Back to all news
Security

Seven Malicious Vite npm Packages Use Blockchain C2 to Deliver a RAT

The Hacker News·July 17, 2026·1 min read
Seven Malicious Vite npm Packages Use Blockchain C2 to Deliver a RAT

Checkmarx discovered seven malicious npm packages targeting the Vite ecosystem in a campaign called ViteVenom. The attack, an expansion of ChainVeil, uses an unprecedented four-tier blockchain-based command-and-control infrastructure spanning Tron. The packages deliver a remote access trojan (RAT) to compromised systems, marking a significant software supply chain threat.

Read at The Hacker News
Daily crypto arcade

Read the news, then play it.

Chainshorts turns crypto headlines into a daily game. Catch up in 60 words, then jump into daily lucky draws for a shot at the pot.

Open ChainshortsGet it on the Solana dApp Store