URL has been copied successfully!
34 Malicious Packages Steal Cloud Keys, Wallets, and SSH Credentials
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

34 Malicious Packages Steal Cloud Keys, Wallets, and SSH Credentials


Tags: , , , , , , , , , , ,

Hackers are actively abusing open-source ecosystems to steal sensitive developer data through a large-scale supply chain attack dubbed “TrapDoor,”. The campaign spans npm, PyPI, and Crates.io, leveraging 34 malicious packages and 384 versions to target developers working in cryptocurrency, DeFi, AI, and cloud environments. The attackers weaponized legitimate package installation and build mechanisms to silently […] The post 34 Malicious Packages Steal Cloud Keys, Wallets, and SSH Credentials appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

First seen on gbhackers.com

Jump to article: gbhackers.com/34-malicious-packages-steal-cloud-keys/

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. Top 12 ways hackers broke into your systems in 2024
  2. 13 ways attackers use generative AI to exploit your systems
  3. 13 ways attackers use generative AI to exploit your systems
  4. 71% of CISOs hit with third-party security incident this year