Cybersecurity Company: Malware Found in Python Package Index That Can Steal Cryptocurrency
ChainCatcher news, researchers from the cybersecurity company Checkmarx have issued a warning about a dangerous malware uploaded to the Python Package Index (PyPI) that steals private keys. According to the company, this malware was automatically uploaded by suspicious users through several different packages, designed to mimic decoding applications of popular wallets and other mainstream industry products like MetaMask, Atomic, TronLink, and Ronin.The malware is cleverly embedded in various parts of the packages. Since this malware appears to be harmless code, it is essentially undetectable. However, upon closer inspection, once an unsuspecting user calls specific functions embedded in the package, certain parts of the data will allow hackers to control cryptocurrency wallets and transfer funds.