吴说区块链|Mar 28, 2026 02:02
According to cybersecurity company Aikido, the GlassWorm malware has recently been upgraded, using the memo field in Solana transactions as a covert communication channel to receive C2 commands and execute multi-stage attacks. This malicious program spreads by impersonating open-source packages like npm and PyPI, capable of stealing private keys, seed phrases, browser cookies, session data, and more, while deploying remote access trojans (RATs). The attack can also target hardware wallets like Ledger and Trezor by displaying fake interfaces to trick users into entering their seed phrases. Additionally, it supports keylogging, screenshots, and remote command execution. Researchers are urging developers to be cautious when installing dependencies and verify the source of packages. (The Hacker News)
https://www.(wublock123.com)/index.php?m=content&c=index&a=show&catid=6&id=58735
Share To
Timeline
HotFlash
APP
X
Telegram
CopyLink