SlowMist: IronWorm malware attacks Web3 ecosystem through npm package

SlowMist Monitoring has discovered that the new Rust supply chain malware IronWorm is using malicious npm packages to attack developer environments and the Web3 ecosystem. The attack behaviors include credential theft, wallet mnemonic and password theft, GitHub repository tampering, malicious package publishing, CI/CD confidential leakage, Tor based command control, and eBPF rootkit invisibility. The security team needs to review backtracking submissions, suspicious branches, unexpected hook constructions, and automated identity submissions.

24/7 Flashes

More >

Today 2026-06-04

08:10

SlowMist: IronWorm malware attacks Web3 ecosystem through npm package

24/7 Flashes

Cardano slumps under 20 cents as Hoskinson says he is 'taking a break' after warning of ecosystem failures

Goldman Sachs collaborates with multiple institutions to launch blockchain native real estate fund

Israel and Lebanon agree to ceasefire, Hezbollah not involved in negotiations

Siblings borrows 20 million USDT from Spark

Iran denies attacking Kuwait airport, claims damage caused by misoperation of US anti missile system

24/7 Flashes

Cardano slumps under 20 cents as Hoskinson says he is 'taking a break' after warning of ecosystem failures

Goldman Sachs collaborates with multiple institutions to launch blockchain native real estate fund

Israel and Lebanon agree to ceasefire, Hezbollah not involved in negotiations

Siblings borrows 20 million USDT from Spark

Iran denies attacking Kuwait airport, claims damage caused by misoperation of US anti missile system