Malware4 min read
TrapDoor Hits npm, PyPI, Crates.io—34 Packages Target AI Devs
Supply chain attack deploys 34 malicious packages across npm, PyPI, and Crates.io to steal crypto wallets, SSH keys, and developer credentials. AI assistants weaponized.
James RiveraMay 25, 2026