Thursday, July 31, 2025
cryptonews100
No Result
View All Result
CryptoNews100
No Result
View All Result
Home Alt Coins Solana

SlowMist Uncovers Malicious GitHub Project Targeting Solana Users

cryptonews100_tggfrn by cryptonews100_tggfrn
July 4, 2025
in Solana
0
SlowMist Uncovers Malicious GitHub Project Targeting Solana Users
189
SHARES
1.5k
VIEWS
Share on FacebookShare on Twitter
Sign up an get up to $1000 USDT!


TL;DR

  • SlowMist uncovered a pretend GitHub repository posing as a Solana buying and selling bot that stole pockets funds utilizing hidden malware in its code.
  • The malicious package deal, crypto-layout-utils, was downloaded from an exterior URL, scanned for personal keys, and despatched them to a server managed by the attacker.
  • SlowMist confirmed that a part of the stolen funds was transferred to FixedFloat and warned concerning the rising sophistication of those assaults.

A pretend GitHub repository used to unfold malware has raised alarm throughout the crypto group following an investigation by cybersecurity agency SlowMist.

The case got here to mild after a person reported the theft of funds from their pockets, which occurred after downloading and working a supposed Solana buying and selling bot revealed by the zldp2002 account. The instrument, disguised as a respectable mission referred to as solana-pumpfun-bot, rapidly gathered an unusually excessive variety of stars and forks, serving to to hide its true objective.

Slowmist post

SlowMist’s evaluation revealed that the code, constructed with Node.js, included a dependency named crypto-layout-utils, which had already been faraway from the official NPM registry. As an alternative, the package-lock.json file had been altered to obtain this library from a GitHub URL managed by the attacker. After de-obfuscating the package deal, researchers confirmed it contained features designed to scan native recordsdata for wallets or private keys and ship them to an exterior server.

Solana ETF

SlowMist Discovered Stolen Funds Moved to FixedFloat

SlowMist additionally uncovered a community of faux GitHub accounts used to fork initiatives and replicate malware variations, artificially inflating public metrics to draw extra downloads. A few of these forks included one other malicious dependency, bs58-encrypt-utils-1.0.3, which started circulating in mid-June. After this package deal was faraway from NPM, attackers switched to utilizing customized obtain hyperlinks to maintain the operation lively.

Utilizing on-chain monitoring instruments, SlowMist detected that a portion of the stolen funds was moved to the FixedFloat platform. The operation mixed social engineering strategies with dependency manipulation in open-source initiatives, main some unsuspecting customers to run malicious code on their techniques.

Crypto security

This incident is a transparent demonstration of the rising sophistication behind assaults concentrating on the crypto sector. Investigators warned of the dangers posed by unverified instruments that deal with property and suggested isolating take a look at environments whereas fastidiously inspecting the origin and dependencies of any software program earlier than execution.



Source link

Related articles

Ethereum Turns 10 as Linea Unveils ETH-Burning L2 Upgrade and Solana Charts Capital Markets Future

Ethereum Turns 10 as Linea Unveils ETH-Burning L2 Upgrade and Solana Charts Capital Markets Future

July 31, 2025

Solana Bulls Stake 4.1M SOL as Price Holds $180 Post-ETF Approval: What’s Next?

July 30, 2025
Tags: GitHubmaliciousprojectSlowMistSolanatargetinguncoversusers
Share76Tweet47
Drive and walk to earn crypto!

Related Posts

Ethereum Turns 10 as Linea Unveils ETH-Burning L2 Upgrade and Solana Charts Capital Markets Future

Ethereum Turns 10 as Linea Unveils ETH-Burning L2 Upgrade and Solana Charts Capital Markets Future

by cryptonews100_tggfrn
July 31, 2025
0

(*10*) Ethereum marked its 10-year anniversary on July 30, celebrating a decade of remodeling blockchain from “digital gold” to a...

Solana Bulls Stake 4.1M SOL as Price Holds $180 Post-ETF Approval: What’s Next?

by cryptonews100_tggfrn
July 30, 2025
0

Solana SOL $179.0 24h volatility: 1.3% Market cap: $96.32 B Vol. 24h: $5.30 B value hovered close to $180 on...

Moon or Doom Price Moment, Will Solana’s (SOL) Golden Cross Help? Bitcoin (BTC) Price Explosion Coming

Moon or Doom Price Moment, Will Solana’s (SOL) Golden Cross Help? Bitcoin (BTC) Price Explosion Coming

by cryptonews100_tggfrn
July 30, 2025
0

Solana's small boostBitcoin can blow upThe value motion of Shiba Inu is consolidating simply above the $0.0000134 stage, signaling a...

Qubetics Soars 950% in Debut Hour Polygon Upgrades for 95% Faster Transactions Cosmos Steady at $4.30

BlockDAG’s 3,025% Presale Potential, Solana’s 8% Weekly Surge, Kaspa’s 7% Gains, Dogecoin’s $1.4B Volume

by cryptonews100_tggfrn
July 30, 2025
0

Because the cryptocurrency market enters a pivotal part in 2025, a number of tasks have emerged as standout performers, pushed...

Why Ethereum and Solana Whales Are Buying This New Crypto Presale For 10,000% ROI This Year!

Why Ethereum and Solana Whales Are Buying This New Crypto Presale For 10,000% ROI This Year!

by cryptonews100_tggfrn
July 30, 2025
0

Disclaimer: This is a Press Launch supplied by a 3rd occasion who's chargeable for the content material. Please conduct your...

Load More

Crypto Fear & Greed Index

Latest Crypto Fear & Greed Index

Recent News

Baker County Sheriff’s Office looking into cryptocurrency scheme

Baker County Sheriff’s Office looking into cryptocurrency scheme

July 31, 2025

How the next 10 years might look — TradingView News

July 31, 2025
Trump White House Releases Crypto Regulation Report

Trump White House Releases Crypto Regulation Report

July 31, 2025

Categories

  • Bitcoin
  • Cardano
  • Chainlink
  • Cryptocurrency
  • Dogecoin
  • Elon Musk
  • Ethereum
  • Exchanges
  • Litecoin
  • Pokadot
  • Polygon
  • Real World Assets
  • Shiba Inu
  • Solana
  • sui
  • World Liberty Financial
  • XRP

Download the official CryptoNews100 Android App! Click the button below:

Tags

ADA (159) Bitcoin (630) BlockDAG (115) BTC (175) bullish (110) Buy (205) Cardano (268) ChainLink (205) crypto (737) Cryptocurrency (265) Detail (103) DOGE (126) Dogecoin (254) ETF (155) ETH (186) Ethereum (377) eyes (92) flash (104) hits (98) Inu (197) key (94) launches (109) Link (101) market (205) million (105) News (358) Polkadot (129) POLYGON (132) prediction (116) Presale (101) price (559) rally (143) RWA (129) SHIB (117) Shiba (204) SOL (121) Solana (327) Sui (215) Surge (119) Surges (109) token (107) top (172) TradingView (109) Trump (154) XRP (463)

© 2023 Crypto News100 All Rights Reserved.
By visiting this website, you understand that the content provided within is for educational and entertainment purposes only. Nothing on this site may be constituted as financial advice and this site is not directing you to make any investments in cryptocurrency or in anything else. Thank you for visiting and please proceed responsibly.
As an Amazon Associate I earn from qualifying purchases.

No Result
View All Result
  • Home
  • Bitcoin
  • Ethereum
  • Alt Coins
    • Cardano
    • Dogecoin
    • Litecoin
    • Pokadot
    • Polygon
    • Shiba Inu
    • Solana
    • XRP
  • Crypto Related DEALS

© 2023 Crypto News100 All Rights Reserved.
By visiting this website, you understand that the content provided within is for educational and entertainment purposes only. Nothing on this site may be constituted as financial advice and this site is not directing you to make any investments in cryptocurrency or in anything else. Thank you for visiting and please proceed responsibly.
As an Amazon Associate I earn from qualifying purchases.