Radiant links $50 million crypto heist to North Korean hackers

December 9, 2024 at 03:29PM Radiant Capital attributed a $50 million cryptocurrency heist to North Korean hackers known as Citrine Sleet, following a cyberattack on October 16. The attack involved sophisticated malware evading security measures. Radiant is working with U.S. law enforcement to recover stolen funds and emphasizes the need for improved transaction security. **Meeting … Read more

Solana Web3.js library backdoored to steal secret, private keys

December 4, 2024 at 12:33PM The Solana JavaScript SDK was compromised in a supply chain attack, enabling the theft of cryptocurrency private keys through malicious code in versions 1.95.6 and 1.95.7 of the library. Developers are urged to update to version 1.95.8 and rotate keys to safeguard their assets. Stolen assets are valued at approximately … Read more

Bitcoin Fog Founder Sentenced to 12 Years for Cryptocurrency Money Laundering

November 9, 2024 at 01:12AM Roman Sterlingov, founder of the Bitcoin Fog cryptocurrency mixer, was sentenced to 12.5 years in prison for money laundering between 2011 and 2021. He must forfeit $395.56 million and his interest in a wallet holding 1,345 bitcoins. Bitcoin Fog laundered over $400 million for various cybercriminal activities. **Meeting Takeaways – … Read more

Ongoing typosquatting campaign impersonates hundreds of popular npm packages

November 5, 2024 at 11:32AM A typosquatting campaign is targeting developers through similar-named malicious JavaScript npm packages, leading to info-stealing malware. Originating in October, it employs Ethereum smart contracts for command and control, complicating detection. Researchers emphasize the need for stricter package management and authentication to protect development environments from these attacks. Here are the … Read more

Fake WalletConnect app on Google Play steals Android users’ crypto

September 26, 2024 at 09:15AM A fraudulent app named WallConnect, posing as the legitimate ‘WalletConnect’, garnered over 10,000 downloads on Google Play over five months. It deceived users by leading them to a malicious website, resulting in the loss of digital assets worth over $70,000. Due to potential manipulations, the download count may have been … Read more

Binance Warns of Rising Clipper Malware Attacks Targeting Cryptocurrency Users

September 17, 2024 at 03:46AM Cryptocurrency exchange Binance warns of a global threat targeting cryptocurrency users with clipper malware to facilitate financial fraud. The malware monitors clipboard activity to steal sensitive data and replace cryptocurrency addresses with the attacker’s. Binance advises caution and taking steps to prevent further fraudulent transactions. Blockchain analytics firm Chainalysis reports … Read more

Hackers linked to $14M Holograph crypto heist arrested in Italy

August 19, 2024 at 12:36PM Italian police arrested four suspected hackers, responsible for stealing $14 million worth of cryptocurrency from Holograph, a blockchain tech firm. The individuals were living luxuriously in Italy for weeks before their capture. Law enforcement, working with French authorities, tracked the group’s lavish lifestyle, leading to the arrest of two suspects … Read more

Immutability in Cybersecurity: A Layer of Security Amidst Complexity and Misconceptions

August 8, 2024 at 11:00AM The concept of “immutable” within cybersecurity is explored, encompassing data, servers, backups, and blockchains. These technologies are designed to enhance security but don’t guarantee true immutability. They offer valuable layers in a security stack, but the term “immutable” is primarily a marketing term, signifying increased difficulty in unauthorized alterations. Organizations … Read more

Ronin Network hacked, $12 million returned by “white hat” hackers

August 7, 2024 at 07:11PM Ronin Network’s blockchain experienced a security breach as white hat hackers exploited an undocumented vulnerability, withdrawing $12 million in assets. Promptly, they notified Ronin about the breach and the bridge was halted for verification. A post-mortem revealed a flaw in a recent bridge update, prompting Ronin to develop a new … Read more

North Korea likely behind takedown of Indian crypto exchange WazirX

July 19, 2024 at 02:07AM Indian crypto exchange WazirX disclosed the loss of over $230 million in virtual assets in a cyber attack attributed to North Korea. The attack exploited a vulnerability to gain control of a multi-signature wallet. WazirX halted crypto withdrawals and initiated recovery efforts. Blockchain analytics firms suspect the stolen assets are … Read more