SECURITYTHE BLOCK
Researchers flag TrapDoor malware campaign targeting crypto developer environments including Aptos, Sui and Solana
Researchers identified the TrapDoor malware campaign using malicious packages on npm, PyPI, and Crates.io to target crypto developer environments, including Aptos, Sui, and Solana. The campaign exploited package repositories to compromise developers working in blockchain ecosystems.
Mentioned
Related Signal
Adjacent reporting
- ‘TrapDoor’ malware targets crypto dev tools in supply chain attack
- Mini Shai-Hulud returns, compromising hundreds of npm packages
- Shai Hulud attack ships signed malicious TanStack, Mistral npm packages
- Shai-Hulud: What to Know About the Malware Spreading Through Software Pipelines
- Megalodon chums the waters in 5.5K+ GitHub repo poisonings
- Telegram Mini Apps abused for crypto scams, Android malware delivery