PyPI Repository Found Hosting Fake Crypto Wallet Recovery Tools That Steal User Data

2024-10-02 05:31

A new set of malicious packages has been unearthed in the Python Package Index (PyPI) repository that masqueraded as cryptocurrency wallet recovery and management services, only to siphon sensitive data and facilitate the theft of valuable digital assets. "The attack targeted users of Atomic, Trust Wallet, Metamask, Ronin, TronLink, Exodus, and other prominent wallets in the crypto ecosystem,"

News URL

https://thehackernews.com/2024/10/pypi-repository-found-hosting-fake.html

#crypto #tools

Related vendor

VENDOR	LAST 12M	#/PRODUCTS	LOW	MEDIUM	HIGH	CRITICAL	TOTAL VULNS
Pypi		14	0	0	14	0	14