July 4, 2024 at 12:18PM A threat actor compromised Ethereum’s mailing list provider and sent a phishing email to over 35,000 addresses, luring recipients to a malicious site offering investment returns. Ethereum disclosed the incident, stating it had no material impact. The internal security team launched an investigation, blocked the attacker, and warned the community. … Read more
July 2, 2024 at 01:29PM Interlock introduces Web3, an incentivized internet security community and general availability of ThreatSlayer, a blockchain-powered browser extension. The CEO secured interest from Netflix co-founder Marc Randolph and introduced the $ILOCK token for incentivizing security staking. The company aims to revolutionize internet security by combining crowd power, AI technology, and blockchain … Read more
June 27, 2024 at 06:28AM The text discusses building blockchain applications in native Python using AlgoKit for Algorand. It emphasizes the benefits of blockchain applications, Python’s suitability, setting up the development environment, and building secure applications using Python. It also provides insights into the smart contract development process and testing methods. For more information, visit … Read more
June 20, 2024 at 01:38PM Kraken, a major cryptocurrency exchange, accuses security researchers of exploiting a critical bug to steal millions in digital cash and attempt to extort more from the exchange. The bug allowed users to manipulate their account balance without completing deposits. Kraken labeled the researchers’ actions as extortion and is coordinating with … Read more
May 31, 2024 at 05:10PM DMM Bitcoin reported the theft of 4,502.9 Bitcoin (BTC), equivalent to $308 million, constituting the most significant cryptocurrency heist of 2024. The stolen Bitcoin has been divided into multiple new wallets to evade detection, with numerous platform services restricted during the investigation. DMM Bitcoin is working to guarantee customers’ deposits. … Read more
April 15, 2024 at 10:41AM A Russian threat actor is targeting game developers with fraudulent Web3 gaming projects, spreading infostealers on MacOS and Windows. The goal is to defraud and steal cryptocurrency wallets. The campaign uses fake social media accounts and impersonates legitimate projects. The report recommends maintaining vigilance, providing training to recognize social engineering … Read more
April 15, 2024 at 07:48AM Former senior security engineer Shakeeb Ahmed, 34, of New York, was sentenced to three years in prison for defrauding two cryptocurrency exchanges of $9 million and $1.4 million, using smart contract vulnerabilities to manipulate prices. Ahmed, who worked at an international tech company, must forfeit $12.3 million and pay $5 … Read more
March 19, 2024 at 10:35AM Information security researchers have observed a surge in cryptocurrency attacks, with a focus on exploiting Ethereum’s CREATE2 opcode, resulting in millions of dollars’ worth of assets being stolen from victims’ wallets. This vulnerability underscores the ongoing battle between innovation and security within the blockchain community and highlights the need for … Read more
February 27, 2024 at 09:29AM Malicious JavaScript code in a Tornado Cash governance proposal has leaked deposit notes to a private server for almost two months, compromising fund transaction privacy and security. Security researcher Gas404 discovered the code and urged stakeholders to veto the proposal. The compromised protocol introduced the code and Tornado Cash urges … Read more
February 20, 2024 at 06:27AM North Korean-sponsored threat actors are conducting cyber espionage targeting the defense sector worldwide. The Lazarus Group is blamed for using social engineering to infiltrate the defense sector through a long-standing operation called Dream Job. Another incident involved an intrusion into a defense research center, executed by a North Korea-based threat … Read more