ViteVenom supply-chain campaign poisons seven Vite npm packages via blockchain C2
Source headline: Seven Malicious Vite npm Packages Use Blockchain C2 to Deliver a RAT
Intelligence Summary
Checkmarx reports seven malicious npm packages aimed at the Vite frontend tooling ecosystem. The campaign, codenamed ViteVenom, abuses blockchain-based command-and-control to deliver a RAT. It builds on the earlier ChainVeil campaign that used multi-tier infrastructure. Developers installing affected dependencies could unknowingly introduce malware into build or runtime environments. The risk is especially high for teams that trust package metadata without verifying integrity. Mitigation includes auditing dependencies and using strict package signing and allowlists.
Recommended Action
Prioritize immediate review, validate exposure, and patch or mitigate affected systems.