite its reputation as "digital gold," according to CryptoQuant CEO Ki Young Ju. While gold prices have surged 11% since for
Fartcoin's 300% Surge Defies Global Market Downturn: Solana Token Reaches $1B Valuation
7 hours ago
Amid widespread market downturns across various asset classes, the Solana-based token Fartcoin (FART) has emerged as an unexpected standout performer, quadrupling its market capitalization to nearly $
Trending Coins of the Week: AERGO & HYPE Defy Gravity as AI Tokens Lead the Charge
12 hours ago
In a week where Bitcoin largely held steady, the spotlight shifted to altcoins riding sector-specific waves. From AI-powered infrastructure tokens like AERGO and FHE, to Layer-1 stalwarts like AVAX, a
Related News
Microsoft Discovers Advanced Malware Targeting Coinbase, MetaMask, Trust Wallets
Mar 18, 2025
Microsoft's incident response team has identified a new remote access trojan (RAT) designed to compromise cryptocurrency holdings by targeting digital
Bitcoin Hardware Wallets Face New Security Threat: Meet 'Dark Skippy' Hacking Trick
Aug 12, 2024
A new hacking method dubbed "Dark Skippy" has Bitcoin users on edge. It can steal private keys from hardware wallets with just two transactions. The v
Tron Wallet Security Flaw Leaves Over 14,000 Wallets Vulnerable - Research
Jan 21, 2025
A significant security flaw has put in jeopardy more than 14,500 Tron cryptocurrency wallets, potentially exposing millions of dollars in assets to th
Crypto-Stealing Malware Found in Mobile App Store SDKs, Warns Kaspersky
Feb 05, 2025
Kaspersky Labs has identified a sophisticated malware campaign targeting cryptocurrency users through malicious software development kits embedded in
Safe Wallet Acknowledges Its Security Breach Played Role in $1.5bn Bybit Hack
Feb 27, 2025
The cryptocurrency security company Safe Wallet has confirmed its infrastructure was exploited during the recent $1.5bn Bybit hack. The breach stemmed
Related Research Articles
Crypto Whales Unleashed: Inside Their Massive Influence on the 2024 Bull Run
Nov 15, 2024
The cryptocurrency market is presently experiencing a notable surge, with both Bitcoin and Ethereum hitting all-time highs. This comeback has drawn in
AI Agents in Crypto – A Deep Dive
Apr 06, 2025
The first quarter of 2025 witnessed an explosive rise of AI agents in crypto, marking one of the most striking new trends in the blockchain world. Unl
ChatGPT vs. DeepSeek: Which AI Better Answers Crypto Questions?
Feb 05, 2025
In the wake of the American stock market going completely red and the world collectively losing its mind over China’s DeepSeek making its grand debut,
A Deep Dive into Telegram Open Network (TON): Fundamental Analysis
Jan 22, 2025
The Open Network (TON) is a decentralized, open internet platform built to provide a scalable and secure blockchain infrastructure. With the capabilit
Can Solana Flip USDT and Become Third-Largest Crypto?
Nov 27, 2024
With a recent flip of BNB ($93M), Solana is now Crypto #4 and is closing in on Tether's USDT ($133M) for market cap. We should expect to see SOL surpa
Related Learn Articles
5 Top Ways to Secure Your Crypto Wallet Against Hackers
Dec 31, 2024
Most of the newbies in crypto urge to buy some tokens and don’t care much about where to keep them. That might be a crucial mistake. Neglecting securi
Top 7 Anonymous Crypto Wallets You Should Know About
Dec 25, 2024
Privacy has become a hot commodity in the world of digital finance. It's no longer just a nice-to-have feature. For many crypto enthusiasts, it's a mu
Top 10 DeFi Wallets to Choose in 2025
Jan 08, 2025
It’s 2025 now, and you don’t need just a crypto wallet. You need a DeFi wallet. What is a DeFi wallet, how is it different from traditional crypto wal
How Crypto Bridges Actually Work - And Why They Keep Getting Hacked
Apr 07, 2025
The blockchain revolution has ushered in a new era of decentralized systems, where independent networks like Ethereum, Solana, Avalanche, and Bitcoin
Non-Custodial Hot Wallets Explained: Features, Benefits, and the Best Choices
Mar 31, 2025
As cryptocurrency adoption continues to rise, the debate over how to store digital assets securely remains a pressing concern. Investors and everyday