Fake Polymarket trading bot on GitHub spreads infostealer via 30 malicious npm packages
A fake Polymarket trading-bot repo seeded 30 malicious npm packages, infecting at least 53 developers and enabling theft of wallet keys and stored passwords. While not a direct chain or protocol exploit, it highlights supply-chain risk in DeFi tooling and automated trading infrastructure. The incident may dampen short-term confidence in Ethereum-adjacent developer workflows and on-chain trading operations reliant on npm-based dependencies.
AI Insight · ETH/USDTAI Insight
▼ Bearish
⚠️ AI-generated insights are based on news content and are provided for informational purposes only. They do not constitute investment advice or represent the views of BingX. Investing involves risk. Please trade responsibly.
Hackers posted an open-source project on GitHub disguised as a Polymarket prediction-market trading bot, using it to distribute an infostealing trojan through 30 malicious npm packages. The malware can steal high-risk credentials including crypto wallet private keys and passwords saved in browsers. At least 53 developers have been affected. The incident highlights security weaknesses in DeFi developer toolchains and automated trading infrastructure, even though it did not directly target any specific blockchain or protocol.