importantSYS.SOURCE: The Hacker News• 2026-07-18T00:24:51+05:30
Seven Malicious Vite npm Packages Exploit Blockchain-Based C2 Infrastructure for RAT Delivery
Seven malicious Vite npm packages use a blockchain-based command-and-control (C2) infrastructure across Tron, Aptos, and Binance Smart Chain to deliver a remote access trojan (RAT). The attack leverages blockchain storage for payload delivery, making infrastructure takedown extremely challenging.
Cybersecurity researchers have discovered a cluster of seven malicious npm packages targeting the Vite frontend tooling ecosystem as part of a software supply chain attack.
The malicious package campaign, codenamed ViteVenom by Checkmarx, marks an expansion of ChainVeil, which was observed using an "unprecedented" four-tier blockchain-based command-and-control (C2) infrastructure spanning Tron,
*** END OF TRANSMISSION ***