Web3 Security Stack Highlights Threat from Malicious NPM Package

TheNewsCryptoPublished on 2026-03-10Last updated on 2026-03-10

Abstract

Web3 Antivirus has identified a malicious NPM package disguised as an OpenClaw installer that deploys a Remote Access Trojan (RAT) targeting macOS users. The package, once installed, launches a fake CLI installer and prompts for the Keychain password. If provided, it steals sensitive data including seed phrases, browser credentials, wallet information, and SSH keys, sending them to the attacker’s server. Previously, Web3 Antivirus warned about legitimate Chrome extensions—QuickLens and ShotBird—that turned malicious after ownership transfers. These were used to inject malicious scripts and steal user data, including exchange session details and wallet credentials. Looking ahead to 2026, key Web3 security threats include smart contract exploits (due to logic errors and access control issues), phishing, social engineering, wallet drainers, and oracle manipulation. The primary goals of these attacks are data theft and fund draining.

Web3 Antivirus, or Web3 security stack, has highlighted a threat from a malicious NPM package. It earlier flagged a threat from a legitimate Chrome extension. Notably, smart contract exploits and phishing & social engineering are some of the top Web3 security threats to lookout for in 2026.

Web3 Security Issue Flagged

Web3 Antivirus has published a post on X to inform the community that a malicious NPM package was caught deploying a RAT. It was disguised as an OpenClaw installer with the primary objective of stealing macOS credentials. Web3 Antivirus has further briefed the community about how the act was being carried out.

The package launches a fake CLI installer after it is installed normally. Once launched, it seeks macOS Keychain password. It is recommended not to do so because once shared, the malware can extract several pieces of information. This includes seed phrases, browser credentials, crypto wallet data, and SSH & cloud keys.

All the pieces find their way to the attacker’s server. Web3, with this, is seeing different types of threats for users worldwide.

Previously Flagged Threat

Web3 Antivirus previously flagged a threat from a legitimate Chrome extension. It warned that it was turning malicious after the ownership was transferred. This allows attackers to inject codes into web pages and steal the data of a user. The update, according to Web3 security stack, removed security headers and fingerprints before pulling malicious scripts from a remote server.

For the crypto community, such an act can turn into a theft for exchange sessions, compromised wallets, browser credentials, and seed phrase phishing.

It has named two extensions: QuickLens and ShotBird, adding that they have 7,000 and 800 users, respectively.

Top Web3 Security Threats in 2026

Some of the top Web3 security threats in 2026 are smart contract exploits and phishing & social engineering. The former largely pertains to vulnerabilities in code. This refers to infusing logic errors, input validation issues, and access control failures.

The latter, as the name suggests, involves making fake calls or impersonating partners to attack users and developers – even founders on some occasions.

Others on the list are wallet drainers, private key manipulation, and price oracle manipulation. The end goal of malicious actors is to steal data and drain funds or negatively impact the system.

Some of the common vulnerabilities are access control failures, logic errors, and unsigned API queries.

Highlighted Crypto News Today:

Nasdaq Collaboration Targets Pan-European Tokenized Securities Trading and Settlement

TagsWeb3

Related Questions

QWhat type of malicious software was the NPM package caught deploying, and what was its primary objective?

AThe malicious NPM package was caught deploying a RAT (Remote Access Trojan). Its primary objective was to steal macOS credentials.

QWhat specific user information can the malware extract after obtaining the macOS Keychain password?

AThe malware can extract seed phrases, browser credentials, crypto wallet data, and SSH & cloud keys.

QWhat previously flagged threat did Web3 Antivirus warn about involving a legitimate Chrome extension?

AWeb3 Antivirus warned about a legitimate Chrome extension that turned malicious after ownership was transferred, allowing attackers to inject code into web pages and steal user data.

QWhat are two of the top Web3 security threats highlighted for 2026?

ATwo of the top Web3 security threats for 2026 are smart contract exploits and phishing & social engineering.

QWhat are the names of the two malicious Chrome extensions mentioned, and how many users do they have respectively?

AThe two malicious Chrome extensions are named QuickLens and ShotBird, with 7,000 and 800 users respectively.

Related Reads

Weekly Editor's Picks (0418-0424)

Weekly Editor's Picks (0418-0424) provides in-depth analysis on key developments across macro trends, crypto markets, and policy. Key topics include the oil market nearing a physical supply crisis due to shipping disruptions, even if the Strait of Hormuz reopens. In crypto, reports cover global consumer crypto adoption, a data-driven strategy for trading volatile altcoins, and the state of VC funding. Prediction markets like Polymarket are analyzed not as pure event-guessing games but as systems where understanding legalistic rules creates an edge. Major DeFi protocol Aave is criticized for poor crisis management amid a $300M exploit, while the controversial structure of World Liberty Financial is examined. Other highlights include policy updates like the CLARITY Act, Ethereum’s, airdrop opportunities, and weekly recaps of major incidents like the Kelp DAO hack and SpaceX's AI disclosures.

marsbit8m ago

Weekly Editor's Picks (0418-0424)

marsbit8m ago

Telegram Founder Claims French Officials Sold Crypto Data, Linked To 41 Kidnaps

Telegram founder Pavel Durov has accused French officials of selling crypto owners’ data to criminals, linking it to a sharp rise in kidnappings. France has seen 41 crypto-related kidnappings this year, part of a growing international trend known as “wrench attacks.” Durov criticized French policies requiring identity data and access to private messages, arguing that increased data flow leads to more leaks and victims. The incidents, which began in late 2024, have escalated significantly in 2026, now accounting for over half of all organized kidnappings tracked by French intelligence. In response, the government plans a broader crackdown, including a dedicated police unit, improved international coordination, and a new prevention platform for threat alerts and security guidance.

bitcoinist23m ago

Telegram Founder Claims French Officials Sold Crypto Data, Linked To 41 Kidnaps

bitcoinist23m ago

First Day Review of "Musk's WeChat" XChat: Even Worse Than Expected

Elon Musk's much-anticipated "WeChat-like" app, XChat, has officially launched after multiple delays. The initial review reveals a product that falls short of expectations, offering an experience largely similar to X Platform's (formerly Twitter) direct messages, despite being marketed as an encrypted communication tool. Key observations from the first-day test include: 1. The app's promoted "end-to-end encryption" and its claimed relation to Bitcoin's architecture were criticized by experts as a superficial attempt to capitalize on crypto buzz, with no real technical connection. 2. Musk's vision of an ad-free "secure communication system" is technically met, but only because the app is currently extremely basic, featuring only a single chat interface. 3. A promised anti-screenshot feature appears inconsistent; it works in X Platform group chats but fails within the XChat app itself, where screenshots still capture avatars. 4. The app supports 45 languages and has a 16+ age rating, indicating a broader tolerance for content compared to WeChat's 13+ rating. 5. A puzzling login process requires users to verify the email associated with their X account. 6. The touted encryption" feels minimal in practice, with its presence only indicated by a simple "Encrypted - Yes" label on messages. 7. Disappearing message timers for groups can be set from 5 minutes to 4 weeks, with the timer starting upon being read by a user. 8. Group invite links are shared with X Platform groups. 9. Group size limits are planned to be increased, aiming for 1000 members, a move that has drawn user criticism. 10. The app offers 8 different colored icons, and its chat bubbles are notably similar to WeChat's. Message deletion options mimic Telegram's. Crucially, many pre-announced features like importing X contacts, integrating Grok AI, X Money payments, and Cashtags are not yet available. The initial release is seen as a bare-bones and underwhelming first step.

Odaily星球日报42m ago

First Day Review of "Musk's WeChat" XChat: Even Worse Than Expected

Odaily星球日报42m ago

a16z Founder: In the Agent Era, What Truly Matters Has Changed

Founder of a16z Marc Andreessen discusses the transformative shift into the Agent era in a recent podcast. He emphasizes that today’s AI is not an overnight breakthrough but the result of an 80-year evolution, now reaching practical utility. Key developments include the convergence of LLMs, reasoning models, coding capabilities, and agent-based recursive self-improvement. Andreessen describes agents as systems integrating LLMs with shells, file systems, markdown, and schedulers—combining new AI with established software components. This architecture enables introspection, state persistence, and cross-platform execution, moving beyond chatbots toward agent-first interaction. He predicts traditional UIs will fade as agents execute tasks on behalf of users or other bots. He compares the current AI investment cycle to the dot-com bubble but highlights stronger fundamentals, with major tech firms leading scalable, revenue-generating infrastructure expansion. Open source, edge inference, and local AI deployment are critical to global adoption and competition. Andreessen also addresses broader challenges: security risks, identity verification, financial infrastructure for agents, and organizational adoption. He cautions that societal and institutional barriers will shape the pace of AI integration, tempering both utopian and dystopian expectations.

marsbit50m ago

a16z Founder: In the Agent Era, What Truly Matters Has Changed

marsbit50m ago

After 4 Months, Polymarket Helped Trump Catch the Military Operation Leaker, But at a Cost...

A U.S. Marine Corps sergeant, Gannon Ken Van Dyke, was arrested by the Department of Justice for insider trading on Polymarket, a prediction market platform. Van Dyke allegedly placed bets totaling $33,933 on events related to a U.S. military operation in Venezuela, including the ousting of President Maduro, before the action occurred in January 2026. He profited over $409,000, a return of more than 1200%. This case marks the first U.S. crackdown on insider trading using confidential government information in prediction markets. Two other addresses also profited from insider knowledge, earning a combined $630,400. In response, Polymarket introduced stricter market integrity rules in March, explicitly banning insider trading, including the use of stolen confidential information or trades by individuals who can influence event outcomes. The platform has implemented monitoring systems and may ban addresses, pursue legal action, or refer cases to authorities. While these measures enhance regulatory compliance, they may reduce Polymarket's edge in forecasting events through early information and raise user concerns about account freezes and financial security. The balance between preventing abuse and maintaining platform freedom remains a challenge.

marsbit1h ago

After 4 Months, Polymarket Helped Trump Catch the Military Operation Leaker, But at a Cost...

marsbit1h ago

Trading

Spot
Futures
活动图片