Close Menu
Altcoin ObserverAltcoin Observer
  • Regulation
  • Bitcoin
  • Altcoins
  • Market
  • Analysis
  • DeFi
  • Security
  • Ethereum
Categories
  • Altcoins (3,595)
  • Analysis (3,700)
  • Bitcoin (4,325)
  • Blockchain (2,157)
  • DeFi (2,623)
  • Ethereum (2,758)
  • Event (119)
  • Exclusive Deep Dive (1)
  • Landscape Ads (2)
  • Market (2,714)
  • Press Releases (12)
  • Reddit (2,847)
  • Regulation (2,474)
  • Security (4,003)
  • Thought Leadership (3)
  • Videos (44)
Hand picked
  • Ondo brings 430 tokenized stocks and ETFs to Uniswap
  • Paribu, Turkey’s leading digital assets platform, expands its platform to DeFi, yield and stocks
  • MetaMask Money Account: Earn 4% Returns and Spend via Mastercard
  • Polygon Burns Reached 107 Million POL This Year – So Why Is Its Price Dropping?
  • Can Ethereum Hold $1,500 Support as End-of-Quarter Selloff Adds Pressure?
We are social
  • Facebook
  • Twitter
  • Instagram
  • YouTube
Facebook X (Twitter) Instagram
  • About us
  • Disclaimer
  • Terms of service
  • Privacy policy
  • Contact us
Facebook X (Twitter) Instagram YouTube LinkedIn
Altcoin ObserverAltcoin Observer
  • Regulation
  • Bitcoin
  • Altcoins
  • Market
  • Analysis
  • DeFi
  • Security
  • Ethereum
Events
Altcoin ObserverAltcoin Observer
Home»Blockchain»Solana’s PyPI Library Users Steal Blockchain Wallet Keys
Blockchain

Solana’s PyPI Library Users Steal Blockchain Wallet Keys

August 14, 2024No Comments
Share Facebook Twitter Pinterest LinkedIn Tumblr Reddit Telegram Email
Python.jpg
Share
Facebook Twitter LinkedIn Pinterest Email


August 11, 2024Ravie LakshmananSupply Chain and Software Security

PyPI Library Not Allowed

Cybersecurity researchers have discovered a new malicious package on the Python Package Index (PyPI) repository that masquerades as a library for the Solana blockchain platform but is actually designed to steal victims’ secrets.

“The legitimate Solana Python API project is known as ‘solana-py’ on GitHub, but simply ‘solana’ on the Python software registry, PyPI,” Sonatype researcher Ax Sharma said in a report published last week. “This slight name difference was exploited by a malicious actor who published a ‘solana-py’ project on PyPI.”

The malicious package “solana-py” has attracted a total of 1,122 downloads since its release on August 4, 2024. It is no longer available for download on PyPI.

Cybersecurity

The most striking aspect of the library is that it had version numbers 0.34.3, 0.34.4, and 0.34.5. The latest version of the legitimate “solana” package is 0.34.3. This clearly indicates an attempt by the malicious actor to trick users searching for “solana” into inadvertently downloading “solana-py” instead.

Additionally, the malicious package borrows the real code from its counterpart, but injects additional code into the “__init__.py” script that is responsible for collecting Solana blockchain wallet keys from the system.

This information is then exfiltrated to a Hugging Face Spaces domain operated by the threat actor (“treeprime-gen.hf(.)space”), once again highlighting how threat actors abuse legitimate services for malicious purposes.

The attack campaign poses a risk to the supply chain as Sonatype’s investigation revealed that legitimate libraries like “solders” reference “solana-py” in their PyPI documentation, leading to a scenario where developers could have mistakenly downloaded “solana-py” from PyPI and expanded the attack surface.

“In other words, if a developer using the legitimate PyPI package “solders” in their application is misled (by the solders documentation) into falling for the typosquatted “solana-py” project, they would inadvertently introduce a crypto stealer into their application,” Sharma explained.

Cybersecurity

“This would steal not only their secrets, but also those of any user running the developer’s app.”

The revelation comes as Phylum said it had identified hundreds of thousands of spammy npm packages on the registry containing markers of Tea protocol abuse, a campaign that was first revealed in April 2024.

“The Tea Protocol project is taking steps to address this issue,” the supply chain security firm said. “It would be unfair for legitimate Tea Protocol participants to see their compensation reduced because others are scamming the system. Additionally, npm has started to remove some of these spammers, but the removal rate does not match the new release rate.”

Did you find this article interesting? Follow us on Twitter  and LinkedIn to read more of the exclusive content we publish.





Source link

Share. Facebook Twitter Pinterest LinkedIn Tumblr Email
Previous ArticleAre ETH Bulls Preparing for a 100% Surge?
Next Article Coinbase Urges SEC to Reconsider Rule Change That Brings DeFi Under Its Jurisdiction: CNBC Crypto World

Related Posts

Blockchain

Japanese securities giant to issue $65 million worth of XRP-paying blockchain bonds – DL News

February 23, 2026
Blockchain

What is the .brave Blockchain domain and how it works

February 22, 2026
Blockchain

Why President Trump’s latest crypto scandal could be a disaster for the blockchain industry

February 22, 2026
Add A Comment
Leave A Reply Cancel Reply

Single Page Post
Share
  • Facebook
  • Twitter
  • Instagram
  • YouTube
Featured Content
Event

Dutch Blockchain Week 2026 strengthens position as Europe’s leading B2B blockchain event week

April 14, 2026

Amsterdam, April 2026 – Dutch Blockchain Week 2026 is rapidly evolving into one of Europe’s…

Event

Global Games Show Riyadh: The Ultimate Creator & Influencer Hub

March 31, 2026

The fast-evolving gaming ecosystem of Riyadh is powered by solid national investment, a flourishing esports…

1 2 3 … 82 Next
  • Facebook
  • Twitter
  • Instagram
  • YouTube

Polygon Burns Reached 107 Million POL This Year – So Why Is Its Price Dropping?

July 1, 2026

Bitcoin ETF Inflows Collapse After April Peak: $107 Billion Leaves US Crypto Products

July 1, 2026

Hyperliquid: Can Retail Demand Push HYPE to $70 Despite Whale Sales of $5.18 Million?

July 1, 2026
Facebook X (Twitter) Instagram LinkedIn
  • About us
  • Disclaimer
  • Terms of service
  • Privacy policy
  • Contact us
© 2026 Altcoin Observer. all rights reserved by Tech Team.

Type above and press Enter to search. Press Esc to cancel.

bitcoin
Bitcoin (BTC) $ 60,074.00
ethereum
Ethereum (ETH) $ 1,618.13
tether
Tether (USDT) $ 0.999001
bnb
BNB (BNB) $ 554.35
usd-coin
USDC (USDC) $ 0.999645
xrp
XRP (XRP) $ 1.06
solana
Solana (SOL) $ 77.20
tron
TRON (TRX) $ 0.317542
figure-heloc
Figure Heloc (FIGR_HELOC) $ 1.01
staked-ether
Lido Staked Ether (STETH) $ 2,265.05