Threat actors who created StackExchange accounts commented on popular threads with high-quality answers that included links to the packages, including ‘spl-types,’ ‘sol-structs,’ ‘sol-instruct,’ ‘raydium,’ and ‘raydium-sdk,’ which facilitated the download of scripts enabling browser, messaging app, and cryptocurrency wallet data exfiltration.

Article Link: Infostealing PyPI packages spread through StackExchange | SC Media

1 post – 1 participant

Read full topic

​Threat actors who created StackExchange accounts commented on popular threads with high-quality answers that included links to the packages, including ‘spl-types,’ ‘sol-structs,’ ‘sol-instruct,’ ‘raydium,’ and ‘raydium-sdk,’ which facilitated the download of scripts enabling browser, messaging app, and cryptocurrency wallet data exfiltration.
Article Link: Infostealing PyPI packages spread through StackExchange | SC Media
1 post – 1 participant
Read full topic