Tag: cryptocurrency
242 articles

EtherHiding: Exclusive Risky Crypto Heist Warning
What if the blockchain meant to protect your funds became a hiding place for thieves? Google warns North Korea-linked hackers are using EtherHiding—embedding malware in Ethereum transactions—to siphon crypto, forcing defenders to rethink how they detect and stop attacks.

Scattered Spider Shocking $115M Ransom Scandal
How did a 19‑year‑old become the alleged face of a criminal group accused of extracting $115 million in ransoms? U.S. prosecutors say Thalha Jubair and a co‑conspirator tied to Scattered Spider used social engineering and stolen credentials to hit hospitals, transit and retailers—proof that stronger defenses and international cooperation are now essential.

JavaScript packages Risky: Exclusive Crypto-Theft Alert
Eighteen popular JavaScript packages — downloaded billions of times a week — were briefly compromised after a maintainer fell for a phishing email, with code added to steal crypto keys before it was quickly removed. The scare is a wake-up call: tighten maintainer access, adopt signing and provenance, and treat dependencies like critical third-party software.

ransomware payments: Stunning Risky Surge to $3.6M
Ransomware payments jumped 44% to an average $3.6M in 2025 as attackers shift to fewer, higher-value strikes—forcing organizations to weigh grim pragmatism against costly downtime, data leaks, and regulatory fallout.

EtherHiding in smart contracts: Exclusive Critical Threat
Imagine the smart contracts you trust quietly carrying malware — researchers say a North Korean‑linked group used a new EtherHiding trick to embed and trigger malicious payloads in blockchain contracts. Defenders now need to move beyond static code checks and adopt runtime monitoring to stop these covert distribution channels before they steal funds.

Cryptocurrency ATMs: Risky Reality, Must-Have Alerts
Cryptocurrency ATMs offer quick, cash-to-crypto convenience—but their speed and perceived anonymity make them prime tools for scammers and regulatory headaches, so investors should scrutinize fees, compliance, and fraud controls before betting on the sector.

North Korean hackers: Stunning $2B Crypto Heist — Alarming
Elliptic reveals North Korean-linked hackers have grabbed a record $2B in crypto this year, using smart hacks and clever laundering to dodge sanctions — a wake-up call about how quickly digital assets can be weaponized. Stronger defenses, better on-ramps and international cooperation are urgently needed to stop the next haul.

seizure of cryptocurrency: Stunning Landmark Win
How did billions in Bitcoin slip through the cracks for seven years? The UK’s landmark seizure and Zhimin Qian’s guilty plea show how blockchain forensics plus old‑school detective work can upend crypto money‑laundering and reshape global enforcement and regulation.

XCSSET malware: Stunning, Dangerous Supply-Chain Threat
Microsoft warns that XCSSET — a persistent macOS malware — has evolved to hide inside Xcode project files, so compromised developer builds can silently steal crypto, disable defenses, and spread to users. Developers and teams should lock down build environments, tighten project integrity checks, and treat supply‑chain security as mission‑critical to keep apps and users safe.

clipboard hijacking: Risky XCSSET Variant Stuns
Heads-up: a new macOS XCSSET variant now targets Firefox with a clipboard-clipper and stronger persistence—copied crypto addresses can be silently swapped and infections are harder to remove, so users and IT teams should verify addresses off‑clipboard and strengthen detections now.

Lazarus Group Exclusive Threat: Risky Malware Surge
Imagine calling tech support and accidentally inviting a nation‑state backdoor into your PC — researchers say North Korea‑linked Lazarus tools are now showing up in everyday tech‑support scams, handing criminals far more powerful, persistent malware. That makes it more important than ever for people and organizations to rethink who they trust and how they secure devices.

AkdoorTea backdoor: Exclusive Dangerous Threat to Devs
A new North Korea-linked campaign called DeceptiveDevelopment is planting a stealthy backdoor, AkdoorTea, in developer environments worldwide—threatening repositories, build systems, and crypto projects across Windows, macOS, and Linux. If you build or maintain crypto or open-source tooling, now’s the time to lock down keys, enforce MFA, and monitor developer endpoints before a single compromised laptop turns into a major breach.

cryptocurrency fraud ring Stunning €100M Risky Bust
European police dismantled an alleged €100 million crypto fraud ring this week, arresting five suspects and shutting down fake platforms, token launches and wallets that duped investors. The case shows how cross-border forensics can stop big scams — and why you should always verify platforms and be wary of returns that sound too good to be true.

ransomware groups: Stunning, Dangerous Threat to Museums
When ransomware knocked a French museum offline and thieves made off with $705,000 in gold, it became painfully clear that cyberattacks can enable real‑world heists — a wake‑up call for museums and small institutions to protect both their networks and their treasures.

ClickFix lures: Must-Have Critical Warning
DPRK-linked hackers are swapping code-focused bait for ClickFix-style tickets that trick marketing and trading teams into installing BeaverTail and InvisibleFerret malware, putting funds and customer systems at risk. It’s a wake-up call to treat phishing as a financial-security issue—tighten email defenses, role-based access, and training beyond engineering.

Scattered Spider gang Exclusive Arrest Exposes Risk
U.K. police arrested 17‑year‑old Thalha Jubair after tracing gift‑card purchases back to the same crypto wallets used in Scattered Spider’s alleged $115M extortion campaign. It’s a striking reminder that sloppy opsec and smart crypto forensics can crack sophisticated social‑engineering rings — and that businesses must tighten people‑centric defenses.

ransomware groups Stunning Pause: Risky Relief Explained
At least 15 notorious ransomware groups have announced they’re going dark, offering a welcome — if uneasy — reprieve. Experts warn it could be a ruse or a regrouping, so use the lull to patch systems, harden identity controls, and test backups.

ConnectWise ScreenConnect Risky Exploit: Stunning AsyncRAT
Imagine your trusted remote-admin tool becoming the very doorway attackers use to steal credentials and siphon crypto—researchers found ConnectWise ScreenConnect sessions abused to run a fleshless, in-memory VBScript loader that dropped AsyncRAT to harvest keys, keystrokes, and wallets. Harden RMM access, monitor session scripts, and assume compromise—because when legitimate tooling is weaponized, detection needs to get smarter fast.

ransomware operations Devastating Exposed Exclusive
An explosive U.S. indictment accuses a Ukrainian national of masterminding LockerGoga, MegaCortex and Nefilim ransomware campaigns that prosecutors say caused roughly $18 billion in global damage and carries an $11 million reward for information leading to arrest. The case highlights how ransomware has evolved into a systemic threat that can shutter hospitals, halt factories and ripple through economies — a wake-up call for better defenses and international cooperation.

npm packages Must-Have Defense Against Risky Attacks
Attackers briefly pushed trojanized npm releases that spread fast through the cloud, mined only pennies, and left security teams scrambling to contain and remediate. It’s a wake‑up call: package convenience comes with real supply‑chain risk, so tighten controls, pin dependencies, and treat dependencies as first‑class security assets.

malicious npm package: Risky Crypto-Theft Exclusive Alert
A malicious npm package posing as the popular nodemailer email library slipped into projects with one line of dependency and carried code designed to siphon cryptocurrency—showing how a single careless install can turn a routine dependency into a financial threat. Audit your dependencies, pin versions, and use supply‑chain tools—convenience shouldn’t cost you your wallet.

developer AI assistants Risky: Stunning Supply-Chain Threat
A newly discovered supply‑chain attack on the Nx npm package used AI‑enabled malware to siphon developer secrets and crypto, showing how trusted code helpers can be turned into attack vectors. Treat AI suggestions as untrusted—use package signing, strict dependency pinning, least‑privilege environments, and thorough scans to keep your toolchain safe.

romance baiting: Stunning Freeze Is a Powerful Win
Chainalysis, OKX, Binance and Tether froze nearly $47 million destined for romance-baiting scammers, stopping a major fraud before the money disappeared. The move shows how analytics and cooperation can help victims — while sparking fresh debate over privacy and centralized control.

witness intimidation: Stunning Risky Crime, Harsher Time
When the alleged leader of a cross-border crypto theft ring assaulted a witness, jurors added decades to the sentence — a stark reminder that violence to silence witnesses not only invites harsher punishment but also makes tracing and prosecuting digital theft far harder.