TrapDoor steals programs and attacks three major code repositories

Socket Security has revealed that TrapDoor's stealing program is launching supply chain attacks on code repositories such as npm, PyPI, and Crate.io, and has discovered 34 malicious software packages and 384 versions and components. The attack targets developers in the fields of cryptocurrency, DeFi, AI, and security, stealing sensitive information such as wallets, SSH keys, cloud credentials, GitHub tokens, etc. The median detection time for malicious versions is 5 minutes and 27 seconds, with the fastest detection time being 58 seconds.