Category: cryptocurrency

SHub macOS infostealer variant spoofs Apple security updates A new variant of the ‘SHub’ macOS infostealer uses AppleScript to show a fake security update message and installs a backdoor. […] Bill Toulas Go to bleepingcomputer

Grinex exchange blames “Western intelligence” for $13.7M crypto hack Kyrgyzstan-based cryptocurrency exchange Grinex has suspended its operations after suffering a $13.7 million hack attributed to Western intelligence agencies. […] Bill Toulas Go to bleepingcomputer

Crypto-exchange Kraken extorted by hackers after insider breach The Kraken cryptocurrency exchange announced that a cybercrime group is trying to extort the company by threatening to release videos showing internal systems that host client data. […] Bill Toulas Go to bleepingcomputer

Over 20,000 crypto fraud victims identified in international crackdown An international law enforcement action led by the U.K.’s National Crime Agency (NCA) has identified over 20,000 victims of cryptocurrency fraud across Canada, the United Kingdom, and the United States. […] Sergiu Gatlan Go to bleepingcomputer

Drift loses $280 million North Korean hackers seize Security Council powers The Drift Protocol lost at least $280 million after a threat actor took control of its Security Council administrative powers in a planned, sophisticated operation. […] Bill Toulas Go to bleepingcomputer

Hacker charged with stealing $53 million from Uranium crypto exchange U.S. prosecutors have charged a Maryland man with stealing more than $53 million after hacking the Uranium Finance crypto exchange twice and laundering the proceeds through a cryptocurrency mixer. […] Sergiu Gatlan Go to bleepingcomputer

AppsFlyer Web SDK hijacked to spread crypto-stealing JavaScript code The AppsFlyer Web SDK was temporarily hijacked this week with malicious code used to steal cryptocurrency in a supply-chain attack. […] Bill Toulas Go to bleepingcomputer

$4.8M in crypto stolen after Korean tax agency exposes wallet seed South Korea’s National Tax Service accidentally exposed the mnemonic recovery phrase of a seized cryptocurrency wallet in an official press release, allowing hackers to steal 6.4 billion won ($4.8M) worth in cryptocurrency. […] Bill Toulas Go to bleepingcomputer

Fake job recruiters hide malware in developer coding challenges A new variation of the fake recruiter campaign from North Korean threat actors is targeting JavaScript and Python developers with cryptocurrency-related tasks. […] Bill Toulas Go to bleepingcomputer

Ledger customers impacted by third-party Global-e data breach Ledger is informing some customers that their personal data has been exposed after hackers breached the systems of third-party payment processor Global-e. […] Bill Toulas Go to bleepingcomputer

New GlassWorm malware wave targets Macs with trojanized crypto wallets A fourth wave of the “GlassWorm” campaign is targeting macOS developers with malicious VSCode/OpenVSX extensions that deliver trojanized versions of crypto wallet applications. […] Bill Toulas Go to bleepingcomputer

Hackers drain $3.9M from Unleash Protocol after multisig hijack The decentralized intellectual property platform Unleash Protocol has lost around $3.9 million worth of cryptocurrency after someone executed an unauthorized contract upgrade that allowed asset withdrawals. […] Bill Toulas Go to bleepingcomputer

Police takes down Cryptomixer cryptocurrency mixing service Law enforcement officers from Switzerland and Germany have taken down the Cryptomixer cryptocurrency-mixing service, believed to have helped cybercriminals launder stolen funds. […] Sergiu Gatlan Go to bleepingcomputer

Malicious NPM packages abuse Adspect redirects to evade security Seven packages published on the Node Package Manager (npm) registry use the Adspect cloud-based service to separate researchers from potential victims and lead them to malicious locations. […] Bill Toulas Go to bleepingcomputer

Fake LastPass death claims used to breach password vaults LastPass is warning customers of a phishing campaign sending emails with an access request to the password vault as part of a legacy inheritance process. […] Bill Toulas Go to bleepingcomputer

Canada dismantles TradeOgre exchange, seizes $40 million in crypto The Royal Canadian Mounted Police has shut down the TradeOgre cryptocurrency exchange and seized more than $40 million believed to originate from criminal activities. […] Ionut Ilascu Go to bleepingcomputer

Hackers left empty-handed after massive NPM supply-chain attack The largest supply-chain compromise in the history of the NPM ecosystem has impacted roughly 10% of all cloud environments, but attackers made little profit off it. […] Bill Toulas Go to bleepingcomputer

Nebraska man gets 1 year in prison for $3.5M cryptojacking scheme A Nebraska man was sentenced to one year in prison for defrauding cloud computing providers of over $3.5 million to mine cryptocurrency worth nearly $1 million. […] Sergiu Gatlan Go to bleepingcomputer

US sanctions Grinex crypto-exchange, successor to Garantex The U.S. Department of the Treasury has announced sanctions against Grinex, the successor to Russian cryptocurrency exchange Garantex, which was previously sanctioned for helping ransomware gangs launder their money. […] Sergiu Gatlan Go to bleepingcomputer

Bitcoin Depot breach exposes data of nearly 27,000 crypto users Bitcoin Depot, an operator of Bitcoin ATMs, is notifying customers of a data breach incident that has exposed their sensitive information. […] Bill Toulas Go to bleepingcomputer

Employee gets $920 for credentials used in $140 million bank heist Hackers stole nearly $140 million from six banks in Brazil by using an employee’s credentials from C&M, a company that offers financial connectivity solutions. […] Bill Toulas Go to bleepingcomputer

BitoPro exchange links Lazarus hackers to $11 million crypto heist The Taiwanese cryptocurrency exchange BitoPro claims the North Korean hacking group Lazarus is behind a cyberattack that led to the theft of $11,000,000 worth of cryptocurrency on May 8, 2025. […] Bill Toulas Go to bleepingcomputer

Pro-Israel hackers hit Iran’s Nobitex exchange, burn $90M in crypto The pro-Israel “Predatory Sparrow” hacking group claims to have stolen over $90 million in cryptocurrency from Nobitex, Iran’s largest crypto exchange, and burned the funds in a politically motivated cyberattack. […] Lawrence Abrams Go to bleepingcomputer

Coinbase breach tied to bribed TaskUs support agents in India A recently disclosed data breach at Coinbase has been linked to India-based customer support representatives from outsourcing firm TaskUs, who threat actors bribed to steal data from the crypto exchange. […] Bill Toulas Go to bleepingcomputer

Hacker steals $223 million in Cetus Protocol cryptocurrency heist The decentralized exchange Cetus Protocol announced that hackers have stolen $223 million in cryptocurrency and is offering a deal to stop all legal action if the funds are returned. […] Bill Toulas Go to bleepingcomputer

US charges 12 more suspects linked to $230 million crypto theft Twelve more suspects were charged in a RICO conspiracy for their alleged involvement in the theft of over $230 million in cryptocurrency and laundering the funds using crypto exchanges and mixing services. […] Sergiu Gatlan Go to bleepingcomputer

Germany takes down eXch cryptocurrency exchange, seizes servers The Federal police in Germany (BKA) seized the server infrastructure and shut down the ‘eXch’ cryptocurrency exchange platform for alleged money laundering cybercrime proceeds. […] Bill Toulas Go to bleepingcomputer

Coinbase fixes 2FA log error making people think they were hacked Coinbase has fixed a confusing bug in its account activity logs that caused users to think their credentials were compromised. […] Lawrence Abrams Go to bleepingcomputer

Hackers abuse Zoom remote control feature for crypto-theft attacks A hacking group dubbed ‘Elusive Comet’ targets cryptocurrency users in social engineering attacks that exploit Zoom’s remote control feature to trick users into granting them access to their machines. […] Bill Toulas Go to bleepingcomputer

Fake Microsoft Office add-in tools push malware via SourceForge Threat actors are abusing SourceForge to distribute fake Microsoft add-ins that install malware on victims’ computers to both mine and steal cryptocurrency. […] Bill Toulas Go to bleepingcomputer

Coinbase to fix 2FA account activity entry freaking out users Coinbase is fixing an incorrect account activity message that freaks out customers and makes them think their credentials were compromised. […] Lawrence Abrams Go to bleepingcomputer

US removes sanctions against Tornado Cash crypto mixer The U.S. Department of Treasury announced today that it has removed sanctions against the Tornado Cash cryptocurrency mixer, which North Korean Lazarus hackers used to launder hundreds of millions stolen in multiple crypto heists. […] Sergiu Gatlan Go to bleepingcomputer

OKX suspends DEX aggregator after Lazarus hackers try to launder funds OKX Web3 has decided to suspend its DEX aggregator services to implement security upgrades following reports of abuse by the notorious North Korean Lazarus hackers, who recently conducted a $1.5 billion crypto heist. […] Bill Toulas Go to bleepingcomputer

North Korean Lazarus hackers infect hundreds via npm packages Six malicious packages have been identified on npm (Node package manager) linked to the notorious North Korean hacking group Lazarus. […] Bill Toulas Go to bleepingcomputer

US seizes $23 million in crypto stolen via password manager breach U.S. authorities have seized over $23 million in cryptocurrency linked to the theft of $150 million from a Ripple crypto wallet in January 2024. Investigators believe hackers who breached LastPass in 2022 were behind the attack. […] Sergiu Gatlan Go to bleepingcomputer

US seizes domain of Garantex crypto exchange used by ransomware gangs The U.S. Secret Service has seized the domain of the sanctioned Russian cryptocurrency exchange Garantex in collaboration with the Department of Justice’s Criminal Division, the FBI, and Europol. […] Sergiu Gatlan Go to bleepingcomputer

Ethereum private key stealer on PyPI downloaded over 1,000 times A malicious Python Package Index (PyPI)  package named “set-utils” has been stealing Ethereum private keys through intercepted wallet creation functions and exfiltrating them via the Polygon blockchain. […] Bill Toulas Go to bleepingcomputer

FBI confirms Lazarus hackers were behind $1.5B Bybit crypto heist FBI has confirmed that North Korean hackers stole $1.5 billion from cryptocurrency exchange Bybit on Friday in the largest crypto heist recorded until now. […] Sergiu Gatlan Go to bleepingcomputer

Hacker steals record $1.46 billion from Bybit ETH cold wallet Cryptocurrency exchange Bybit revealed today that an unknown attacker stole over $1.46 billion worth of cryptocurrency from one of its ETH cold wallets. […] Sergiu Gatlan Go to bleepingcomputer

zkLend loses $9.5M in crypto heist, asks hacker to return 90% Decentralized money lender zkLend suffered a breach where threat actors exploited a smart contract flaw to steal 3,600 Ethereum, worth $9.5 million at the time. […] Lawrence Abrams Go to bleepingcomputer

Hacker pleads guilty to SIM swap attack on US SEC X account Today, an Alabama man pleaded guilty to hijacking the U.S. Securities and Exchange Commission (SEC) account on X in a January 2024 SIM swapping attack. […] Sergiu Gatlan Go to bleepingcomputer