Hackers Found New Way to Hide Malware in Ethereum Smart Contracts: Research

According to research by digital asset compliance firm ReversingLabs, hackers recently exploited Ethereum smart contracts to store malicious instructions and spread a new type of malware through the Node Package Manager (NPM) repository. The "colortoolsv2" and "mimelib2" packages, released in July, query blockchain smart contracts to obtain the download address for the second-stage malware, evading traditional security scans.