The Solidity Language open-source package was used in a $500,000 crypto heist
NetmanageIT OpenCTI - opencti.netmanageit.com
SUMMARY :
A malicious extension for the Solidity programming language in the Cursor AI IDE led to a $500,000 cryptocurrency theft. The fake extension, downloaded 54,000 times, appeared higher in search results than the legitimate one due to ranking algorithm factors. It installed malware that downloaded PowerShell scripts, installed remote management software, and deployed data-stealing payloads. The attackers obtained wallet passphrases and stole cryptocurrency. Similar malicious packages were found targeting blockchain developers. The incident highlights the ongoing threat of malicious open-source packages in the crypto industry and the need for caution when downloading tools from package repositories.
OPENCTI LABELS :
open-source,blockchain,cryptocurrency,data theft,developers,quasar,heur:trojan-psw.msil.purelogs.gen,vmdetector,solidity,cursor ai,malicious extension
Open in NetmanageIT OpenCTI Public Instance with below link!
Use public read only username and password on login page.
NOTE : Use Public READ only user credentials on login page banner.
The Solidity Language open-source package was used in a $500,000 crypto heist