Hacker Slips Malicious Code Into Ethereum Dev Tool ETHcode
2025-07-11 15:51:37
Main Idea
A hacker injected malicious code into ETHcode, a toolset for Ethereum developers, which bypassed GitHub's AI and the ETHcode team's review, potentially designed to steal cryptocurrency.
Key Points
1. The malicious code was hidden in an update that included 43 separate changes and about 4,000 edited lines.
2. The update was reviewed by GitHub’s automated AI tool and the ETHcode team, but neither detected the malicious code.
3. The code was likely designed to steal cryptocurrency being developed using the tool.
4. The hacker, using the GitHub username Airez299, had no prior contributions to the project.
5. This incident follows a recent discovery of a hacking campaign linked to North Korean groups using malware called NimDoor.
Description
Cybersecurity researchers at ReversingLabs recently found that a hacker injected harmful code into ETHcode , a toolset for Ethereum ETH developers.
Latest News
- Hacker Slips Malicious Code Into Ethereum Dev Tool ETHcode2025-07-11 15:51:37
- GMX Breach: Hacker Returns $20 Million, Keeps 10% as Reward2025-07-11 14:51:57
- Pump.fun Acquires Kolscan to Gamify On-Chain Trading2025-07-11 14:02:27
- Robinhood’s Low-Cost Crypto Claim Under Florida Investigation2025-07-11 12:02:51
- Coinbase Feeds Live Crypto Data Into Perplexity’s AI Search2025-07-11 10:00:21