DogWifTools breached in supply-chain attack on cryptocurrency wallets

January 30, 2025

Cryptocurrency on Binance trading app, Bitcoin BTC with altcoin digital coin crypto currency, BNB, Ethereum, Dogecoin, Cardano, defi p2p decentralized fintech market

(Adobe Stock)

An unidentified threat actor has performed a supply-chain attack that compromised DogWifTools, a software used for launching and promoting meme coins on the Solana blockchain, and exfiltrated users' cryptocurrency wallets, BleepingComputer reports.

The attackers were able to access the project's private GitHub repository by reverse engineering the software and extracting a GitHub token. They then trojanized versions 1.6.3 through 1.6.6 of the platform, and injected a Remote Access Trojan into the legitimate builds. The embedded malware would then proceed to download a malicious file that attempted to extract users' private keys for their cryptocurrency wallets. Many users reported losing access to their wallets and cryptocurrency exchange accounts as a result of the incident, with estimated losses exceeding $10 million. Some community members speculated that DogWifTools was complicit in the attack, though no direct evidence supports these claims. The platform denied any involvement and pledged to strengthen security measures. Investigations are ongoing to identify the perpetrators.

SC Staff

Today’s columnist, Steve Wilson of Exabeam, explores the concept of “fair use” when it comes to AI data. (Adobe Stock)

AI/ML

Hugging Face compromised with malicious AI models

SC StaffFebruary 10, 2025

Both malicious packages resembling proof-of-concept models were not identified by Hugging Face's Picklescan security tool due to differences in compression format with PyTorch, as well as a security issue that prevented the proper scanning of Pickle files that could facilitate compromise, according to a report from ReversingLabs.

Breach

Third-party breach impacts Grubhub customer data

SC StaffFebruary 5, 2025

Such a third-party breach not only led to the exposure of individuals' names, phone numbers, and email addresses, but also the exfiltration of some customers' partial credit card details and legacy systems' hashed credentials, said Grubhub in a statement.

cyber crime assessment , security awareness , malware detection

Supply chain

Extensive software supply chain compromise possible with deserted AWS S3 buckets

SC StaffFebruary 5, 2025

Nearly 150 S3 buckets previously leveraged by cybersecurity firms, governments, Fortune 500 companies, and open source projects could be re-registered with the same AWS account name to facilitate executable and/or code injections in the deployment code/software update mechanism, according to an analysis from watchTowr Labs researchers.

Related Events

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

DogWifTools breached in supply-chain attack on cryptocurrency wallets

Related

Hugging Face compromised with malicious AI models

Third-party breach impacts Grubhub customer data

Extensive software supply chain compromise possible with deserted AWS S3 buckets

Related Events

The CISO Perspective: Supply Chain Resilience

How CISOs Manage Supply Chain Risk

Critical Connection: Strategies for Strengthening Supply Chain Defense

Get daily email updates