AI News HubLIVE
站内改写

AI Has Taken over Open Source

The TrapDoor crypto stealer supply chain attack has infected 36 malicious packages across npm, PyPI, and Crates.io, targeting developers in crypto, DeFi, AI, and security fields.

Article intelligence

ResearchersAdvanced

Key points

  • TrapDoor crypto stealer distributed via 36 packages on npm, PyPI, and Crates.io.
  • Targets developers working on cryptocurrency, DeFi, AI, and security projects.
  • Discovered by Socket Research Team on May 24, 2026.

Why it matters

This matters because trapDoor crypto stealer distributed via 36 packages on npm, PyPI, and Crates.io.

Technical impact

May affect research directions, evaluation methods, open-source reproduction, and productization paths.

Research

/

Security News

TrapDoor Crypto Stealer Supply Chain Attack Hits 34 Packages and Hundreds of Versions Across npm, PyPI, and Crates.io

TrapDoor crypto stealer hits 36 malicious packages across npm, PyPI, and Crates.io, targeting crypto, DeFi, AI, and security developers.

By Socket Research Team  -  May 24, 2026