Friday, July 4, 2025
cryptonews100
No Result
View All Result
CryptoNews100
No Result
View All Result
Home Alt Coins Solana

SlowMist Uncovers Malicious GitHub Project Targeting Solana Users

cryptonews100_tggfrn by cryptonews100_tggfrn
July 4, 2025
in Solana
0
SlowMist Uncovers Malicious GitHub Project Targeting Solana Users
189
SHARES
1.5k
VIEWS
Share on FacebookShare on Twitter
Sign up an get up to $1000 USDT!


TL;DR

  • SlowMist uncovered a pretend GitHub repository posing as a Solana buying and selling bot that stole pockets funds utilizing hidden malware in its code.
  • The malicious package deal, crypto-layout-utils, was downloaded from an exterior URL, scanned for personal keys, and despatched them to a server managed by the attacker.
  • SlowMist confirmed that a part of the stolen funds was transferred to FixedFloat and warned concerning the rising sophistication of those assaults.

A pretend GitHub repository used to unfold malware has raised alarm throughout the crypto group following an investigation by cybersecurity agency SlowMist.

The case got here to mild after a person reported the theft of funds from their pockets, which occurred after downloading and working a supposed Solana buying and selling bot revealed by the zldp2002 account. The instrument, disguised as a respectable mission referred to as solana-pumpfun-bot, rapidly gathered an unusually excessive variety of stars and forks, serving to to hide its true objective.

Slowmist post

SlowMist’s evaluation revealed that the code, constructed with Node.js, included a dependency named crypto-layout-utils, which had already been faraway from the official NPM registry. As an alternative, the package-lock.json file had been altered to obtain this library from a GitHub URL managed by the attacker. After de-obfuscating the package deal, researchers confirmed it contained features designed to scan native recordsdata for wallets or private keys and ship them to an exterior server.

Solana ETF

SlowMist Discovered Stolen Funds Moved to FixedFloat

SlowMist additionally uncovered a community of faux GitHub accounts used to fork initiatives and replicate malware variations, artificially inflating public metrics to draw extra downloads. A few of these forks included one other malicious dependency, bs58-encrypt-utils-1.0.3, which started circulating in mid-June. After this package deal was faraway from NPM, attackers switched to utilizing customized obtain hyperlinks to maintain the operation lively.

Utilizing on-chain monitoring instruments, SlowMist detected that a portion of the stolen funds was moved to the FixedFloat platform. The operation mixed social engineering strategies with dependency manipulation in open-source initiatives, main some unsuspecting customers to run malicious code on their techniques.

Crypto security

This incident is a transparent demonstration of the rising sophistication behind assaults concentrating on the crypto sector. Investigators warned of the dangers posed by unverified instruments that deal with property and suggested isolating take a look at environments whereas fastidiously inspecting the origin and dependencies of any software program earlier than execution.



Source link

Related articles

Solana and Ethereum Poised for Rally as Tokenized Stocks Gain Traction

Solana and Ethereum Poised for Rally as Tokenized Stocks Gain Traction

July 4, 2025
Solana Trading Volume Surges 100% to $304 Million Amid Whale Activity

Solana Trading Volume Surges 100% to $304 Million Amid Whale Activity

July 4, 2025
Tags: GitHubmaliciousprojectSlowMistSolanatargetinguncoversusers
Share76Tweet47
Drive and walk to earn crypto!

Related Posts

Solana and Ethereum Poised for Rally as Tokenized Stocks Gain Traction

Solana and Ethereum Poised for Rally as Tokenized Stocks Gain Traction

by cryptonews100_tggfrn
July 4, 2025
0

Solana (SOL) and Ethereum (ETH) are anticipated to expertise a rally within the close to future, in keeping with Ryan...

Solana Trading Volume Surges 100% to $304 Million Amid Whale Activity

Solana Trading Volume Surges 100% to $304 Million Amid Whale Activity

by cryptonews100_tggfrn
July 4, 2025
0

Solana's buying and selling quantity lately surged to $304 million, capturing the eye of buyers and analysts alike. This important...

Fake JD stablecoins, scammers impersonate Solana devs: Asia Express

by cryptonews100_tggfrn
July 3, 2025
0

All JD stablecoins in the present day are scams All companies claiming to supply entry to JD.com’s stablecoin are fraudulent,...

DeFi Development Shares Rise After $2.72 Million Solana Purchase

by cryptonews100_tggfrn
July 3, 2025
0

By Natalie Weger DeFi Development shares surged after the corporate stated it purchased $2.72 million price of Solana cryptocurrency, which...

New Solana ETF could pave the way for wider adoption of niche cryptos

New Solana ETF could pave the way for wider adoption of niche cryptos

by cryptonews100_tggfrn
July 3, 2025
0

New ETF presents U.S. traders publicity to Solana A brand new funding car giving conventional traders entry to Solana—a serious...

Load More

Crypto Fear & Greed Index

Latest Crypto Fear & Greed Index

Recent News

Trump inaugural impersonators scammed donors out of crypto, feds say

Trump inaugural impersonators scammed donors out of crypto, feds say

July 4, 2025
The EthCC crypto scene at Cannes shows how far Ethereum has come

The EthCC crypto scene at Cannes shows how far Ethereum has come

July 4, 2025
Where Did Bitcoin’s Retail Go? Look Offchain

Where Did Bitcoin’s Retail Go? Look Offchain

July 4, 2025

Categories

  • Bitcoin
  • Cardano
  • Chainlink
  • Cryptocurrency
  • Dogecoin
  • Elon Musk
  • Ethereum
  • Exchanges
  • Litecoin
  • Pokadot
  • Polygon
  • Real World Assets
  • Shiba Inu
  • Solana
  • sui
  • World Liberty Financial
  • XRP

Download the official CryptoNews100 Android App! Click the button below:

Tags

ADA (109) Bitcoin (399) BlockDAG (66) BTC (123) bullish (62) Buy (139) Cardano (176) ChainLink (133) coin (65) crypto (490) Cryptocurrency (158) Detail (84) DOGE (89) Dogecoin (159) ETF (107) ETH (113) Ethereum (231) flash (85) Inu (123) key (64) launches (68) Link (61) market (123) million (62) News (245) Polkadot (86) POLYGON (84) prediction (79) Presale (62) price (343) rally (73) RWA (82) SHIB (74) Shiba (130) SOL (85) Solana (217) Sui (133) Surge (68) today (60) token (66) top (124) trading (60) TradingView (72) Trump (108) XRP (298)

© 2023 Crypto News100 All Rights Reserved.
By visiting this website, you understand that the content provided within is for educational and entertainment purposes only. Nothing on this site may be constituted as financial advice and this site is not directing you to make any investments in cryptocurrency or in anything else. Thank you for visiting and please proceed responsibly.
As an Amazon Associate I earn from qualifying purchases.

No Result
View All Result
  • Home
  • Bitcoin
  • Ethereum
  • Alt Coins
    • Cardano
    • Dogecoin
    • Litecoin
    • Pokadot
    • Polygon
    • Shiba Inu
    • Solana
    • XRP
  • Crypto Related DEALS

© 2023 Crypto News100 All Rights Reserved.
By visiting this website, you understand that the content provided within is for educational and entertainment purposes only. Nothing on this site may be constituted as financial advice and this site is not directing you to make any investments in cryptocurrency or in anything else. Thank you for visiting and please proceed responsibly.
As an Amazon Associate I earn from qualifying purchases.