TechSecInfo

The tech + cyber briefing: what happened, why it matters, and where it came from.

Cyber Security

Researchers Uncover NodeCordRAT Hidden in npm Bitcoin-Themed Packages

By rooter

Cybersecurity researchers have discovered three malicious npm packages that are designed to deliver a previously undocumented malware called NodeCordRAT.
The names of the packages, all of which were taken down as of November 2025, are listed below. They were uploaded by a user named “wenmoonx.”

bitcoin-main-lib (2,300 Downloads)
bitcoin-lib-js (193 Downloads)
bip40 (970 Downloads)

“The

Oh hi there 👋
It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

We don’t spam! Read our privacy policy for more info.

Oh hi there 👋
It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

We don’t spam! Read our privacy policy for more info.

By rooter

Related Post

Cyber Security

Claude Code Flaws Allow Remote Code Execution and API Key Exfiltration

rooter
Cyber Security

Malicious Next.js Repos Target Developers Via Fake Job Interviews

rooter
Cyber Security

SLH Offers $500–$1,000 Per Call to Recruit Women for IT Help Desk Vishing Attacks

rooter

Leave a Reply

You Missed

News

Claude Code Flaws Allow Remote Code Execution and API Key Exfiltration

News

CISA and Partners Release Guidance for Ongoing Global Exploitation of Cisco SD-WAN Systems

News

How the Targaryens of ‘A Knight of the Seven Kingdoms’ Connect to ‘House of the Dragon’ and ‘Game of Thrones’

News

Gemini is getting its first agentic capabilities