The campaign targets crypto, DeFi, AI and security developers with fake tooling packages to steal wallets, SSH keys, GitHub tokens, cloud credentials and browser data. A newly discovered supply-chain campaign called TrapDoor has planted more than 34 malicious packages across npm, PyPI and Crates.io to target crypto and cloud developers. The packages, disguised as mundane developer utilities and security tools, were designed to steal SSH keys, wallet files, AWS credentials, GitHub tokens, browse…
Why this update matters
This developing story is relevant for readers tracking cryptocurrency because it reflects fresh changes from the original source and signals where attention is shifting next.
Key details
The report was collected automatically and prepared for publication with a newsroom workflow that focuses on clarity, search visibility, and quick understanding.
Readers should review the original source for direct statements, official notices, and any later corrections or additions as the story evolves.
Related coverage
Continue reading with more reporting from the same topic cluster.