Nov 25, 01:57 PM

Malicious 'aiocpa' Python Library Trojan Horse Exfiltrates Private Keys to Telegram Bot, 12,100 Downloads

A malicious update in the Python package 'aiocpa', hosted on the Python Package Index (PyPI), has been identified as a Trojan horse that targets private keys. This update was linked to the developers of the Crypto Pay API client and has reportedly been downloaded 12,100 times. The malicious code exfiltrates sensitive data to a Telegram bot, raising significant concerns in the cybersecurity community. Experts are warning users who have downloaded the package to take immediate action to secure their wallets and private keys, as the update poses a serious risk to cryptocurrency security.

#Python #Python Package Index #Trojan #Crypto Pay API #Telegram

Written with ChatGPT (GPT-4o mini).

Sources

Nicolas Krassas@Dinosn
1 year ago
PyPI Python Library "aiocpa" Found Exfiltrating Crypto Keys via Telegram Bot https://t.co/xI4o8o6Ulp
Infosec Alevski 💻🕵️‍♂️@Alevskey
1 year ago
PyPI Python Library "aiocpa" Found Exfiltrating Crypto Keys via Telegram Bot: https://t.co/uzsYzu25hN by The Hacker News #infosec #cybersecurity #technology #news
The Hacker News@TheHackersNews
1 year ago
🔒 12,100 downloads, but the "aiocpa" PyPI package was a Trojan horse! The developers behind the Crypto Pay API client pushed a malicious update that silently exfiltrated data to a Telegram bot. Read the full story now — https://t.co/XOQiDF7SiD #infosec #cybersecurity

Malicious 'aiocpa' Python Library Trojan Horse Exfiltrates Private Keys to Telegram Bot, 12,100 Downloads

Sources

Additional media

Similar Stories