TrapDoor Supply Chain Attack Spreads Credential-Stealing Malware via npm, PyPI, and CratesIO
TrapDoor Supply Chain Attack Spreads Credential-Stealing Malware via npm, PyPI, and CratesIO
https://thehackernews.com/2026/05/trapdoor-supply-chain-attack-spreads.html
Publish Date: 2026-05-25 01:59:00
Source Domain: thehackernews.com
Summary of “A New Coordinated Cross-Ecosystem Software Supply Chain Attack Campaign Targets npm, PyPI, and Crates.io for Credential Theft”:
The article discusses a sophisticated software supply chain attack campaign, codenamed TrapDoor, targeting developers, particularly in crypto, DeFi, Solana, and AI ecosystems through npm, PyPI, and Crates.io. This extensive campaign comprises over 34 malicious packages within more than 384 versions. The malicious packages are devised to steal a wide array of developer-related secrets including crypto wallets, SSH keys, cloud credentials, and more. The attack employs several sophisticated mechanisms, such as postinstall hooks, JavaScript payloads during package imports, and Rust build scripts designed to execute malware across multiple platforms. A shared malicious payload, “trap-core.js,” aims to scan and validate AWS and GitHub tokens along with facilitating lateral movement and persistence with the help of Git hooks, cron, and SSH. The attack also involves hidden commands embedded in the.cursorrules and CLAUDE.md files, designed to trick AI assistants into revealing secrets. The operation underscores attackers’ evolving tactics in targeting developer workflows for broader exfiltration and deeper infiltration strategies.
Key Points:
- TrapDoor is an extensive malicious package-targeting campaign across npm, PyPI, and Crates.io, aiming to steal developer credentials.
- The attack leverages diverse delivery methods including postinstall hooks, JavaScript payloads, and malicious build.rs scripts.
- The primary objective extends to steal sensitive information such as crypto wallets, SSH keys, and cloud credentials.
- Attackers use hidden commands in .cursorrules and CLAUDE.md files to trick AI assistants into performing secret discovery and exfiltration.
- The operation highlights the broadening scope of software supply chain attacks, focusing on developer workflows for infiltration and exfiltration.
