Загрузка...

Crypto-Stealing Code Found in npm & PyPI Packages

ALERT: Malicious open-source packages targeting crypto wallets have been uncovered on npm and PyPI, downloaded thousands of times by unsuspecting developers. The packages silently steal mnemonic seed phrases and private keys—and some are still active.

Malicious Packages Identified:
react-native-scrollpageviewtest (npm): 1,215 downloads
Exfiltrates wallet secrets via Google Analytics
Obfuscated & dynamic loader of React Native wallet engine
web3x (PyPI): 3,405 downloads
Poses as Ethereum balance checker
Steals seed phrases via Telegram bot
herewalletbot (PyPI): 3,425 downloads
Uses Telegram chat interface to harvest seed phrases

Exfiltration Emails / Endpoints:
twoplusten@163[.]com
xeallmail@mitico[.]org
bevansatria@gmail[.]com
hxxps://web[.]telegram[.]org/k/#@herewalletbot
These tools blend into dev workflows, making them hard to detect—highlighting the rising threat of software supply chain attacks.

Dev Security Tips:
NEVER share your mnemonic or private keys
Review code before installing unknown packages
Monitor runtime behavior & audit dependencies
Flag and report any package requesting sensitive wallet data
#CryptoSecurity #OpenSource #PyPI #npm #MalwareAlert #SupplyChainAttack #SeedPhraseTheft #Web3Security #DevSecOps #CyberSecurityNews

Видео Crypto-Stealing Code Found in npm & PyPI Packages канала Secure Thread
Комментарии отсутствуют
Зарегистрируйтесь или войдите с
Информация о видео
23 апреля 2025 г. 22:30:02
00:00:11
Secure Thread
Правообладателям
Жалоба на материал Недопустимый материал Нарушение авторских прав
Комментарии
Поделиться
Другие видео канала

Midnight Blizzard Targets Microsoft Execs with Password SprayMidnight Blizzard Targets Microsoft Execs with Password Spray

Microsoft June 2025 Patch Tuesday Fixes 67 Vulnerabilities Including WebDAV Zero-Day and SMB ClientMicrosoft June 2025 Patch Tuesday Fixes 67 Vulnerabilities Including WebDAV Zero-Day and SMB Client

Spain & Latin America hit by banking trojan | SecureThread ShortsSpain & Latin America hit by banking trojan | SecureThread Shorts

Hackers Exploit Multiple Techniques to Bypass Fingerprint Scanners and Steal IdentitiesHackers Exploit Multiple Techniques to Bypass Fingerprint Scanners and Steal Identities

Legends International Hit by Data BreachLegends International Hit by Data Breach

KEA Portal Clone Scams Students with Fake Medical Expo and Counselling SchemeKEA Portal Clone Scams Students with Fake Medical Expo and Counselling Scheme

Global Crackdown Slashes Darknet and Fraud Shop RevenuesGlobal Crackdown Slashes Darknet and Fraud Shop Revenues

Student Scam Alert: Fake Internships Targeting Miami University!Student Scam Alert: Fake Internships Targeting Miami University!

Bank Scam Alert: Frankenmuth Credit Union Impersonated | SecureThread ShortsBank Scam Alert: Frankenmuth Credit Union Impersonated | SecureThread Shorts

Pakistani Hackers take Over a Nursing College Website and shared Disturbing ImagesPakistani Hackers take Over a Nursing College Website and shared Disturbing Images

AI-Driven API Attacks Explode: 150 Billion in 2024AI-Driven API Attacks Explode: 150 Billion in 2024

Chinese Hackers Exploit Ivanti Zero-Days to Target French Government, Defense, and Media EntitiesChinese Hackers Exploit Ivanti Zero-Days to Target French Government, Defense, and Media Entities

DarkEngine Campaign Compromises 2,353 WordPress Sites with Fake CAPTCHA MalwareDarkEngine Campaign Compromises 2,353 WordPress Sites with Fake CAPTCHA Malware

Sydney Uni Data Breach affects 10,000 Students | SecureThread ShortsSydney Uni Data Breach affects 10,000 Students | SecureThread Shorts

UK Warns of AI-Driven Cyberattacks on Critical InfrastructureUK Warns of AI-Driven Cyberattacks on Critical Infrastructure

Toll Scam Texts Are BackToll Scam Texts Are Back

Steganography Analysis Reveals Hidden Malware in PNG File Using pngdump.pySteganography Analysis Reveals Hidden Malware in PNG File Using pngdump.py

Darcula PhaaS Steals 884,000 Credit Cards Via SMS Phishing TextsDarcula PhaaS Steals 884,000 Credit Cards Via SMS Phishing Texts

DNA Under Attack? Alarming NGS Cybersecurity Gaps RevealedDNA Under Attack? Alarming NGS Cybersecurity Gaps Revealed

US Critical Infrastructure Under Attack by Nation-State Hackers Salt TyphoonUS Critical Infrastructure Under Attack by Nation-State Hackers Salt Typhoon

Critical CVE-2025-47577 in WooCommerce Wishlist Plugin exposes Sites to Unauthenticated File UploadCritical CVE-2025-47577 in WooCommerce Wishlist Plugin exposes Sites to Unauthenticated File Upload

Яндекс.Метрика
© 2008-2026 «Информационно-развлекательный портал города Верхняя Салда»
salda.ws@mail.ru salda_ws Контакты Карта портала Сообщить об ошибке Соглашения Пользовательское соглашение Соглашение о конфиденциальности Согласие на обработку персональных данных Информация для правообладателей Об использовании Cookies
Все заметки Новая заметка Страницу в заметки
Страницу в закладки Мои закладки
На информационно-развлекательном портале SALDA.WS применяются cookie-файлы. Нажимая кнопку Принять, вы подтверждаете свое согласие на их использование.
О CookiesНапомнить позжеПринять