Malicious - Свежие новости [ Фото в новостях ] | |
How browser extensions expose crypto to a fatal design flaw the industry ignored, bleeding $713M in 2025
Trust Wallet's Chrome extension shipped a malicious update in December, exfiltrating wallet data and draining roughly $7 million from hundreds of accounts before the company pushed a fix. The compromised version 2. дальше »
2025-12-28 17:35 | |
|
North Korean Hackers Weaponize Blockchain in New ‘EtherHiding’ Campaign
EtherHiding uses smart contracts to store and distribute malicious code, making it nearly impossible to remove due to the blockchain’s immutable design. The post North Korean Hackers Weaponize Blockchain in New ‘EtherHiding’ Campaign appeared first on BeInCrypto. дальше »
2025-10-19 22:55 | |
|
|
BNB Chain X account compromised, promotes fake airdrops
The official X account of BNB Chain has been compromised, with Binance co-founder and former CEO Changpeng ‘CZ’ Zhao confirming the breach. CZ said in a post on Wednesday morning that a malicious actor had compromised the BNB Chain’s X account, with the hacker publishing a series of posts with links to phishing websites. Amid […] дальше »
2025-10-1 10:47 | |
|
|
Crypto scammers tried to bribe X employees to reinstate suspended accounts
Crypto scammers and other malicious actors ran a bribery network that targeted employees of the social media network X, with the goal of having suspended accounts reinstated, X said Friday. X noted that it was taking strong action after exposing… дальше »
2025-9-20 23:01 | |
|
|
Ledger CTO Warns of Billion-Download NPM Supply Chain Attack, All Solana Ecosystem Responds
Ledger CTO Charles Guillemet has sounded the alarm on a major supply chain attack targeting the JavaScript ecosystem. The exploit comes after a reputable developer’s NPM account was compromised, pushing malicious code into widely used packages with over 1 billion downloads. дальше »
2025-9-9 00:58 | |
|
|
Bad actors are using Ethereum smart contracts to deploy malware: ReversingLabs
Bad actors have started using Ethereum smart contracts to deploy malicious software and code, and are therefore able to bypass traditional security scans using this novel technique. Researchers at ReversingLabs have flagged a new open-source malware that has been deployed… дальше »
2025-9-4 11:22 | |
|
|
Crypto scam group GreedyBear steals over $1m using fake extensions and malware
A group of cryptocurrency threat actors dubbed “GreedyBear” has stolen over $1 million in what researchers describe as an industrial-scale campaign spanning malicious browser extensions, malware, and scam websites. дальше »
2025-8-8 10:59 | |
|
|
Fake Aave ads top Google top search results again, targets investors with phishing links
A fresh wave of fake Aave ads has surfaced at the top of Google search results, pushing a phishing site designed to trick users into signing malicious transactions that drain their crypto wallets. Blockchain security firm PeckShield Alert flagged the… дальше »
2025-8-7 15:10 | |
|
|
Malicious crypto trading bots siphon over $900k via aged YouTube accounts
A network of crypto scammers is leveraging aged YouTube accounts to push trading bots that lure users into deploying malicious smart contracts capable of draining their wallets. Sounding the alarm on this “widespread and ongoing” threat, senior threat researcher Alex… дальше »
2025-8-7 11:20 | |
|
|
$908K USDC stolen, 458 days after approval: 'Your wallet security matters!'
Key Takeaways A user lost nearly $1 million in USDC to a scam tied to a malicious contract signed 458 days earlier. Experts warn that this delayed exploit trend is becoming a go-to strategy for cryptThe post $908K USDC stolen, 458 days after approval: 'Your wallet security matters!' appeared first on AMBCrypto. дальше »
2025-8-4 01:00 | |
|
|
GMGN co-founder promises compensation for victims of MEV attacks under new security measures
GMGN is offering users who suffer sandwich attacks under the platform’s new MEV protection feature can receive compensation for losses. In a recent post, GMGN co-founder Haze highlighted the increase in malicious attacks on the platform due to Maximal Extractable… дальше »
2025-7-10 11:05 | |
|
|
US sanctions network aiding North Korean IT workers in targeting crypto companies
Continuing its crackdown on North Korea’s efforts to infiltrate U. S. companies, the Treasury Department has sanctioned two individuals and four entities for aiding malicious IT workers in infiltrating crypto firms. дальше »
2025-7-9 09:40 | |
|
|
Malicious Firefox extensions mimic MetaMask, Coinbase to steal crypto
The malicious extensions are still live on Firefox web store. дальше »
2025-7-4 12:20 | |
|
|
Circle’s ‘compliant’ USDC is the go-to for DPRK hackers: ZachXBT
On-chain investigator ZachXBT has raised concerns over USDC stablecoin issuer Circle’s compliance standards and its growing use among malicious actors. According to ZachXBT, North Korean IT workers have been using USDC (USDC) to move millions in illicit payments. The on-chain… дальше »
2025-7-1 12:55 | |
|
|
Trezor issues security alert after contact form exploit used in phishing scam
Crypto hardware wallet provider Trezor has issued a security caution to its users, warning of a new tactic being used by malicious actors to impersonate the company and phish for sensitive information. In a post on June 23 via social… дальше »
2025-6-23 16:01 | |
|
|
Hacken bridge exploited for $250k HAI token following private key leak
Blockchain security auditor Hacken has confirmed a major exploit involving unauthorized HAI token minting on Ethereum and BNB Chain. On June 21, a compromised private key allowed a malicious actor to mint 900 million HAI tokens, which were subsequently dumped… дальше »
2025-6-23 09:08 | |
|
|
CZ warns of AI deepfakes as more execs fall victim to Lazarus-linked zoom hacks
Malicious actors are targeting crypto executives through a new wave of AI-powered deepfake impersonation attacks, and Binance’s Changpeng Zhao (CZ) has joined the chorus of warnings. Commenting on the recent reports of a Zoom-based hacking scheme targeting industry figures, the… дальше »
2025-6-20 16:51 | |
|
|
Ethereum’s Pectra upgrade facing mounting exploit concerns
Concerns continue to mount over Ethereum’s latest protocol upgrade as security risks attract malicious actors aiming to drain user wallets. The Ethereum Improvement Proposal EIP-7702, part of the Pectra upgrade introduced earlier this year, is drawing scrutiny across the crypto… дальше »
2025-6-2 15:47 | |
|
|
Ethereum Pectra Upgrade is Largely Benefitting Crypto Theft Gangs
Wintermute found that 97% of delegated contracts using Ethereum’s EIP-7702 feature were tied to malicious activity, streamlining the transfer of ETH from wallets with leaked private keys. The post Ethereum Pectra Upgrade is Largely Benefitting Crypto Theft Gangs appeared first on BeInCrypto. дальше »
2025-6-1 19:22 | |
|
|
Curve DAO (CRV) price drops as Curve Finance battles DNS attack
Curve Finance DNS hijack redirected users to a malicious clone site. CRV price has slid about 7. 7% as investors panicked and dumped tokens. Curve Finance plans migration from DNS to ENS to enhance front-end security. дальше »
2025-5-13 15:18 | |
|
|
ZKsync X accounts hacked to promote fake SEC warnings and malicious airdrop
Hackers took over the official X accounts of ZKsync and developer Matter Labs to spread fake SEC warnings and promote a phishing airdrop. According to the latest update posted on May 13 from the main ZKsync account, the team said… дальше »
2025-5-13 11:06 | |
|
|
Curve Finance battles DNS hijack days after X account breach
Curve Finance has warned users not to interact with its website after a domain name system hijack redirected users to a malicious clone designed to drain wallets. On May 12, the DeFi platform issued a warning on X, alerting users… дальше »
2025-5-13 10:46 | |
|
|
Malicious Actors are Targeting Atomic and Exodus Wallet Users
Security experts warn that the rise in software supply chain attacks signals broader risks for the crypto industry and beyond. The post Malicious Actors are Targeting Atomic and Exodus Wallet Users appeared first on BeInCrypto. дальше »
2025-4-14 20:30 | |
|
|
Hackers hide crypto address-swapping malware in Microsoft Office add-in bundles
Malicious actors are attempting to steal crypto with malware embedded in fake Microsoft Office extensions uploaded to the software hosting site SourceForge, according to cybersecurity firm Kaspersky. дальше »
2025-4-9 05:04 | |
|
|
Hyperliquid Delists $JELLY, Potentially Causing $900K in Losses. Here’s Why Best Wallet Token Can 100x
The crypto community was just recovering from the aftermath of the Bybit hack, which saw North Korean hackers loot $1. 3B from the exchange’s cold storage, and now we’ve had yet another sensational malicious activity. дальше »
2025-3-30 16:26 | |
|
|
MOVE eyes 65% rally as $32m buyback plan sparks whale accumulation
MOVE soared to a 2-month high as it parted ways with a malicious market maker, which triggered a renewed interest among whales. According to data from crypto.news, Movement (MOVE) surged 32% to an intraday high of $0.594 on March 26… дальше »
2025-3-26 13:06 | |
|
|
AiXBT agent scammed into sending 55.50 ETH to malicious account, token falls 20%
AiXBT, a popular AI-driven crypto market commentator, fell victim to a security breach on Mar. 18, resulting in a loss of 55.50 ETH or approximately $104,000. An attacker tricked AiXBT’s AI agent into carrying out the transfer by gaining access… дальше »
2025-3-19 07:03 | |
|
|
Lazarus infects hundreds software developers, targeting Solana and Exodus crypto wallets
A new Lazarus campaign is spreading through npm packages, using BeaverTail malware to steal credentials, exfiltrate cryptocurrency data, and deploy a persistent backdoor. North Korea‘s Lazarus Group has planted six malicious packages in npm, targeting developers and cryptocurrency users, a… дальше »
2025-3-13 12:00 | |
|
|
Bitcoin restaking: programmable slashing and enhanced security
Programmable slashing deters malicious acts in shared security blockchain models. SatLayer enables custom slashing rules for diverse decentralized applications. Bitcoin restaking enhances security while offering flexible incentive structures. дальше »
2025-3-5 13:31 | |
|
|
The GitVenom Crypto-Stealing Scheme: Hackers Use Phony GitHub Projects to Steal Your Crypto
Key Takeaways: “GitVenom” exploits fake GitHub repositories embedded with malware to target cryptocurrency users. Cyber attackers are leveraging AI-driven deception tactics to trick users into downloading malicious software disguised as The post The GitVenom Crypto-Stealing Scheme: Hackers Use Phony GitHub Projects to Steal Your Crypto appeared first on CryptoNinjas. дальше »
2025-2-28 14:27 | |
|
|
North Korea’s Lazarus Group now using crypto gifts to breach security defenses
The North Korean-linked Lazarus Group has adopted a new method of breaching crypto firms: sending cryptocurrency to their targets as part of an elaborate social engineering scheme. According to 23pds, the pseudonymous Chief Information Security Officer (CISO) at Web3 security firm SlowMist, this tactic aims to gain the victim’s trust before deploying malicious code. дальше »
2025-2-22 02:00 | |
|
|
Crypto scammers net over $9B in 2024 as AI supercharges fraud
Malicious actors stole roughly $9. 9 billion from the crypto ecosystem last year — the lowest amount since 2021, according to a recent Chainalysis report. The firm added that the figure is expected to rise to $12. дальше »
2025-2-15 04:30 | |
|
|
Four.Meme hit by malicious attack, leading to $183K loss
Four.Meme has suffered a malicious attack, leading to a $183K loss and the temporary suspension of its token liquidity pool on PancakeSwap. Four.Meme, the Binance Smart Chain-based memecoin launch platform, has recently announced that it was hit by a malicious… дальше »
2025-2-11 13:43 | |
|
|
How scam tokens are cashing in on DeepSeek AI’s viral moment
Ever since China’s DeepSeek made headlines by emerging as a potential challenge to the US’s AI dominance, malicious crypto tokens using the “DeepSeek” name have surged to cash in on the AI platform’s popularity. дальше »
2025-1-29 06:00 | |
|
|
Cybersecurity firm CrowdStrike warns of fake job offers spreading XMRig miner
CrowdStrike has warned of a new phishing campaign that mimics its recruitment process to deliver the Monero miner via a fake application download. Global cybersecurity provider CrowdStrike has identified a phishing campaign exploiting its recruitment emails to distribute a malicious… дальше »
2025-1-10 14:15 | |
|
|
Victim loses $520k in LINK to fake bridge website: Scam sniffer
A crypto holder lost more than half a million dollars after signing a malicious transaction on a fake cross-chain bridge. Web3 security platform Scam Sniffer reported the incident on Jan.6, posting on X that the victim lost more than $520,000… дальше »
2025-1-7 00:24 | |
|
|
Crypto scammers use fake job interviews to enable backdoor malware attacks
A sophisticated attack is targeting web3 professionals, tricking them into running malicious code on their systems during fake interviews as part of a lucrative offer from crypto scammers disguised as recruiters. дальше »
2024-12-30 10:40 | |
|
|
Pudgy Penguins NFT users targeted by malicious Google ad campaign
A sophisticated phishing campaign has been uncovered, targeting users of the Pudgy Penguins NFT project through malicious Google Ads. The attack uses advanced mechanisms to exploit vulnerabilities in Web3 wallets and ad networks, exposing unsuspecting users to significant risks. дальше »
2024-12-27 13:52 | |
|
|
Scam Sniffer: Malicious Google ad campaign redirects crypto users to fake Pudgy Penguins website
Blockchain security experts have uncovered a new scam using malicious Google ads to trick crypto users into visiting a fake Pudgy Penguins website. A new scam targeting crypto users has been uncovered, with analysts at blockchain security firm Scam Sniffer… дальше »
2024-12-26 12:48 | |
|
|