Collecting Cyber-News from over 60 sources

Tag: crypto

North Korean hackers use EtherHiding to hide malware on the blockchain

Oct 16, 2025 5:07 PM

Tags: blockchain, crypto, espionage, hacker, malware, north-korea

North Korean hackers were observed employing the ‘EtherHiding’ tactic to deliver malware, steal cryptocurrency, and perform espionage with stealth and resilience. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/north-korean-hackers-use-etherhiding-to-hide-malware-on-the-blockchain/
North Korean hackers use EtherHiding to hide malware on the blockchain

Oct 16, 2025 5:07 PM

Tags: blockchain, crypto, espionage, hacker, malware, north-korea

North Korean hackers were observed employing the ‘EtherHiding’ tactic to deliver malware, steal cryptocurrency, and perform espionage with stealth and resilience. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/north-korean-hackers-use-etherhiding-to-hide-malware-on-the-blockchain/
Operation Silk Lure: Weaponizing Windows Scheduled Tasks for ValleyRAT Delivery

Oct 16, 2025 3:07 PM

Tags: china, crypto, cyber, email, espionage, exploit, fintech, intelligence, malware, phishing, spear-phishing, windows

A targeted cyber-espionage campaign exploiting Windows Scheduled Tasks and DLL side-loading to deploy the sophisticated ValleyRAT backdoor. The operation pivots on tailored spear-phishing emails, weaponized Windows shortcuts, and a persistent task scheduler mechanism, all delivering a multi-stage malware payload designed to harvest sensitive intelligence from Chinese FinTech and cryptocurrency firms. Adversaries behind Operation Silk Lure…
Operation Silk Lure: Weaponizing Windows Scheduled Tasks for ValleyRAT Delivery

Oct 16, 2025 3:07 PM

Tags: china, crypto, cyber, email, espionage, exploit, fintech, intelligence, malware, phishing, spear-phishing, windows

A targeted cyber-espionage campaign exploiting Windows Scheduled Tasks and DLL side-loading to deploy the sophisticated ValleyRAT backdoor. The operation pivots on tailored spear-phishing emails, weaponized Windows shortcuts, and a persistent task scheduler mechanism, all delivering a multi-stage malware payload designed to harvest sensitive intelligence from Chinese FinTech and cryptocurrency firms. Adversaries behind Operation Silk Lure…
Operation Heracles strikes blow against massive network of fraudulent crypto trading sites

Oct 16, 2025 1:07 PM

Tags: crypto, cybercrime, network

In a significant crackdown against online cybercriminals, German authorities have successfully dismantled a network of fraudulent cryptocurrency investment sites that has targeted millions of unsuspecting people across Europe. First seen on bitdefender.com Jump to article: www.bitdefender.com/en-us/blog/hotforsecurity/operation-heracles-strikes-blow-massive-network-fraudulent-crypto-trading-sites
Operation Heracles strikes blow against massive network of fraudulent crypto trading sites

Oct 16, 2025 1:07 PM

Tags: crypto, cybercrime, network

In a significant crackdown against online cybercriminals, German authorities have successfully dismantled a network of fraudulent cryptocurrency investment sites that has targeted millions of unsuspecting people across Europe. First seen on bitdefender.com Jump to article: www.bitdefender.com/en-us/blog/hotforsecurity/operation-heracles-strikes-blow-massive-network-fraudulent-crypto-trading-sites
ThreatsDay Bulletin: $15B Crypto Bust, Satellite Spying, Billion-Dollar Smishing, Android RATs & More

Oct 16, 2025 12:07 PM

Tags: android, control, crypto, rat, scam, smishing, spy, technology, tool

The online world is changing fast. Every week, new scams, hacks, and tricks show how easy it’s become to turn everyday technology into a weapon. Tools made to help us work, connect, and stay safe are now being used to steal, spy, and deceive.Hackers don’t always break systems anymore, they use them. They hide inside…
ThreatsDay Bulletin: $15B Crypto Bust, Satellite Spying, Billion-Dollar Smishing, Android RATs & More

Oct 16, 2025 12:07 PM

Tags: android, control, crypto, rat, scam, smishing, spy, technology, tool

The online world is changing fast. Every week, new scams, hacks, and tricks show how easy it’s become to turn everyday technology into a weapon. Tools made to help us work, connect, and stay safe are now being used to steal, spy, and deceive.Hackers don’t always break systems anymore, they use them. They hide inside…
Panne bei Paypal-Partner: Versehentlich 300 Billionen USD in Krypto-Coins erzeugt

Oct 16, 2025 10:07 AM

Tags: crypto, finance

Kleiner Fehler, große Wirkung: Ein Paypal-Partner hat durch einen Fehler fast die dreifache Menge des globalen BIP in PYUSD-Stablecoins generiert. First seen on golem.de Jump to article: www.golem.de/news/panne-bei-paypal-partner-versehentlich-300-billionen-usd-in-krypto-coins-erzeugt-2510-201222.html
Thousands Hit by Malicious VS Code Extensions Stealing Source Code

Oct 15, 2025 10:07 PM

Tags: crypto, malicious

TigerJack’s fake VS Code extensions stole source code, mined crypto, and hijacked developer systems across 17,000 installations. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/news/malicious-vs-code-extension/
Thousands Hit by Malicious VS Code Extensions Stealing Source Code

Oct 15, 2025 10:07 PM

Tags: crypto, malicious

TigerJack’s fake VS Code extensions stole source code, mined crypto, and hijacked developer systems across 17,000 installations. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/news/malicious-vs-code-extension/
Thousands Hit by Malicious VS Code Extensions Stealing Source Code

Oct 15, 2025 10:07 PM

Tags: crypto, malicious

TigerJack’s fake VS Code extensions stole source code, mined crypto, and hijacked developer systems across 17,000 installations. First seen on esecurityplanet.com Jump to article: www.esecurityplanet.com/news/malicious-vs-code-extension/
GhostBat RAT Returns with Fake RTO Apps Targeting Indian Android Users with Telegram Bot-Driven Malware

Oct 15, 2025 4:54 PM

Tags: android, crypto, data, finance, india, malware, office, rat

A new trend of Android malware is sweeping across India, leveraging the guise of Regional Transport Office (RTO) apps to steal financial data, mine cryptocurrency, and exfiltrate SMS messages, all while secretly registering infected devices through Telegram bots. Known as GhostBat RAT, this new malware campaign has recently resurfaced. First seen on thecyberexpress.com Jump to article:…
GhostBat RAT Returns with Fake RTO Apps Targeting Indian Android Users with Telegram Bot-Driven Malware

Oct 15, 2025 4:54 PM

Tags: android, crypto, data, finance, india, malware, office, rat

A new trend of Android malware is sweeping across India, leveraging the guise of Regional Transport Office (RTO) apps to steal financial data, mine cryptocurrency, and exfiltrate SMS messages, all while secretly registering infected devices through Telegram bots. Known as GhostBat RAT, this new malware campaign has recently resurfaced. First seen on thecyberexpress.com Jump to article:…
TigerJack Hackers Target Developer Marketplaces with 11 Malicious VS Code Extensions

Oct 15, 2025 11:54 AM

Tags: backdoor, crypto, cyber, hacker, malicious, marketplace, threat

Sophisticated Threat Actor Compromises 17,000+ Developers Through Trojan Extensions That Steal Code and Mine Cryptocurrency. Operating since early 2025 under multiple publisher accounts (ab-498, 498, and 498-00), this sophisticated campaign deploys extensions that steal source code, mine cryptocurrency, and establish remote backdoors for complete system control. A newly identified threat actor known as TigerJack has…
U.S. seizes $15 billion in Bitcoin linked to massive forced-labor crypto scam

Oct 15, 2025 9:54 AM

Tags: crypto, fraud, government, scam

The U.S. government has seized about $15 billion worth of Bitcoin connected to what prosecutors call one of the largest cryptocurrency fraud and human trafficking operations … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/10/15/prince-group-crypto-scam-15-billion-in-bitcoin-seized/
U.S. seizes $15 billion in Bitcoin linked to massive forced-labor crypto scam

Oct 15, 2025 9:54 AM

Tags: crypto, fraud, government, scam

The U.S. government has seized about $15 billion worth of Bitcoin connected to what prosecutors call one of the largest cryptocurrency fraud and human trafficking operations … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2025/10/15/prince-group-crypto-scam-15-billion-in-bitcoin-seized/
Officials crack down on Southeast Asia cybercrime networks, seize $15B

Oct 14, 2025 8:24 PM

Tags: crypto, cybercrime, group, network

The cryptocurrency seizure and sanctions targeting the Prince Group, associates and affiliated businesses mark the most extensive action taken against cybercrime operations in the region to date. First seen on cyberscoop.com Jump to article: cyberscoop.com/southeast-asia-cybercrime-networks-sanctions-seizure/
US seizes $15 billion in crypto from ‘pig butchering’ kingpin

Oct 14, 2025 8:24 PM

Tags: crypto, group, scam

The U.S. Department of Justice has seized $15 billion in bitcoin from the leader of Prince Group, a criminal organization that stole billions of dollars from victims in the United States through cryptocurrency investment scams, also known as romance baiting or pig butchering. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/us-seizes-15-billion-in-crypto-from-pig-butchering-kingpin/
Hackers Mimic as OpenAI and Sora Services to Steal Login Credentials

Oct 14, 2025 1:23 PM

Tags: ai, credentials, crypto, cyber, hacker, login, openai, phishing, service

Hackers have launched a sophisticated phishing campaign impersonating both OpenAI and the recently released Sora 2 AI service. By cloning legitimate-looking landing pages, these actors are duping users into submitting their login credentials, participating in faux “gift” surveys, and even falling victim to cryptocurrency scams. Security researchers note that these deceptive domains are already ensnaring…
Astaroth Trojan Uses GitHub Images to Stay Active After Takedowns

Oct 14, 2025 12:23 PM

Tags: banking, credentials, crypto, github, malware

Astaroth banking trojan has evolved to use GitHub and steganography for resilient C2, hiding its vital commands in images. Learn how this sophisticated malware employs fileless techniques to steal banking and crypto credentials from users across Latin America. First seen on hackread.com Jump to article: hackread.com/astaroth-trojan-github-images-active-takedowns/
The Guardian view on the online scam industry: authorities must not forget that perpetrators are often victims too | Editorial

Oct 13, 2025 8:23 PM

Tags: business, china, crypto, cybercrime, email, jobs, scam

A lucrative sector is spreading fast as criminal enterprises force abused and trafficked workers to cheat othersA Chinese court last month <a href=”https://www.theguardian.com/world/2025/sep/30/china-court-sentences-11-people-to-death-over-alleged-role-in-family-run-myanmar-scam-operations”>sentenced 11 people to death over their roles in a illegal scam empire along the border with Myanmar. But it won’t end a noxious multibillion-dollar industry that devastates the lives of two sets…
Dull but dangerous: A guide to 15 overlooked cybersecurity blind spots

Oct 13, 2025 2:24 PM

Tags: access, ai, api, attack, backup, cloud, control, corporate, credentials, crypto, cybersecurity, data, detection, dns, edr, email, encryption, endpoint, exploit, firewall, firmware, governance, guide, iam, identity, iot, leak, least-privilege, linux, malicious, mfa, network, password, phishing, phone, ransomware, resilience, saas, sbom, service, siem, strategy, supply-chain, tool, unauthorized, update, vulnerability

Server time synchronization (NTP drift) Skewed clocks create a perfect cover for attackers. When your servers disagree about when events happened, correlation dies and forensics becomes fiction. Yet most organizations treat NTP like plumbing: set once and forget.Fix this now: Enforce a secure NTP hierarchy with authenticated sources. Monitor offset religiously. Block unauthorized NTP traffic…
Dull but dangerous: A guide to 15 overlooked cybersecurity blind spots

Oct 13, 2025 2:24 PM

Tags: access, ai, api, attack, backup, cloud, control, corporate, credentials, crypto, cybersecurity, data, detection, dns, edr, email, encryption, endpoint, exploit, firewall, firmware, governance, guide, iam, identity, iot, leak, least-privilege, linux, malicious, mfa, network, password, phishing, phone, ransomware, resilience, saas, sbom, service, siem, strategy, supply-chain, tool, unauthorized, update, vulnerability

Server time synchronization (NTP drift) Skewed clocks create a perfect cover for attackers. When your servers disagree about when events happened, correlation dies and forensics becomes fiction. Yet most organizations treat NTP like plumbing: set once and forget.Fix this now: Enforce a secure NTP hierarchy with authenticated sources. Monitor offset religiously. Block unauthorized NTP traffic…
North Korean Hackers Target Developers with 338 Malicious Software Packages

Oct 13, 2025 1:23 PM

Tags: attack, blockchain, control, crypto, cyber, endpoint, hacker, malicious, north-korea, social-engineering, software, supply-chain, threat

North Korean threat actors have escalated their Contagious Interview campaign, deploying 338 malicious npm packages with over 50,000 downloads to target cryptocurrency and blockchain developers through sophisticated social engineering tactics. The state-sponsored operation represents a significant evolution in supply chain attacks, utilizing more than 180 fake personas and a dozen command and control endpoints to…
WhatsApp Worm Targets Users with Banking Malware, Steals Login Information

Oct 13, 2025 10:23 AM

Tags: attack, banking, credentials, crypto, cyber, cybersecurity, exploit, login, malicious, malware, social-engineering, tactics, worm

Cybersecurity researchers have uncovered a sophisticated new campaign targeting WhatsApp users in Brazil with self-propagating malware designed to steal banking credentials and cryptocurrency exchange login information. The attack, first detected on September 29, 2025, represents a dangerous evolution in social engineering tactics that exploits users’ trust in familiar contacts to spread malicious payloads across messaging…
North Korean APT >>Contagious Interview<< Floods npm Registry with 338 Malicious Packages to Steal Crypto

Oct 11, 2025 12:23 PM

Tags: apt, crypto, malicious, north-korea

The post North Korean APT >>Contagious Interview
North Korean APT >>Contagious Interview<< Floods npm Registry with 338 Malicious Packages to Steal Crypto

Oct 11, 2025 12:23 PM

Tags: apt, crypto, malicious, north-korea

The post North Korean APT >>Contagious Interview
News alert: Lightship, OpenSSL submit OpenSSL 3.5.4, with post-quantum crypto on board

Oct 11, 2025 1:23 AM

Tags: crypto

NEWARK, N.J., October 9, 2025, CyberNewswire, Lightship Security, an Applus+ Laboratories company and accredited cryptographic security test laboratory, and the OpenSSL Corporation, the co-maintainer of the OpenSSL Library, announce the submission of OpenSSL version 3.5.4 to the… (more”¦) First seen on securityboulevard.com Jump to article: securityboulevard.com/2025/10/news-alert-lightship-openssl-submit-openssl-3-5-4-with-post-quantum-crypto-on-board/
Cryptohack Roundup: $21M SBI Crypto Heist

Oct 9, 2025 9:24 PM

Tags: crypto, exploit, hacker, north-korea, threat

Also: Shibarium Plans to Reimburse Victims, $1.8M Abracadabra Hack. This week, hackers stole $21 million from SBI crypto, Shibarium planned reimbursement for $4 million bridge exploit victims, Abracadabra lost $1.8 million in a hack and North Korean threat actors have set a new record stealing $2 billion this year so far. First seen on govinfosecurity.com…