Information security
fromThe Hacker News
2 days agoMalicious npm Packages Impersonate Flashbots, Steal Ethereum Wallet Keys
Four npm packages impersonating Flashbots exfiltrate Ethereum private keys and mnemonic seeds to a Telegram bot and redirect unsigned transactions to attacker-controlled wallets.