Ghost Campaign Uses 7 npm Packages to Steal Crypto Wallets and Credentials

Overview

Cybersecurity researchers have uncovered a new set of malicious npm packages that are designed to steal cryptocurrency wallets and sensitive data. The activity is being tracked by ReversingLabs as the Ghost campaign. The list of identified packages, all published by a user named mikilanjillo, is below - react-performance-suite react-state-optimizer-core react-fast-utilsa ai-fast-auto-trader

Organisations Involved

The following organisations are mentioned in relation to this incident: Credentials
Cybersecurity, Ghost Campaign Uses, Steal Crypto Wallets.

Multi-Source Coverage

This event has been reported across multiple outlets:

• Ghost Campaign Uses 7 npm Packages to Steal Crypto Wallets and Credentials — thehackernews

Sources: thehackernews. Aggregated by Cybernews Agency pipeline.