TrapDoor Supply Chain Attack Spreads Credential-Stealing Malware via npm, PyPI, and CratesIO

A new coordinated cross-ecosystem software supply chain attack campaign has targeted npm, PyPI, and Crates.io to distribute credential-stealing malware.

The campaign, codenamed TrapDoor, spans more than 34 malicious packages across over 384 versions. The earliest activity was recorded on May 22, 2026, at 8:20 p.m. UTC, with new packages published to the ecosystems in waves from a cluster of

TrapDoor Supply Chain Attack Spreads Credential-Stealing Malware via npm, PyPI, and CratesIO

Oh hi there 👋
It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

Oh hi there 👋
It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

By rooter

Leave a Reply Cancel reply

You Missed

FBI director Kash Patel’s brand website taken offline after malware reports

TrapDoor Supply Chain Attack Spreads Credential-Stealing Malware via npm, PyPI, and CratesIO

TrapDoor Supply Chain Attack Spreads Credential-Stealing Malware via npm, PyPI, and CratesIO

Real-Time Webhook Notifications: No More Lost Security Alerts

Oh hi there 👋It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

Oh hi there 👋It’s nice to meet you.

Sign up to receive awesome content in your inbox, every month.

By rooter

Related Post

Leave a Reply Cancel reply

You Missed

Oh hi there 👋
It’s nice to meet you.

Oh hi there 👋
It’s nice to meet you.