La plateforme de développement Socket a identifié un logiciel malveillant baptisé TrapDoor qui vise les développeurs travaillant dans les domaines de la cryptomonnaie et de l'intelligence artificielle.
Ce logiciel malveillant se propage via les dépôts npm, PyPI et Crates. Il cherche à dérober les informations relatives aux portefeuilles de cryptomonnaies ainsi que les données de navigation des systèmes infectés.
Following earlier reports of direct attacks on OpenClaw AI agents, TechRadar warns that infostealers are now disguising themselves as Claude Code, OpenClaw, and other AI developer tools. Users should exercise caution with search engine results. Published March 18, 2026.
Rapporté par l'IA
Daemon Tools, a popular disk image mounting app, was compromised in a supply-chain attack starting April 8, delivering malware through official updates. Security firm Kaspersky reported infections on thousands of machines across over 100 countries. Users are urged to scan their systems immediately.