A social engineering attack disguised as a freelance NFT staking project. The zip file contained a typosquatted npm package (pretie_x1) that drops a multi-stage, AES-encrypted info-stealer targeting browser credentials, crypto wallets, SSH keys, and OS login passwords.
No comments yet. Log in to reply on the Fediverse. Comments will appear here.