SlowMist has identified a cross-registry supply chain attack targeting developers in the cryptocurrency, DeFi, Solana, Sui/Move, and AI sectors. The attack, detected by SlowMist's MistEye system, involves over 34 malicious packages and more than 384 versions across npm, PyPI, and Crates.io registries. These packages aim to steal sensitive information such as crypto wallets, SSH keys, and cloud credentials.
The attack employs various methods to maintain persistence, including Git hooks and systemd. SlowMist advises developers to remove affected packages, isolate compromised systems, rotate credentials, and rebuild environments from clean images. A thorough review of GitHub, cloud services, and wallet activities is also recommended to mitigate risks.
SlowMist Uncovers Cross-Registry Supply Chain Attack on Crypto and AI Developers
Aviso Legal: O conteúdo disponibilizado no Phemex News é apenas para fins informativos. Não garantimos a qualidade, precisão ou integridade das informações provenientes de artigos de terceiros. Este conteúdo não constitui aconselhamento financeiro ou de investimento. Recomendamos fortemente que você realize suas próprias pesquisas e consulte um consultor financeiro qualificado antes de tomar decisões de investimento.