A 'TrapDoor' malware specifically targeting cryptocurrency, decentralized finance (DeFi), and artificial intelligence (AI) developers has been discovered, requiring caution, cyber security firm Socket warned. According to Cointelegraph, Socket explained in a report released yesterday via its official blog, "Attackers uploaded malicious packages to developer package libraries such as npm and PyPI. Developers who download and install these packages become infected with 'TrapDoor' malware. This malware is an information-stealing infostealer, which can lead to asset damage as the victim's cryptocurrency wallets (such as MetaMask, Phantom), SSH keys, GitHub tokens, etc., are stolen."
