Close Menu
Cryprovideos
    What's Hot

    Binance, Changpeng Zhao Sued for $200M by British Traders: Reuters – Decrypt

    July 1, 2026

    Has Technique’s New Framework Defused STRC ‘Demise Spiral’ Fears?

    July 1, 2026

    U.S. senators search to dam overseas adversaries from AI expertise in new invoice

    July 1, 2026
    Facebook X (Twitter) Instagram
    Cryprovideos
    • Home
    • Crypto News
    • Bitcoin
    • Altcoins
    • Markets
    Cryprovideos
    Home»Altcoins»Solana PumpFun Bot Turns Out to Be Malware in Disguise
    Solana PumpFun Bot Turns Out to Be Malware in Disguise
    Altcoins

    Solana PumpFun Bot Turns Out to Be Malware in Disguise

    By Crypto EditorJuly 5, 2025No Comments2 Mins Read
    Share
    Facebook Twitter LinkedIn Pinterest Email


    A malicious open-source venture on GitHub disguised as a Solana buying and selling bot has compromised person wallets, in accordance with a July 2, 2025, report by cybersecurity agency SlowMist.

    The venture, referred to as “solana-pumpfun-bot”, was printed underneath the GitHub person zldp2002 and shortly gained traction in the neighborhood. However as a substitute of providing actual performance, the bot silently stole cryptocurrencies from customers’ wallets and funneled the funds to a platform referred to as FixedFloat.

    Pretend Bundle, Actual Injury

    SlowMist’s investigation revealed that the bot was constructed with Node.js and used a shady dependency named “crypto-layout-utils”, which isn’t listed in official NPM repositories. As soon as put in, this bundle silently scanned for personal keys and pockets recordsdata on the person’s machine and despatched them to an attacker-controlled server, githubshadow.xyz.

    The malware’s code was closely obfuscated, making it tough to detect. The attacker additionally forked the venture a number of instances utilizing pretend GitHub accounts, amplifying publicity. A few of these forks used an alternate malicious bundle, “bs58-encrypt-utils-1.0.3”.

    Assault Energetic Since Mid-June

    The assault seems to have been energetic since June 12, 2025, and was solely found after a sufferer contacted SlowMist a day after putting in the venture. Publish-exploit on-chain evaluation utilizing SlowMist’s MistTrack software confirmed the stolen funds have been routed to FixedFloat.

    Skilled Warning

    SlowMist strongly cautioned towards working GitHub-based open-source software program that interacts with wallets or non-public keys until completed in a extremely remoted atmosphere. The agency recommends avoiding suspicious or unverified packages, particularly in crypto bot frameworks and automation instruments.

    The case underscores the rising danger of social engineering and dependency hijacking in open-source crypto growth — and the significance of verifying each part earlier than execution.

    Solana PumpFun Bot Turns Out to Be Malware in Disguise
    Twitter

    Linkedin

    Kosta has been working within the crypto business for over 4 years. He strives to current completely different views on a given subject and enjoys the sector for its transparency and dynamism. In his work, he focuses on balanced protection of occasions and developments within the crypto house, offering data to his readers from a impartial perspective.

    Telegram



    Supply hyperlink

    Share. Facebook Twitter Pinterest LinkedIn Tumblr Email

    Related Posts

    MicroStrategy’s New Bitcoin Sale Authorization Places Altcoin Merchants On Edge

    June 30, 2026

    Bitcoin Open Curiosity Halves Whereas XRP Derivatives Lastly Go Quiet

    June 30, 2026

    Cardano Founder Hoskinson Defends ADA Management as Governance Shift Nears Now

    June 30, 2026

    Whales Rotate Again To Bitcoin And Ethereum As Altcoin Danger Cools

    June 30, 2026
    Latest Posts

    MicroStrategy’s New Bitcoin Sale Authorization Places Altcoin Merchants On Edge

    June 30, 2026

    'Solely the First Spherical': Legendary Dealer Peter Brandt Reacts to Potential $1.25 Billion Bitcoin Sale – U.At this time

    June 30, 2026

    President Trump Discloses Extra Than $50 Million In Bitcoin

    June 30, 2026

    Trump Discloses Over $1.2 Billion in Crypto Earnings, $50M in Bitcoin Holdings – Decrypt

    June 30, 2026

    Bitcoin Will ‘Probably Backside Beneath’ Its $53,000 Realized Value This Bear Market

    June 30, 2026

    Bitcoin Open Curiosity Halves Whereas XRP Derivatives Lastly Go Quiet

    June 30, 2026

    Supreme Courtroom Fed Ruling Places Central Financial institution Independence Again In Bitcoin’s Macro Body

    June 30, 2026

    High 5 Altcoins for July 2026 as Bitcoin Drops 20%

    June 30, 2026

    CryptoVideos.net is your premier destination for all things cryptocurrency. Our platform provides the latest updates in crypto news, expert price analysis, and valuable insights from top crypto influencers to keep you informed and ahead in the fast-paced world of digital assets. Whether you’re an experienced trader, investor, or just starting in the crypto space, our comprehensive collection of videos and articles covers trending topics, market forecasts, blockchain technology, and more. We aim to simplify complex market movements and provide a trustworthy, user-friendly resource for anyone looking to deepen their understanding of the crypto industry. Stay tuned to CryptoVideos.net to make informed decisions and keep up with emerging trends in the world of cryptocurrency.

    Top Insights

    Probably the most insightful prediction I’ve discovered for the crypto business in 2025.

    March 13, 2025

    US Senators Push Regulators for Clear Crypto Capital Guidelines

    June 5, 2026

    Faux Ledger App Steals Thousands and thousands in Bitcoin, Crypto From Holders—Together with Musician G. Love – Decrypt

    April 15, 2026

    Subscribe to Updates

    Get the latest creative news from FooBar about art, design and business.

    • Home
    • Privacy Policy
    • Contact us
    © 2026 CryptoVideos. Designed by MAXBIT.

    Type above and press Enter to search. Press Esc to cancel.