Skip to main content

Tag: smart contracts

7 articles

ThreatsDay Bulletin Exclusive: Essential Cyber Threats

ThreatsDay Bulletin Exclusive: Essential Cyber Threats

Ever wondered what happens when trusted doors are left unlocked? This ThreatsDay Bulletin shows how trusted attack chains—everyday files, SMS, cloud APIs and smart contracts—are being repurposed into stealthy, high‑leverage strikes and what you can do to shut them down.

Analyst 207
AIs Exploiting Smart Contracts: Exclusive Dangerous Risks

AIs Exploiting Smart Contracts: Exclusive Dangerous Risks

Smart contracts were sold as “trustless” automation — now AI is learning to weaponize their transparency and immutability. Recent research shows models autonomously finding and exploiting on‑chain flaws, forcing defenders to move beyond static audits to runtime protection.

Analyst 207
EtherHiding in smart contracts: Exclusive Critical Threat

EtherHiding in smart contracts: Exclusive Critical Threat

Imagine the smart contracts you trust quietly carrying malware — researchers say a North Korean‑linked group used a new EtherHiding trick to embed and trigger malicious payloads in blockchain contracts. Defenders now need to move beyond static code checks and adopt runtime monitoring to stop these covert distribution channels before they steal funds.

Analyst 207
smart contracts Risky: Stunning Malware Supply-Chain Threat

smart contracts Risky: Stunning Malware Supply-Chain Threat

Cybercriminals are hijacking compromised WordPress sites and hiding malware distribution inside blockchain smart contracts — a tactic called EtherHiding that makes takedowns harder and spreads info-stealers like AMOS, Lumma, RADTHIEF and Vidar to Windows and macOS. Protect your site and devices now: patch WordPress, lock down plugins and admin access, and keep endpoints and authentication strong.

Analyst 207
weaponize trust: Stunning, Risky Threats to Tech

weaponize trust: Stunning, Risky Threats to Tech

This week’s ThreatsDay unpacks a staggering $15B crypto fraud, chilling satellite-enabled surveillance, and a rise in smishing — showing how everyday tech is being turned against us and what simple steps you can take to protect your money, data, and trust.

Analyst 207
malicious npm packages: Must-Stop Risky Supply-Chain Threat

malicious npm packages: Must-Stop Risky Supply-Chain Threat

Malicious npm packages and cloned GitHub repos are now weaponizing developer tooling to steal wallet keys and hijack Ethereum smart contracts, turning routine dependency installs into a direct route for theft. If you build dApps, treat every package as untrusted—use hardware wallets, isolate signing keys, and audit dependencies before they can cost you millions.

Analyst 207
fake AI schemes: Stunningly Risky Threats to Web3

fake AI schemes: Stunningly Risky Threats to Web3

Web3 developers are being targeted by a sophisticated scam—EncryptHub (aka LARVA-208/Water Gamayun) uses fake AI platforms like Norlax AI and Teampilot to deliver info-stealers disguised as job offers or portfolio reviews. Learn how to spot these impersonations and protect your projects, reputation, and community before it’s too late.

Analyst 207