June 26, 2024 at 02:52PM Remy St Felix, a 24-year-old leader of an international robbery crew, was convicted in the US for carrying out violent home invasions to steal cryptocurrency tokens. He led the gang in stealing hundreds of millions of dollars’ worth of crypto through kidnappings and terrorizing wealthy victims. St Felix faces a … Read more
June 20, 2024 at 01:38PM Kraken, a major cryptocurrency exchange, accuses security researchers of exploiting a critical bug to steal millions in digital cash and attempt to extort more from the exchange. The bug allowed users to manipulate their account balance without completing deposits. Kraken labeled the researchers’ actions as extortion and is coordinating with … Read more
May 29, 2024 at 01:51PM Cybersecurity researchers have discovered a malicious Python package, “pytoileur,” in the Python Package Index repository, aiming to enable cryptocurrency theft. The package’s code executes a Base64-encoded payload to retrieve a Windows binary from an external server, establishing persistence and dropping spyware and data-stealing malware. This method signifies an unprecedented abuse … Read more
May 17, 2024 at 12:09PM The Ebury botnet, operating for 15 years, has compromised numerous servers, targeting universities, enterprises, and cryptocurrency traders. It employs tactics to steal credentials, intercept SSH traffic, and pivot towards credit card and cryptocurrency theft. Despite the imprisonment of a key perpetrator, Ebury’s operators remain active and pose ongoing challenges for … Read more
January 11, 2024 at 09:21AM Mandiant’s social media account on platform X was hacked, resulting in a cryptocurrency theft campaign generating over $900,000 for cybercriminals. The attack involved promoting a fake website. The company’s investigation revealed a compromised password attack, leading to changes in their security process. Mandiant detailed the ClinkSink campaign and identified numerous … Read more
December 20, 2023 at 04:03AM A new Go-based information stealer malware called JaskaGO poses a cross-platform threat to Windows and Apple macOS systems, equipped with extensive commands from its C&C server. Capable of establishing persistence within the system, it employs multiple tactics for information theft and cryptocurrency theft. Its distribution method and campaign scale remain … Read more
December 4, 2023 at 10:07AM North Korean state-sponsored hackers reportedly stole over $3 billion in cryptocurrency, according to Recorded Future. SecurityWeek reported on the theft. Clear Takeaway from Meeting Notes: North Korean state-sponsored hackers have been reported to have acquired over $3 billion through cryptocurrency theft, as per findings published by Recorded Future. This significant … Read more
November 30, 2023 at 07:18AM Since 2017, North Korean hackers have targeted the crypto sector to bypass sanctions, stealing $3 billion in assets, significantly impacting DeFi platforms. The U.S. imposed sanctions against a mixer used by DPRK’s Lazarus Group for money laundering, which funds their WMD programs. Recorded Future suggests increased industry cybersecurity is necessary. … Read more
November 29, 2023 at 02:32PM Amir Hossein Golshan, 25, received an eight-year prison sentence and was fined $1.2 million for conducting various online scams, including SIM swapping and cryptocurrency theft. He admitted to hijacking a model’s Instagram and defrauding hundreds, causing $740,000 in losses. Golshan also stole $319,000 in NFTs and $70,000 in cryptocurrencies. Meeting … Read more
November 13, 2023 at 04:46PM Malicious actors have been exploiting Ethereum’s ‘Create2’ function to bypass wallet security alerts, resulting in the theft of $60 million worth of cryptocurrency from 99,000 individuals in six months. The ‘Create2’ function allows the creation of smart contracts on the blockchain and has introduced benefits but also security implications. Scammers … Read more