TrapDoor malware targets crypto dev tools in supply chain attack

Key Questions

What is the TrapDoor malware attack targeting?

TrapDoor is a supply chain attack hitting npm, PyPI, and Crates.io with 34+ malicious packages. It steals wallet data, SSH keys, and can hijack AI assistants like Claude.

Who is most at risk from the TrapDoor attack?

Crypto, DeFi, and AI developers using affected tools are directly impacted. The malware spreads across 384 versions of malicious packages.

What makes TrapDoor a significant threat?

It represents an active supply chain compromise that can compromise developer environments and crypto projects. Security measures are essential for Web3 builders.

Active supply chain attack with 34+ malicious packages across npm, PyPI, Crates. Malware steals wallet data, SSH keys, and hijacks AI assistants (Claude/Cursor). Directly impacts crypto/DeFi/AI developers. Essential security alpha for Web3 builders.

Sources (2)

Updated May 26, 2026

Crypto Pulse

TrapDoor malware targets crypto dev tools in supply chain attack

Key Questions

What is the TrapDoor malware attack targeting?

Who is most at risk from the TrapDoor attack?

What makes TrapDoor a significant threat?

TrapDoor supply chain attack hits npm, PyPI, and Crates-io.

‘TrapDoor’ malware targets crypto dev tools in supply chain attack