Malicious npm Package Targets Crypto Wallet Users

Malicious actors continue to upload malicious packages to the npm registry to alter locally installed versions of legitimate libraries and execute malicious code. The newly discovered package, named pdf-to-office, poses as a utility for converting PDF files to Microsoft Word documents. However, it targets users of Atomic Wallet and Exodus by swapping crypto addresses. This attack aims to divert users' funds by modifying the destination addresses of transactions.