coin-img-ETHETH+0.28%coin-img-BTCBTC-0.18%coin-img-HYPEHYPE-3.54%coin-img-SOLSOL-0.54%coin-img-USDCUSDC+0.01%coin-img-NEARNEAR+19.56%coin-img-XRPXRP-0.35%coin-img-TONCOINTONCOIN+7.51%coin-img-ETHETH+0.28%coin-img-BTCBTC-0.18%coin-img-HYPEHYPE-3.54%coin-img-SOLSOL-0.54%coin-img-USDCUSDC+0.01%coin-img-NEARNEAR+19.56%coin-img-XRPXRP-0.35%coin-img-TONCOINTONCOIN+7.51%coin-img-ETHETH+0.28%coin-img-BTCBTC-0.18%coin-img-HYPEHYPE-3.54%coin-img-SOLSOL-0.54%coin-img-USDCUSDC+0.01%coin-img-NEARNEAR+19.56%coin-img-XRPXRP-0.35%coin-img-TONCOINTONCOIN+7.51%coin-img-ETHETH+0.28%coin-img-BTCBTC-0.18%coin-img-HYPEHYPE-3.54%coin-img-SOLSOL-0.54%coin-img-USDCUSDC+0.01%coin-img-NEARNEAR+19.56%coin-img-XRPXRP-0.35%coin-img-TONCOINTONCOIN+7.51%
user-avatar
Gamza Khanzadaev

SlowMist flags TrapDoor supply-chain malware targeting Solana, DeFi and AI developers

SlowMist issued an emergency alert labeled SM-2026-352284, saying it has detected an active cross-registry supply-chain campaign aimed at Web3 and AI builders. The firm said attackers published more than 34 malicious packages and 384 related versions across npm, PyPI and Crates.io to steal crypto wallets and developer credentials. SlowMist advised teams to remove the packages, isolate affected machines and follow a three-step remediation plan including AI config checks, credential rotation and a full rebuild.
SOL
SOL-0.61%
DEFI
DEFI-0.76%
Disclaimer: The content above is only the author's opinion and does not represent BingX’s stance. It shall not be construed as investment advice from BingX. For details, refer to the Terms and Conditions.
SolanaDEX