Atomic and Exodus cryptocurrency wallets hacked
Users of the popular cryptocurrency wallets Atomic and Exodus have become the target of a new cyberattack. Cybersecurity experts from ReversingLabs identified malicious software packages disguised as legitimate libraries in the npm repository. One such package — pdf-to-office — was found to carry malicious code.The essence of the attack lies in the fact that after installing the fake library, the malicious code quietly embeds itself into the system and searches for local files of installed wallets. It then alters their functionality, distorting the interface and misleading the user. As a result, the victim unknowingly sends their cryptocurrency to addresses controlled by hackers.These types of cyber activities have become part of a new wave of threats related to the compromise of software supply chains. Attackers increasingly target tools used by developers to inject malicious code during the creation or update stages of software. These methods are difficult to detect early, making them especially dangerous for the crypto community.The seriousness of the situation is also confirmed by fresh data from the company Hacken: in the first quarter of 2025, the crypto industry lost around $2 billion due to hacks and exploits. The largest incident occurred at the Bybit exchange in February, where the damage reached $1.4 billion.
Go back