Home > Quick > Body

Security firm finds malicious software capable of stealing cryptocurrencies in Python package index

clock
2024-10-12 10:23:05
On October 12, researchers at cyber security company Checkmarx have raised the alarm about a dangerous malicious software uploaded to Python Package Index (PyPI), which steals private keys. According to the company, the malicious software was automatically uploaded by suspicious users through several different packages, designed to mimic the decoding applications of popular wallets such as MetaMask, Atomic, TronLink, Ronin, and other mainstream products in the industry. The malicious software is cleverly embedded into various parts of the package. Since the malicious software appears to be harmless code, it is essentially undetectable. However, upon closer inspection, once an unsuspecting user invokes a specific function embedded in the software package, a specific part of the data allows hackers to take control of cryptocurrency wallets and transfer funds.
Disclaimer:
1. The information provided does not constitute investment advice. Investors should make independent decisions and bear all risks themselves.
2. The copyright of this content belongs to the original author. The views expressed herein are solely those of the author and do not represent the stance or position of this website.
New Tab Page - Desk3 | Plugin
Stay ahead of the game in the cryptocurrency space.