SlowMist Flags CrossRegistry Supply Chain Attack as Dozens of Malicious Packages Hit Developers

SlowMist said its MistEye monitoring system has identified a cross-registry supply chain campaign in which attackers published more than 34 malicious packages and at least 384 associated versions across npm, PyPI, and Crates.io. The operation targets developers working in crypto and DeFi, as well as ecosystems including Solana, Sui/Move, and AI. According to SlowMist, the malware is designed to steal cryptocurrency wallets, SSH keys, cloud credentials, and other sensitive data. The campaign also attempts to maintain long-term access using multiple persistence techniques. SlowMist advised developers and organizations to remove any affected packages, isolate impacted machines, rotate exposed credentials, and rebuild development environments from clean images.

Disclaimer: The content above is only the author's opinion and does not represent BingX’s stance. It shall not be construed as investment advice from BingX. For details, refer to the Terms and Conditions.

SlowMist Flags CrossRegistry Supply Chain Attack as Dozens of Malicious Packages Hit Developers

Aave Re-enables WETH Lending on Six Networks After 95.4% rsETH Recovery

Bitcoin Slips Under $77,000 After Two Binance Taker-Sell Spikes Above $1B

CryptoQuant Bull-Bear Indicator Flips Green on May 12, 2026, First Since March 2023

May 14, 2026: Bitcoin Drops Below $80,000 as U.S. PPI Hits 6.0% and Trump Meets Xi

S&P 500 hits a new high as Bitcoin breaks $80,000 and slips to $78,759.70

Bitcoin Holds Near $81,186 on May 12, 2026 as OI Drops and Funding Turns Deeply Negative