Ethereum developers are being targeted by malicious npm packages that impersonate Hardhat plugins to steal private keys and sensitive data. Socket researchers reported the ongoing attack, stating that twenty such packages have been identified, amassing over a thousand downloads. The attackers mimic legitimate package names to trick developers into using them, resulting in potential backdoors in production systems and loss of funds.

Rest, AustralianSuper Among Funds Hit By Cyberattack
Australia’s largest superannuation funds, including AustralianSuper, REST, Australian Retirement Trust, and Hostplus, have suffered from a coordinated cyber attack, with around 8,000 accounts breached. Hackers