A new malicious package named 'set-utils' was discovered in the Python Package Index, posing serious risks to Ethereum wallet users and developers. This package deceives users by appearing similar to legitimate libraries, manipulating account creation processes to extract private keys. It has achieved over 1,000 downloads since its launch on January 29, 2025. Targeted individuals include blockchain developers and DeFi projects, highlighting the critical nature of cybersecurity within the cryptocurrency ecosystem, particularly for Python-based wallet management tools.
A malicious package named 'set-utils' has been found in the Python Package Index, designed to steal Ethereum wallet private keys from developers.
The 'set-utils' package, which mimics trusted libraries, has been actively downloaded over 1,000 times since its January 29, 2025 appearance.
Collection
[
|
...
]