Cryptopolitan on MSN
Malicious packages empty dYdX user wallets
dYdX has been targeted by bad actors using malicious packages to empty its user wallets.
Compromised dYdX npm and PyPI packages delivered wallet-stealing malware and a RAT via poisoned updates in a software supply chain attack.
CrashFix crashes browsers to coerce users into executing commands that deploy a Python RAT, abusing finger.exe and portable Python to evade detection and persist on high‑value systems.
Some results have been hidden because they may be inaccessible to you
Show inaccessible results