Trapdoor
Coverage of Trapdoor in the Nexus archive.
- Solana, Sui and Aptos wallet data targeted in TrapDoor package attack
The TrapDoor package attack targeted wallet data from Solana, Sui, and Aptos. The attack exploited vulnerabilities in these blockchain platforms' systems.
- ‘TrapDoor’ malware targets crypto dev tools in supply chain attack
A campaign named 'TrapDoor' is using malicious packages to target cryptocurrency development tools in a supply chain attack, aiming to steal crypto assets by injecting hidden instructions that hijack popular AI coding assistants. Socket has reported this threat, highlighting the exploitation of AI tools to facilitate the theft.
- TrapDoor Supply Chain Attack Spreads Credential-Stealing Malware via npm, PyPI, and CratesIO
A coordinated cross-ecosystem supply chain attack named TrapDoor has distributed credential-stealing malware through npm, PyPI, and Crates.io, involving over 34 malicious packages across 384 versions. The campaign began on May 22, 2026, with packages published in waves from a cluster of sources.
- Trapdoor Android Ad Fraud Scheme Hit 659 Million Daily Bid Requests Using 455 Apps
Cybersecurity researchers disclosed a new ad fraud operation called Trapdoor targeting Android users, involving 455 malicious apps and 183 command-and-control domains. The scheme hit 659 million daily bid requests. Trapdoor is a multi-stage fraud infrastructure.