Home  ›  Malware  ›  Malware Analysis  ›  News and Indicators - Latest topics

Fake Solana packages target crypto devs, abuse Slack & ImgBB for data theft

on Post a Comment

Introduction to Malware Binary Triage (IMBT) Course

Looking to level up your skills? Get 10% off using coupon code: MWNEWS10 for any flavor.

Enroll Now and Save 10%: Coupon Code MWNEWS10

Note: Affiliate link – your enrollment helps support this platform at no extra cost to you.

Fake Solana packages target crypto devs, abuse Slack & ImgBB for data theft

Recently discovered malicious packages on the npmjs.com registry named "solanacore," "solana-login," and "walletcore-gen" target Solana crypto developers with Windows trojans and malware capable of keylogging and sensitive data exfiltration capabilities. Furthermore, these packages abuse Slack web hooks and ImgBB APIs to transfer collected data to external actors.

Unlike previously discovered crypto-stealers that contained heavily obfuscated code, however, there's some oddity to these packages—they don't hide their intent or functionality, and bear peculiarities alluding to their simplistic yet mysterious nature.

Article Link: Fake Solana packages target crypto devs, abuse Slack & ImgBB for data theft

1 post - 1 participant

Read full topic



Malware Analysis, News and Indicators - Latest topics
Malware Malware Analysis News and Indicators - Latest topics
Sp123
"The real threat is actually not when the computer begins to think like a human, but when humans begin to think like computers."

Post a Comment

Post a Comment