SlowMist, a famous international blockchain security and threat intelligence firm, is carefully shifting its attention toward cybersecurity, threat intelligence, and auditing for crypto and Web3 projects . The whole team is consistently tracking hacks, phishing campaigns, stolen funds, and software vulnerabilities across the crypto ecosystem.
? SlowMist TI Alert ?
— SlowMist (@SlowMist_Team) May 25, 2026
MistEye has detected a cross-registry supply chain attack targeting developers through malicious packages published to npm, PyPI, and https://t.co/sveq6UibkB . The campaign includes 34+ malicious packages and 384+ related versions. Targeted communities… pic.twitter.com/mHiycmQIj7
The basic purpose is to warn developers about malicious software packages that steal wallets, credentials, and sensitive data. SlowMist has its own unique system, called MistEye, which has successfully detected a cross-registry supply chain attack targeting developers. The core purpose of this system is to protect users from every possible side. SlowMist has announced this on its official X account.
SlowMist Warns Solana, Sui, and AI Developers About Malicious Software Packages
The attack reportedly involves 34+ malicious packages and 384+ versions published across major developer package registries such as npm, PyPI, and crates.io. The campaign particularly targets developers working in crypto, Decentralized Finance ( DeFi ), Solana development, Sui/move ecosystem, and Artificial Intelligence (AI) development. As the world is growing, the chances of scams and hacks are also increasing.
The attackers are also using advanced technologies to hack into various accounts and access other important and sensitive information. SlowMist warns these malicious packages may attempt to steal crypto wallet data, SSH keys, cloud credentials, GitHub and AWS tokens, browser data, environment variables, and developer secrets or private keys.
SlowMist Pushes for Immediate Protection of Wallets and Developer Systems amid Security Threat
The SlowMist advises developers to remove affected packages immediately, isolate impacted systems, preserve logs for investigation, rotate all exposed credentials and API keys, rebuild developer machines or CI runners from clean images, and review wallet, GitHub, SSH, and cloud account activity for suspicious behavior. The only purpose of this campaign is to protect users from any attack, which in return secure the platform’s place in the market.
Security, scalability, and transparency are the primary focus of users’ concern, and they are really in need of protecting their assets at any cost. This development is a strategic step toward the uplifting of users in terms of securing digital assets along with a proper, systematic, functional, and active system. This is the groundbreaking growth for users around the world. SlowMist ensures the security of at first priority and always remains vigilant for users’ help at any cost and never leaves users alone.
