Security firm finds malicious software capable of stealing cryptocurrencies in Python package index
2024-10-12 10:23:05
10 12 messaging cyber security company-wide checkmarx researchers peopledesk3cryptocurrencydesktopCrypto News
On October 12, researchers at cyber security company Checkmarx have raised the alarm about a dangerous malicious software uploaded to Python Package Index (PyPI), which steals private keys. According to the company, the malicious software was automatically uploaded by suspicious users through several different packages, designed to mimic the decoding applications of popular wallets such as MetaMask, Atomic, TronLink, Ronin, and other mainstream products in the industry. The malicious software is cleverly embedded into various parts of the package. Since the malicious software appears to be harmless code, it is essentially undetectable. However, upon closer inspection, once an unsuspecting user invokes a specific function embedded in the software package, a specific part of the data allows hackers to take control of cryptocurrency wallets and transfer funds.
Disclaimer:
1. The information provided does not constitute investment advice. Investors should make independent decisions and bear all risks themselves.
2. The copyright of this content belongs to the original author. The views expressed herein are solely those of the author and do not represent the stance or position of this website.
Previous article:
安全公司:Python软件包索引中发现能窃取加密货币的恶意软件Next article:
BTC突破63000美元