A hacker stole approximately $223 million from the Cetus decentralized exchange on the Sui blockchain, with some funds already transferred out. The company responded by locking contracts and actively working to recover disputed funds, amidst ongoing debate about the exploit method. #CetusHack #SuiBlockchain…
Tag: BLOCKCHAIN
Killnet, a Russian hacker group known for pro-Kremlin attacks, has resurfaced with activities that may serve Russian propaganda efforts amid ongoing geopolitical tensions. Their shift from hacktivism to profit-driven cybercrime indicates a changing operational model and internal fragmentation. #Killnet #DeanonClub…
Cryptocurrency platforms like Coinbase are facing a surge in sophisticated social engineering scams, leading to massive financial losses and investigations into insider data leaks. These attacks employ advanced impersonation, phishing, and on-chain laundering techniques, highlighting the need for enhanced user awareness and platform defenses. #Coinbase #Chainflip…
Cybereason GSOC has identified a malware campaign involving Lummastealer that drops a malicious browser extension linked to the Genesis Market, a criminal marketplace selling stolen credentials. This extension targets multiple browsers to collect extensive user data which is then exfiltrated to attacker-controlled servers. #Lummastealer #GenesisMarket…
Datadog Security Research uncovered a campaign by the threat actor MUT-9332 distributing three malicious VS Code extensions—solaibot, among-eth, and blankebesxstnion—that target Solidity developers on Windows. These extensions deploy complex multi-stage malware, including a payload hidden inside an image file, to steal cryptocurrency wallet credentials and maintain persistence on victim systems. #MUT9332 #solaibot #myau
This cybersecurity update covers recent threats, vulnerabilities, and incidents targeting organizations worldwide, emphasizing the importance of resilience and swift action. It highlights developments involving tech giants, nation-state actors, and supply chain attacks affecting multiple systems and entities. #Microsoft #Coinbase #EarthAmmit #Konni #APT28…
When a YouTuber discovered malware infections in software for Procolored UV printers, an investigation revealed multiple malware threats embedded in official software downloads, including the XRed backdoor and a file-infector virus called SnipVex. The compromised software could spread infections through removable drives and network shares, affecting systems installing or using these printer drivers and utilities. #Procolored #XRed #SnipVex
An American-Israeli man, Osei Morrell, has been arrested in Israel for his alleged involvement in the Nomad bridge hack that resulted in the theft of $190 million. Law enforcement officials suspect he played a key role in money laundering and coordinating the exploit’s aftermath.Affected: Nomad Bridge, blockchain users, law enforcement agencies, cryptocurrency exchanges
A major online black market for crypto scammers and money laundering operations on Telegram has been shut down thanks to investigative efforts and platform bans. The marketplace facilitated over $27 billion in illicit transactions before its closure.Affected: Telegram, Huione Guarantee, Haowang Guarantee, Xinbi Guarantee, Tudou Guarantee, crypto scam operators, illicit financial…
Xinbi Guarantee is a Telegram-based black market marketplace facilitating over $8.4 billion in transactions since 2022, primarily using USDT stablecoin. The platform offers illicit services including technology tools, personal data, money laundering, and even criminal activities beyond cybercrime. Affected: Xinbi Guarantee, HuiOne Guarantee, blockchain and cryptocurrency systems, users engaging in illegal…
Cybersecurity experts have identified a malicious Python package, solana-token, on PyPI that aimed to steal source code and secrets from developers working on blockchain projects. Although removed from PyPI after 761 downloads, it highlights ongoing supply chain risks in cryptocurrency development. Affected: Developers, Blockchain systems, Software supply chains…
The article highlights the continued rise of software supply chain attacks targeting cryptocurrency projects, exemplified by a malicious PyPI package named solana-token that steals developer secrets and source code. These attacks specifically threaten blockchain development environments and cryptocurrency infrastructure, particularly impacting the Solana platform and its developer ecosystem. #Solana #PyPI
Silent Push Analysts have uncovered a sophisticated social media scam campaign exploiting Twitter’s URL display vulnerabilities to promote fake cryptocurrency presales impersonating Apple. The operation involves hijacked URLs, metadata manipulations, and a network of malicious domains to deceive users and steal funds.Affected: Twitter, User Accounts, Cryptocurrency Wallets…
The article analyzes a malware named NDA.pdf.msc created by the North Korean hacking group Kimsuky, disguised as a Non-Disclosure Agreement PDF file targeting organizations related
