A fraudulent GitHub repository, dubbed ‘solana-pumpfun-bot,’ was linked to stolen crypto credentials. It was created by user ‘zldp2002’ but removed after investigations by SlowMist, revealing the project’s malware that exploited unsuspecting victims.
The malicious bot utilized an obfuscated Node.js package, crypto-layout-utils, which has been eliminated from the NPM registry. This scam adds to the rising cases of software supply chain attacks targeting crypto users.
Leave a Reply