Hackers use Ethereum smart contracts to hide malware in NPM packages, launching a stealthy crypto-themed supply chain attack.

ReversingLabs discovered two NPM packages, colortoolsv2 and mimelib2, using Ethereum smart contracts to download malware.

Security researchers found malware packages using the Ethereum blockchain to conceal malicious commands on GitHub repos.

Simple-looking code tapped Ethereum’s blockchain to fetch hidden URLs that directed compromised systems to download ...

Ethereum smart contracts are being used to download malware via poisoned NPM packages, something Binance has linked to DPRK ...

Two npm packages hide downloader commands via Ethereum smart contracts; uploaded July 2025; targeting crypto developers.

This introduction to Solidity tutorial walks you through a real-world example that flexes the power of this programming language: building a Solidity smart contract.

Bugs Found in Compiler for Readable Ethereum Smart Contracts, Team Downplays Concerns Critical Ethereum 2.0 smart contract not affected by the bugs, developers argue.

In contrast, colortoolsv2 and mimelib2 leveraged Ethereum smart contracts to store and deliver the URLs used for fetching the ...