Collecting Cyber-News from over 60 sources

Tag: crypto

Discord Exploited to Spread Clipboard Hijacker Stealing Cryptocurrency Funds

Jan 20, 2026 9:13 AM

Tags: crypto, cyber, data, exploit, malware, monitoring, theft, threat, windows

CloudSEK’s STRIKE team has uncovered a sophisticated cryptocurrency theft operation orchestrated by the threat actor >>RedLineCyber,<< who deliberately impersonates the notorious RedLine Solutions to establish credibility within underground communities. Rather than collecting comprehensive system data, the malware employs a highly targeted approach: continuously monitoring the Windows clipboard for cryptocurrency wallet addresses and performing silent substitution…
Mandiant pushes organizations to dump insecure NTLMv1 by releasing a way to crack it

Jan 19, 2026 11:13 PM

Tags: attack, authentication, computer, credentials, crypto, cve, data, data-breach, email, encryption, group, Hardware, international, mandiant, microsoft, network, ntlm, phishing, risk, service, supply-chain, theft, threat, vulnerability, windows

pass-the-hash. The benefit is time and money saved: Mandiant reckons its rainbow table allows the recovery of an NTLMv1 key in 12 hours using a computer costing $600, rather than relying on third party services or expensive hardware to brute-force the keys.None of this makes NTLMv1 less secure or easier to target than it already…
Quantum-resistant zero trust architecture for MCP hosts

Jan 16, 2026 5:51 AM

Tags: access, ai, crypto, infrastructure, zero-trust

Learn how to build a quantum-resistant zero trust architecture for MCP hosts. Protect AI infrastructure with lattice-based crypto and 4D access control. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/01/quantum-resistant-zero-trust-architecture-for-mcp-hosts/
Cyberkriminelle rekrutieren Insider

Jan 14, 2026 7:11 PM

Tags: cloud, crypto, dark-web, software

Tausende von US-Dollar oder Euro warten auf interessierte Komplizen. Sicherheitsforscher von Check Point Software Technologies beobachten vermehrte Angebote dieser Art in Darknet-Foren. Zwischen 3000 und 15 000 US-Dollar werden derzeit für Daten oder Zugänge geboten. Krypto-Währungsbörsen, Banken und Cloud-Anbieter sind derzeit die Hauptziele. Prävention ist nur mittels Mitarbeiterschulung, strengen Zugriffskontrollen und der Überwachung des Darknets…
North Korean Hackers Exploit Code Repositories in “Contagious Interview” Campaign

Jan 14, 2026 7:11 PM

Tags: access, credentials, crypto, cyber, exploit, hacker, malicious, north-korea, threat

A newly documented campaign dubbed “Contagious Interview” shows North Korean threat actors weaponising developer tooling and code-repository workflows to steal credentials, cryptocurrency wallets and establish remote access even when victims never “run” the code they are sent. In a recent case analysed by SEAL, a malicious Bitbucket repository (hxxps://bitbucket[.]org/0xmvptechlab/ctrading) was delivered as a take”‘home technical…
Betterment Confirms Unauthorised Access to Its Internal Systems

Jan 14, 2026 7:11 PM

Tags: access, crypto, cyber, data, infrastructure, threat, unauthorized

Digital investment advisor Betterment has confirmed that unauthorized individuals gained access to its internal systems in a recent security breach. The compromise allowed attackers to send fraudulent cryptocurrency-related messages to some of the platform’s customers, raising concerns about data exposure and customer trust. The breachallowed threat actors to access Betterment’sinternal infrastructure, which they used to…
Impersonation Fraud Drives Record $17bn in Crypto Losses

Jan 14, 2026 7:11 PM

Tags: ai, crypto, fraud, scam

Chainalysis estimates $17bn will be lost to crypto scams in 2025 as AI takes hold First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/impersonation-fraud-record-17bn/
More than 40 countries impacted by North Korea IT worker scams, crypto thefts

Jan 13, 2026 11:02 PM

Tags: crypto, cyber, korea, north-korea, scam, theft

Eleven countries led a session at the UN headquarters in New York centered around a 140-page report released last fall that covered North Korea’s extensive cyber-focused efforts to fund its nuclear and ballistic weapons program. First seen on therecord.media Jump to article: therecord.media/40-countries-impacted-nk-it-thefts-united-nations
Betterment confirms data breach after wave of crypto scam emails

Jan 13, 2026 7:02 PM

Tags: breach, crypto, data, data-breach, email, hacker, scam

U.S. digital investment advisor Betterment confirmed that hackers breached its systems and sent fake crypto-related messages to some customers. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/betterment-confirms-data-breach-after-wave-of-crypto-scam-emails/
Betterment confirms data breach after wave of crypto scam emails

Jan 13, 2026 7:02 PM

Tags: breach, crypto, data, data-breach, email, hacker, scam

U.S. digital investment advisor Betterment confirmed that hackers breached its systems and sent fake crypto-related messages to some customers. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/betterment-confirms-data-breach-after-wave-of-crypto-scam-emails/
Malicious Chrome Extension Steals MEXC API Keys by Masquerading as Trading Tool

Jan 13, 2026 7:02 PM

Tags: api, browser, chrome, crypto, cybersecurity, google, malicious, tool

Cybersecurity researchers have disclosed details of a malicious Google Chrome extension that’s capable of stealing API keys associated with MEXC, a centralized cryptocurrency exchange (CEX) available in over 170 countries, while masquerading as a tool to automate trading on the platform.The extension, named MEXC API Automator (ID: pppdfgkfdemgfknfnhpkibbkabhghhfh), has 29 downloads and is still First…
AI-Powered Crypto Scams Drive Record $17B Losses in 2025

Jan 13, 2026 5:02 PM

Tags: ai, crypto, scam, tactics

Research by Chainalysis reveals that AI-powered impersonation tactics have exploded by an unprecedented 1,400% year-over-year. The post AI-Powered Crypto Scams Drive Record $17B Losses in 2025 appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-2025-crypto-scam-losses/
Betterment Customer Data Exposed in Crypto Scam Hack

Jan 13, 2026 11:02 AM

Tags: breach, crypto, data, data-breach, finance, scam

The breach occurred through a compromised third-party marketing platform, allowing attackers to impersonate the trusted financial service. The post Betterment Customer Data Exposed in Crypto Scam Hack appeared first on TechRepublic. First seen on techrepublic.com Jump to article: www.techrepublic.com/article/news-betterment-crypto-scam-hack/
Malicious Chrome Extension Steals Wallet Credentials, Enables Automated Trading Abuse

Jan 13, 2026 7:02 AM

Tags: api, browser, chrome, credentials, crypto, cyber, malicious, malware, threat, unauthorized

A sophisticated malware campaign targeting cryptocurrency traders has been uncovered by Socket’s Threat Research Team, revealing a malicious Chrome extension designed to steal MEXC exchange API credentials and enable unauthorized account control. The malicious extension operates by programmatically creating new MEXC API keys, enabling withdrawal permissions without user knowledge, and exfiltrating the resulting credentials to…
India demands crypto outfits geolocate customers, get a selfie to prove they’re real

Jan 13, 2026 5:01 AM

Tags: crypto, government, india

Government is fed up with bad actors using digi-cash to fund dodgy deeds First seen on theregister.com Jump to article: www.theregister.com/2026/01/13/india_crypto_kyc_aml_update/
Fintech firm Betterment confirms data breach after hackers send fake crypto scam notification to users

Jan 12, 2026 8:02 PM

Tags: access, attack, breach, crypto, data, data-breach, fintech, hacker, phishing, scam, social-engineering

Hackers gained access to some Betterment customers’ personal information through a social engineering attack, then targeted some of them with a crypto-related phishing message. First seen on techcrunch.com Jump to article: techcrunch.com/2026/01/12/fintech-firm-betterment-confirms-data-breach-after-hackers-send-fake-crypto-scam-notification-to-users/
Web3 Dev Environments Hit by Fake Interview Software Scam

Jan 12, 2026 6:02 PM

Tags: attack, crypto, cyber, email, jobs, phishing, scam, software, threat

Web3 and cryptocurrency developers are facing a new wave of targeted attacks driven not by cold outreach, but by carefully engineered “inbound” traps. Instead of chasing victims through phishing emails or unsolicited Telegram messages, threat actors are now building fake companies, posting appealing job openings, and waiting for high-value targets to walk into their infrastructure.…
Illicit Crypto Economy Surges Amid Increased Nation-State Activity

Jan 12, 2026 4:02 PM

Tags: crypto, cybercrime, iran, russia

Cybercriminal cryptocurrency transactions totaled billions in 2025, with activity from sanctioned countries like Russia and Iran causing the largest jump. First seen on darkreading.com Jump to article: www.darkreading.com/cyber-risk/illicit-crypto-economy-surges-nation-states
GoBruteforcer Botnet Targets Crypto Project Databases by Exploiting Weak Credentials

Jan 12, 2026 2:02 PM

Tags: ai, attack, blockchain, botnet, credentials, crypto, exploit, linux, mfa, password, service

A new wave of GoBruteforcer attacks has targeted databases of cryptocurrency and blockchain projects to co-opt them into a botnet that’s capable of brute-forcing user passwords for services such as FTP, MySQL, PostgreSQL, and phpMyAdmin on Linux servers.”The current wave of campaigns is driven by two factors: the mass reuse of AI-generated server deployment examples…
Illicit Crypto Activity Hits Record $158bn in 2025

Jan 12, 2026 12:02 PM

Tags: crypto

TRM Labs says illegal crypto flows into digital wallets increased to $158bn in 2025 First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/illicit-crypto-activity-record/
Crypto crime hits record levels as state actors move billions

Jan 12, 2026 11:01 AM

Tags: crime, crypto

Nation-state involvement in crypto increased in 2025, signaling a shift in how on-chain crime operates. Three waves of crypto crime (Source: Chainalysis) Research from … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/01/12/nation-state-crypto-crime-activity/
Cybercriminal Crypto Transactions Surge to 2025 High

Jan 12, 2026 11:01 AM

Tags: blockchain, crypto, cyber, cybercrime, data, finance

Illicit cryptocurrency transactions reached unprecedented levels in 2025 as nation-states weaponized digital assets to evade sanctions, transforming the cybercrime landscape into a geopolitical battleground with record-breaking financial volumes. According to blockchain analysis data, illicit cryptocurrency addresses received at least $154 billion in 2025, representing a 162% year-over-year increase that establishes a new benchmark for digital finance. Illicit cryptocurrency transactions…
Illicit Crypto Economy Surges as Nation-States Join in the Fray

Jan 9, 2026 8:01 PM

Tags: crypto, cybercrime, iran, russia

Cybercriminal cryptocurrency transactions totaled billions in 2025, with activity from sanctioned countries like Russia and Iran causing the largest jump. First seen on darkreading.com Jump to article: www.darkreading.com/cyber-risk/illicit-crypto-economy-surges-nation-states
At least $26 million in crypto stolen from Truebit platform as crypto crime landscape evolves

Jan 9, 2026 6:01 PM

Tags: breach, crime, crypto, hacker, theft

The theft continues a trend from the last two years, when hackers stole billions worth of cryptocurrency from both platforms and asset owners. First seen on therecord.media Jump to article: therecord.media/26-million-in-crypto-stolen-truebit
Krypto-Betrug mit KI & Deepfakes: Ein Anleger verliert fast alles

Jan 9, 2026 12:01 PM

Tags: ai, crypto, deep-fake, fraud

Kursgewinne bei Kryptowährungen ziehen viele private Anleger an, rufen jedoch ebenso Kriminelle auf den Plan. Nahezu täglich werden Verbraucher Opfer zweifelhafter Online-Handelsplattformen. Wer sich von seriös wirkenden, in Wahrheit betrügerischen Webseiten täuschen lässt, riskiert im schlimmsten Fall den vollständigen Verlust seines investierten Kapitals. First seen on welivesecurity.com Jump to article: www.welivesecurity.com/de/videos/krypto-betrug-mit-ki-deepfakes-ein-anleger-verliert-fast-alles/
Gestohlene IAM-Keys starten Krypto-Mining direkt in AWS Klau reicht: Angreifer starten Mining in AWS ohne jede Lücke

Jan 9, 2026 8:01 AM

Tags: crypto, iam

First seen on security-insider.de Jump to article: www.security-insider.de/aws-krypto-mining-a-4b261723d832727305516431f7890644/
Cryptohack Roundup: Alleged Fraud Kingpin Deported to China

Jan 8, 2026 7:02 PM

Tags: attack, breach, china, crypto, data, fraud, hacker, theft

Also: Unleash Protocol Hack, LastPass Breach Linked to Crypto Thefts. This week, an alleged fraud kingpin deported to China, Bitfinex hacker gained early release, Unleash Protocol’s $3.9M hack, TRM tied crypto thefts to the LastPass breach, Trust Wallet’s link to the Sha1-Hulud attack, Flow’s NFT loan fallout, Ledger’s data exposure and Kontigo reimbursements. First seen…
Typosquatting schleust Wallet-Stealer in NuGet-Projekte – NuGet-Trojaner stiehlt Krypto-Wallets über .NET-Projekte

Jan 8, 2026 8:01 AM

Tags: crypto

First seen on security-insider.de Jump to article: www.security-insider.de/nuget-trojaner-krypto-wallet-a-c078675a4fb5ee1a4d78d1d5408bdcda/
New GoBruteforcer attack wave targets crypto, blockchain projects

Jan 8, 2026 1:01 AM

Tags: ai, attack, blockchain, botnet, crypto, data-breach, malware

A new wave of GoBruteforcer botnet malware attacks is targeting databases of cryptocurrency and blockchain projects on exposed servers believed to be configured using AI-generated examples. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/new-gobruteforcer-attack-wave-targets-crypto-blockchain-projects/
Malicious NPM Packages Deliver NodeCordRAT

Jan 7, 2026 9:02 PM

Tags: access, api, attack, breach, browser, chrome, cloud, control, credentials, crypto, data, email, endpoint, infrastructure, linux, login, macOS, malicious, malware, network, open-source, password, powershell, rat, service, software, supply-chain, theft, threat, vulnerability, windows

IntroductionZscaler ThreatLabz regularly monitors the npm database for suspicious packages. In November 2025, ThreatLabz identified three malicious packages: bitcoin-main-lib, bitcoin-lib-js, and bip40. The bitcoin-main-lib and bitcoin-lib-js packages execute a postinstall.cjs script during installation, which installs bip40, the package that contains the malicious payload. This final payload, named NodeCordRAT by ThreatLabz, is a remote access trojan (RAT) with data-stealing capabilities. It is also possible to download bip40…