SlowMist 披露跨注册表供应链攻击,加密及 AI 开发者成重点目标
深潮 TechFlow 消息,5 月 25 日,据链上分析师 PeckShield(@PeckShieldAlert)监测,SlowMist 旗下威胁情报系统 MistEye 检测到一起针对开发者的跨注册表供应链攻击,恶意包已扩散至 npm、PyPI 和 Crates.io 三大注册表,涉及 34 个以上恶意包及 384 个以上相关版本。
攻击目标覆盖加密货币、DeFi、Solana、Sui/Move 及 AI 开发者社区,可能导致加密钱包、SSH 密钥、云凭据、GitHub/AWS 令牌、浏览器数据及开发者机密信息遭窃。部分恶意载荷还尝试通过 .cursorrules、CLAUDE.md、Git hooks、cron、systemd 及 SSH 等方式实现持久化驻留。SlowMist 建议立即移除受影响包、隔离受影响系统、轮换暴露凭据,并从干净镜像重建 CI 环境及开发者机器,同时全面审查 GitHub、云端、SSH 及钱包相关活动。
Disclaimer: OKX Orbit content is provided for informational purposes only. Learn more
Replies
Related Flash News
The Sui mainnet stopped accepting user transactions due to the epoch change issue
Institutions such as MetaMask and Robinhood jointly initiated OTL to promote unified on-chain financial transaction standards
p2p.org launched a real-time data streaming service supporting SUI and Hyperliquid
Sui mainnet has experienced network outages, and current transactions may be suspended
CME 推出 Avalanche 与 Sui 期货合约
Sui ecosystem updates: zero-gas transfer implementation, renewed ecosystem project Premium Exchange
Slow Fog: Supply chain attacks affected PyPI/npm/crates.io, with over 34 malicious packages targeting crypto and AI developers
OKX will support the SUI network upgrade
Sui introduces gas-free stablecoin transfers, simplifying global payment infrastructure
SUI Group: SUI holdings exceed 108 million tokens, with a market capitalization of approximately $115 million
Trending crypto
