December 13, 2024 at 08:21AM Bitcoin ATM operator Byte Federal informed 58,000 individuals of a potential data breach, discovered on November 18, due to a vulnerability in GitLab. Personal data may have been accessed, but no funds were compromised. Byte Federal is taking security measures and advises users to monitor their accounts for suspicious activities. … Read more
December 4, 2024 at 06:20PM A new Android malware called ‘DroidBot’ targets over 77 cryptocurrency exchanges and banking apps across the UK, Italy, France, Spain, and Portugal to steal user credentials. **Meeting Takeaways:** 1. **Introduction of New Malware:** A new Android banking malware called ‘DroidBot’ has been identified. 2. **Targeted Applications:** The malware specifically aims … Read more
December 4, 2024 at 12:33PM The Solana JavaScript SDK was compromised in a supply chain attack, enabling the theft of cryptocurrency private keys through malicious code in versions 1.95.6 and 1.95.7 of the library. Developers are urged to update to version 1.95.8 and rotate keys to safeguard their assets. Stolen assets are valued at approximately … Read more
December 3, 2024 at 07:13AM In 2024, cryptocurrency losses reached nearly $1.49 billion, primarily due to hacks, according to Immunefi. This is a reduction from last year’s $1.75 billion. November losses were over $71 million, with 24 hacking incidents reported. BNB Chain was the most targeted, accounting for 46.7% of total losses. ### Meeting Takeaways … Read more
November 26, 2024 at 02:09PM Cyberattackers are targeting OpenSea NFT users with a phishing attack that mimics legitimate notifications to lure victims into connecting their cryptocurrency wallets to a fake page. Researchers caution that these schemes exploit entry-level collectors’ inexperience, urging vigilance to avoid financial loss through social engineering tactics and malicious links. ### Meeting … Read more
November 15, 2024 at 06:36AM Ilya Lichtenstein, the Bitfinex hacker who stole and laundered approximately $1 billion in Bitcoin, has been sentenced to five years in prison. **Meeting Notes Takeaways:** 1. **Individual Involved**: Ilya Lichtenstein is identified as the hacker connected to the Bitfinex theft. 2. **Crime Summary**: Lichtenstein stole bitcoin valued at approximately $1 … Read more
November 12, 2024 at 08:39AM North Korean threat actors have begun embedding malware in Flutter applications, targeting macOS devices. This technique includes a deceptive Minesweeper game and variants in Go and Python. Jamf Threat Labs notes this may involve social engineering near cryptocurrency sectors, and suspects links to known hacking sub-groups. Appleās notarization process is … Read more
November 7, 2024 at 05:17PM North Korean hacker group BlueNoroff is targeting crypto businesses with a new multi-stage macOS malware campaign, dubbed “Hidden Risk.” Utilizing phishing emails about cryptocurrency, the malware employs novel techniques for persistence and evasion, ensuring it remains undetected. This campaign marks an evolution in their tactics over the past year. ### … Read more
November 5, 2024 at 03:34PM The FBI recovered $8 million from a $47 million cryptocurrency scam linked to Shan Hanes, former CEO of Heartland Tri-State Bank, who embezzled funds after being lured into the scheme. Hanes was sentenced to 24 years in prison, and the investigation revealed his abuse of trust in a small community. … Read more
November 1, 2024 at 05:11AM LottieFiles reported a supply chain attack on Lottie-Player, aimed at stealing cryptocurrency. This breach poses risks to cryptocurrency wallets, highlighting vulnerabilities in software supply chains. **Meeting Takeaways:** 1. **Incident Confirmation**: LottieFiles has confirmed a breach involving Lottie-Player. 2. **Nature of the Attack**: The breach is classified as a supply chain … Read more