TI Mindmap HUB
Threat Intelligence Report

TrapDoor Crypto Stealer Supply Chain Attack Hits 34 Packages and Hundreds of Versions Across npm, PyPI, and Crates.io

πŸ“… May 24, 2026 πŸ“° socket.dev πŸ” 0 CVE(s) referenced

The TrapDoor supply chain attack is a sophisticated, cross-ecosystem campaign that weaponized over 34 malicious open source packages across npm, PyPI, and Crates.io to steal developer secrets, crypto wallets, cloud credentials, and moreβ€”while actively targeting AI-assisted workflows and leveraging persistent, multi-stage exfiltration techniques.

vendor

Sign in to access the full report including:
detailed analysis, IOCs, MITRE ATT&CK mapping, and STIX bundle.

πŸ” Sign In to Read Full Report

You'll need to accept our Terms of Service to access the platform.

πŸ“Š Visual Mindmap
🎯 IOC Extraction
βš”οΈ MITRE ATT&CK TTPs
πŸ“¦ STIX 2.1 Bundle