TechSecInfo

The tech + cyber briefing: what happened, why it matters, and where it came from.

Cyber Security

Compromised dYdX npm and PyPI Packages Deliver Wallet Stealers and RAT Malware

By rooter

Cybersecurity researchers have discovered a new supply chain attack in which legitimate packages on npm and the Python Package Index (PyPI) repository have been compromised to push malicious versions to facilitate wallet credential theft and remote code execution.
The compromised versions of the two packages are listed below –

@dydxprotocol/v4-client-js (npm) – 3.4.1, 1.22.1, 1.15.2, 1.0.31&

Oh hi there đź‘‹
It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

We don’t spam! Read our privacy policy for more info.

Oh hi there đź‘‹
It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

We don’t spam! Read our privacy policy for more info.

By rooter

Related Post

Cyber Security

From Paper to Digital: The Benefits of Making Taxes Digital (MTD)

rooter
Cyber Security

Weaponizing Legitimate Low-Level Tools: How Ransomware Evades Antivirus Protections

rooter
Cyber Security

Iran-Linked Hackers Breach FBI Director’s Personal Email, Hit Stryker With Wiper Attack

rooter

Leave a Reply

You Missed

News

There is no ethical consumption of HBO’s Harry Potter series

News

Can my favorite Game Boy gadget tell fake cartridges from real?

News

2027 Is Shaping Up to Be a Great Year for Big Sci-Fi RPGs

News

Pints meet prop bets: Polymarket’s “Situation Room” pop-up bar in DC