Malicious npm Packages: A New Threat to Solana Wallet Security and Developer Ecosystems

Cybersecurity researchers have uncovered a series of malicious npm and PyPI packages designed to steal data, target cryptocurrency wallets, and sabotage developer systems. Among these is a targeted attack on Solana wallet keys, leveraging Gmail’s SMTP servers to exfiltrate sensitive information while bypassing traditional security defenses.

The Malicious Packages

The identified malicious packages span popular repositories, including npm and PyPI, with some specifically targeting Solana wallet users. Notable packages include:

• solana-transaction-toolkit
• solana-stable-web-huks
• @async-mutex/mutex (typosquatting async-mute)
• pycord-self (typosquatting discord.py-self)
• Typosquatted packages of popular libraries like chalk and chokidar, such as achalk-next, csbchalk-next, and cschokidar-next.

Stealing Solana Wallet Keys

The first set of malicious npm packages, including solana-transaction-toolkit and solana-stable-web-huks, are engineered to intercept Solana private keys. They use Gmail’s SMTP servers to exfiltrate keys and automatically drain up to 98% of a wallet's funds to attacker-controlled addresses.

As Kirill Boychenko, a security researcher, notes:

"Because Gmail is a trusted email service, these exfiltration attempts are less likely to be flagged by firewalls or endpoint detection systems, which treat smtp.gmail.com as legitimate traffic."

The attackers also used GitHub repositories, such as moonshot-wif-hwan/pumpfun-bump-script-bot, to distribute malicious code under the guise of Solana development tools. While these repositories have since been taken down, they highlight a broader campaign targeting developers exploring Solana-related tools.

Expanding Malicious Functionality

Beyond Solana-specific attacks, other malicious packages demonstrate destructive behavior:

1. Data Deletion: Packages like csbchalk-next and its typosquatted variants include a “kill switch” that wipes files in project directories.
2. Environment Variable Theft: Some packages exfiltrate sensitive variables to remote servers, exposing API keys and credentials.
3. Discord Token Theft: pycord-self captures Discord authentication tokens, providing attackers with backdoor access.

Broader Implications for Developers

This campaign is part of a rising trend in supply chain attacks, where trusted platforms like npm and PyPI are exploited to distribute malware. Developers using these repositories for legitimate purposes face the risk of:

• Credential and data theft: Sensitive environment variables, wallet keys, and authentication tokens are at stake.
• System sabotage: Malicious kill switches can destroy project-specific files, causing significant disruptions.
• Persistent backdoors: Attackers can maintain access even after initial compromise.

The development coincides with other campaigns targeting Roblox users and developers seeking mods or cheats, using counterfeit libraries to deploy open-source stealers like Skuld and Blank-Grabber.

How to Stay Secure

To mitigate these threats, developers and organizations must adopt stringent security measures:

1. Verify Package Authenticity: Always validate packages before installation, checking for typosquatting and suspicious activity.
2. Monitor Dependencies: Regularly audit dependencies and remove unused or outdated ones.
3. Employ MFA: Protect sensitive accounts and repositories with multi-factor authentication.
4. Restrict Environment Variables: Limit access to critical variables and ensure they are not exposed in project directories.
5. Enable Supply Chain Security Tools: Use automated tools like Socket or Snyk to detect malicious package behavior.

Conclusion

The recent wave of malicious npm and PyPI packages is a stark reminder of the vulnerabilities in modern software supply chains. By exploiting trusted repositories, attackers are increasingly targeting developers, cryptocurrencies, and APIs, with devastating consequences.

Securing supply chains and educating developers about these risks are critical to protecting sensitive data and preventing widespread damage. Staying vigilant and proactive is the only way forward in this evolving threat landscape.