SlowMist Technology Chief Information Security Officer 23pds issued a security warning, the latest variant of the NPM supply chain attack "Shai-Hulud 3" is attacking again, please all project parties and platforms pay attention to prevention. Previously, the suspected Trust Wallet API key leak may have been caused by the Shai-Hulud 2 attack.Shai-Hulud is a series of self-propagating worm-like supply chain attacks targeting the NPM ecosystem, used to steal developer credentials, cloud keys, and environment secrets. The latest variant (referred to by the community as Shai-Hulud 3 or new strain) was discovered by Aikido Security researcher Charlie Eriksen on December 28, 2025. Currently, the spread is limited and may only be in the testing phase.
Welcome Back
Click “Sign in” to agree to Cointime’s Terms of Service and acknowledge that Cointime’s Privacy Policy applies to you.
Join CoinTime
Already have an account?
Click “page.Sign up” to agree to Cointime’s <a class="underline" href="#term-of-service">Terms of Service</a> and acknowledge that Cointime’s a class="underline" href="#privacy-policy">Privacy Policy</a> applies to you.
Sign in with email
Sign up with email
Your email
Check your inbox
Click the link we sent to to sign in.
Click the link we sent to to sign up.
SlowMist: Project teams should be wary of the latest variant of NPM supply chain attacks, Shai-Hulud 3.
-
Wechat scan to share
Recommended for you
-
Most crypto treasuries ‘will disappear’ amid bleak 2026 outlook: Execs
Many crypto and Bitcoin treasury companies may go under in 2026 as the model comes under pressure, industry executives tell Cointelegraph.
-
Coinbase named a top three 2026 fintech pick at Clear Street
The crypto exchange’s tokenization, AI tools, and stablecoin revenue help it stand out in ‘transition year’ for crypto equities, said Clear Street's Owen Lau.
-
Ethereum’s ‘Hegota’ upgrade slated for late 2026 as devs accelerate roadmap
Hegota will follow “Glamsterdam,” Ethereum’s next major upgrade, which is currently expected to roll out in the first half of 2026.
-
Digital Yuan holdings to earn interest under China's new framework
The People's Bank of China will implement a new digital yuan framework on Jan. 1, allowing commercial banks to pay interest on digital currency holdings.
-
Zixi.eth ·
AI Redefining Trading Boundaries: In-depth Analysis of Nivex and the Launch of a New Strategy Matrix
-
Changpeng Zhao: Binance Wallet now supports identifying malicious addresses; you will receive a warning if you transfer funds to them.
Zhao Changpeng posted on Binance Plaza stating, "The cryptocurrency industry should be able to completely eradicate address poisoning attacks and protect users. All wallets should simply check whether the receiving address is a poisoned address and block the user.This is a blockchain query. Wallets should not even display these junk transactions anywhere. If the value of the transaction is very small, filter it out. Security alliances in the industry should maintain a real-time blacklist of these addresses so that wallets can check before sending transactions. Binance Wallet is already doing this. If a user tries to send to a malicious address, they will receive a warning. -
-
Bitcoin spot ETFs saw a total net outflow of $189 million yesterday, marking the fourth consecutive day of net outflows.
according to SoSoValue data, the total net outflow of Bitcoin spot ETFs is 189 million USD.The Bitcoin spot ETF with the largest single-day net outflow yesterday was Blackrock's ETF IBIT, with a single-day net outflow of 157 million USD. Currently, IBIT's total historical net inflow has reached 62.34 billion USD. The second is Fidelity's ETF FBTC, with a single-day net outflow of 15.2979 million USD. Currently, FBTC's total historical net inflow has reached 12.189 billion USD. As of the time of writing, the total net asset value of Bitcoin spot ETFs is 114.289 billion USD, with the ETF net asset ratio (market value as a proportion of Bitcoin's total market value) reaching 6.53%, and the cumulative historical net inflow has reached 57.076 billion USD. -
EMC Labs ·
Interest rate cut expectations are priced in at 75 basis points this year; BTC rises 3.77% this week; Altseason proceeds smoothly.
The market may experience fluctuations after next week's interest rate cut, but this will not change the medium- to long-term positive outlook.
Daily Must-Read
-
Most crypto treasuries ‘will disappear’ amid bleak 2026 outlook: Execs
-
Coinbase named a top three 2026 fintech pick at Clear Street
-
Monetizing Personal Data: How BeFlow Turns Every Purchase into a “Digital Asset”
-
MSCI’s crypto treasury rules could spur $15B of forced selling
-
US Fed pulls guidance blocking its banks from engaging with crypto
-
Ethereum could get faster in January with gas limit rise to 80M
All Comments