Project Eleven has secured $20 million in Series A funding to develop post-quantum cryptographic solutions for digital assets and blockchain networks. The startup aims to help organizations migrate securely to quantum-resistant cryptography amidst growing quantum threats. #PostQuantumCryptography #QuantumThreats…
Tag: BLOCKCHAIN
DeadLock is a ransomware operation that exploits Polygon blockchain smart contracts to manage proxy server addresses, showcasing a novel and resilient command-and-control technique. Its use of decentralized blockchain technology presents new challenges for cybersecurity defenses and indicates a potential trend in blockchain abuse by cybercriminals. #DeadLock #Polygon #BlockchainAbuse…
CloudSEK STRIKE’s HUMINT uncovered a false-flag campaign by an actor using the alias “RedLineCyber” who distributes a PyInstaller-packed clipboard hijacker via Discord and Telegram, targeting cryptocurrency streamers and gambling communities. The malware, distributed as Pro.exe (also peeek.exe), monitors the Windows clipboard and silently replaces copied crypto addresses with attacker-controlled wallets for six cryptocurrencies while persisting via an HKCU Run key. #RedLineCyber #Pro.exe
A new wave of GoBruteforcer attacks targets cryptocurrency and blockchain project databases to build botnets for brute-forcing various Linux server services. These campaigns exploit weak defaults, legacy web stacks, and misconfigured servers to infect hosts and facilitate cybercriminal activities such as blockchain balance querying. #GoBruteforcer #LinuxServers…
![Cybersecurity News | Daily Recap [09 Jan 2026]](https://www.hendryadrian.com/tweet/image/DailyRecap.png "Cybersecurity News | Daily Recap [09 Jan 2026]")
Daily Recap, UK unveils a new national cyber action plan to close public-sector gaps and strengthen defenses across government, while the US signals broad diplomatic shifts by exiting global cyber coalitions and dozens of international treaties. In industry and innovation, CrowdStrike will buy identity-security firm SGNL for $740 million to expand identity threat coverage, Blackbird.AI raises 28 million to grow its narrative-intelligence platform and analytics, and OpenAI launches ChatGPT Health with isolated, encrypted controls for sensitive health data to support HIPAA-style protections. #UKCyberPlan #USExit #CrowdStrike #SGNL #BlackbirdAI #OpenAIHealth #AgenticAI #ChromeExtensions #jsPDF #n8n #CiscoISE #MFA #Taiwan #China #Iberia #Prosura #MicrosoftExchangeOnline #GoBruteforcer #RustFS
A major cryptocurrency theft occurred on the Truebit platform, with hackers stealing over $26 million worth of ETH. The incident highlights the ongoing evolution and professionalization of crypto crime, involving large-scale illicit on-chain infrastructure. #TruebitHack #NorthKorea #Huione #CryptoLaundering…
GoBruteforcer is a modular Go-based botnet that brute-forces FTP, MySQL, PostgreSQL and phpMyAdmin credentials to compromise Linux servers and recruit them as scanning and brute-force nodes. The 2025 variant adds an obfuscated Go IRC bot, downloader modules, process-masking and cron persistence, and has been observed targeting crypto project databases and legacy stacks like XAMPP that expose weak defaults #GoBruteforcer #XAMPP
A new wave of GoBruteforcer botnet malware is targeting exposed databases of cryptocurrency and blockchain projects, exploiting weak server configurations often generated by AI. The malware relies on brute-force attacks on FTP, MySQL, and phpMyAdmin services, mainly compromising Linux servers using default credentials. #GoBruteforcer #AIgeneratedConfigurations
December 2025 closed with multiple high-impact disclosures and incidents, including the unauthenticated React2Shell RCE (CVE-2025-55182), the resurfacing of the BRICKSTORM backdoor, widespread MongoBleed data exposure (CVE-2025-14847), and a novel EtherRAT campaign using Ethereum smart contracts for C2. Organizations were urged to patch vulnerable software, audit and segment MongoDB deployments, apply published IOCs and detections from NSA/CISA and Sysdig, and strengthen visibility and resilience heading into 2026. #React2Shell #BRICKSTORM
Ledger has notified customers about a data breach affecting personal information due to a third-party payment processor, Global-e. The incident exposed customer names and contact details, but did not compromise financial or cryptocurrency wallet information. #Globale #LedgerDataBreach
Ilya Lichtenstein, involved in the 2016 Bitfinex hack, has been released early from prison under the First Step Act. He plans to contribute positively to cybersecurity, despite his past criminal activities. #BitfinexHack #CryptocurrencyTheft…
A security firm SlowMist identified a critical vulnerability at HitBTC Exchange but received no response after responsible disclosure attempts. This incident reflects ongoing concerns about transparency and security in the cryptocurrency trading sector. #HitBTC #SlowMist #Vulnerability #CryptocurrencySecurity…
Cryptocurrency thefts linked to the 2022 LastPass breach have been traced through blockchain analysis, revealing a prolonged campaign of wallet draining and money laundering via Russian exchanges. The investigation highlights the involvement of Russian cybercriminal groups and the sophisticated use of privacy techniques like CoinJoin. #LastPassBreach #TRMLabs #RussianCybercrime #CoinJoin
The latest wave of the GlassWorm campaign targets macOS developers with malicious VSCode extensions, aiming to steal credentials and cryptocurrency wallet data. Despite increased defenses, the malware has re-emerged, now using advanced encryption and targeting hardware wallets. #GlassWorm #VSCodeExtensions
The beginning of 2026 reveals a landscape of subtle and targeted cyber threats, with hackers evolving their tactics even during holidays. Key incidents include malware scams, exploitation campaigns, and backdoored devices, highlighting the increasing sophistication of cyber adversaries. #KMSAuto #ColdFusionExploitation…