Dev’s Fast Reporting of Phish Reduced Impact on Blockchain Malware Attacks

the exploit blog logo
Penetration Testing Blog
Dev's Fast Reporting of Phish Reduced Impact on Blockchain Malware Attacks
Posted on September 11, 2025
Written by Andrew Trexler

Attackers recently launched a phishing attack that deployed malware designed to steal cryptocurrency across multiple blockchains, ensnaring a developer of multiple popular NPM packages. The attackers leveraged their new access to add code to target crypto transactions in attempts to steal funds, but swift reporting by the developer minimized the overall impact.

There are two great reminders to come from this story

  • First, the human element still remains as one of the weakest links in the security chain. As users we need to be constantly on the lookout. 
  • Second, quick reporting can limit the impact of malicious attacks. The victim in this case responded quickly, reporting the incident and alerting users to the attack. This significantly reduced the impact, and the response should be applauded.

After performing many phishing assessments, I encourage people and organizations to take this to heart. We should all be vigilant to not be tricked by a phish, but modern phishing is very realistic. Quick reporting of any suspicions allows tech teams to take fast action to limit damage.

Andrew Trexler

Andrew Trexler
Andrew graduated from the University of Pittsburgh with a degree in Information Science where he focused on networking and security. He continued his education by obtaining the Offensive Security Certified Professional (OSCP) and the eLearnSecurity Junior Penetration Tester (eJPT) certifications. When not participating in capture the flag events, Andrew works as a pyrotechnic operator setting up and shooting firework shows in the Pittsburgh area.

About The Exploit Blog

The Exploit is written by Raxis penetration testers. Every post is a technical writeup from someone who runs engagements for a living, with code, command output, and the reasoning behind each step. Topics include exploit research, vulnerability disclosure, tool development, and the offensive techniques showing up in current client work.

Search The Exploit Blog

Raxis Discovered Vulnerabilities

View the CVEs and bugs that Raxis pentesters have uncovered and submitted.

Tested by the People Who Wrote This Blog Post

The engineers behind these posts run real engagements every week. Put them on your network, web apps, APIs, or cloud and see what an attacker would find first.

Request A Quote Schedule Call

Blog Categories

Join Our Newsletter

Name(Required)
Newsletter(Required)
Do you wish to join our newsletter? We send out emails once a month that cover the latest in cybersecurity news. We do not sell your information to other parties.