Sign In Register

TrapDoor attack targets crypto wallets, AWS keys and GitHub tokens

5 days ago 12

Rommie Analytics

  • The malware spread through npm, PyPI, and Rust packages in coordinated waves.
  • It steals crypto wallets, SSH keys, and cloud developer credentials.
  • AI coding tools were also targeted through malicious config files.

A coordinated malware campaign known as TrapDoor has hit software ecosystems widely used by crypto and blockchain developers.

Security researchers identified dozens of malicious packages spread across major open-source repositories, all designed to steal sensitive developer data such as wallet keys, cloud credentials, and source code access tokens.

Instead of a single malicious upload, attackers deployed multiple packages in waves using different accounts.

This approach made the activity harder to detect at the early stages and allowed the malware to blend into routine dependency updates.

Coordinated attack across major developer ecosystems

The TrapDoor operation affected at least three major package ecosystems: npm, PyPI, and Crates.io.

Together, researchers identified more than 30 malicious packages and over 300 affected versions distributed within a short window.<...

Read Entire Article
  1. Homepage
  2. Finance
  3. TrapDoor attack targets crypto wallets, AWS keys and GitHub tokens

Related

Bitcoin is at ‘pivotal level’ as $65K downside risk looms: Analyst

Bitcoin is at ‘pivotal level’ as $65K downside risk looms: Analyst

Senator Lummis says China will 'write the rules' of the new financial era if CLARITY fails

Senator Lummis says China will 'write the rules' of the new financial era if CLARITY fails

Circle freezes $12.6M of USDC linked to privacy protocol Zama

Circle freezes $12.6M of USDC linked to privacy protocol Zama

Snipesocial

DMCA.com Protection Status

Request DMCA Takedown

English (US) English (US)
About Us · Terms & Condition · Contact Us
© Snipesearch 2026. All rights are reserved