National Cyber Warfare Foundation (NCWF)

Threat Actors Leverage npm and PyPI with Impersonated Dev Tools for Credential Theft
0 user ratings		2025-04-22 15:59:21
milo
Red Team (CNA)

The Socket Threat Research Team has unearthed a trio of malicious packages, two hosted on the Python Package Index (PyPI) and one on the npm registry, designed to silently pilfer cryptocurrency secrets, including mnemonic seed phrases and private keys. Released between 2021 and 2024, these packages, under the guise of harmless developer tools, have been […]


The post Threat Actors Leverage npm and PyPI with Impersonated Dev Tools for Credential Theft appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.



Aman Mishra

Source: gbHackers
Source Link: https://gbhackers.com/threat-actors-leverage-npm-and-pypi-with-impersonated-dev-tools/

Comments
new comment
Nobody has commented yet. Will you be the first?
  
Forum
Red Team (CNA)


Copyright 2012 through 2025 - National Cyber Warfare Foundation - All rights reserved worldwide.