Tag: crypto
-
Krypto-Betrug mit KI & Deepfakes: Ein Anleger verliert fast alles
Kursgewinne bei Kryptowährungen ziehen viele private Anleger an, rufen jedoch ebenso Kriminelle auf den Plan. Nahezu täglich werden Verbraucher Opfer zweifelhafter Online-Handelsplattformen. Wer sich von seriös wirkenden, in Wahrheit betrügerischen Webseiten täuschen lässt, riskiert im schlimmsten Fall den vollständigen Verlust seines investierten Kapitals. First seen on welivesecurity.com Jump to article: www.welivesecurity.com/de/videos/krypto-betrug-mit-ki-deepfakes-ein-anleger-verliert-fast-alles/
-
Gestohlene IAM-Keys starten Krypto-Mining direkt in AWS Klau reicht: Angreifer starten Mining in AWS ohne jede Lücke
First seen on security-insider.de Jump to article: www.security-insider.de/aws-krypto-mining-a-4b261723d832727305516431f7890644/
-
Cryptohack Roundup: Alleged Fraud Kingpin Deported to China
Also: Unleash Protocol Hack, LastPass Breach Linked to Crypto Thefts. This week, an alleged fraud kingpin deported to China, Bitfinex hacker gained early release, Unleash Protocol’s $3.9M hack, TRM tied crypto thefts to the LastPass breach, Trust Wallet’s link to the Sha1-Hulud attack, Flow’s NFT loan fallout, Ledger’s data exposure and Kontigo reimbursements. First seen…
-
Typosquatting schleust Wallet-Stealer in NuGet-Projekte – NuGet-Trojaner stiehlt Krypto-Wallets über .NET-Projekte
Tags: cryptoFirst seen on security-insider.de Jump to article: www.security-insider.de/nuget-trojaner-krypto-wallet-a-c078675a4fb5ee1a4d78d1d5408bdcda/
-
New GoBruteforcer attack wave targets crypto, blockchain projects
A new wave of GoBruteforcer botnet malware attacks is targeting databases of cryptocurrency and blockchain projects on exposed servers believed to be configured using AI-generated examples. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/new-gobruteforcer-attack-wave-targets-crypto-blockchain-projects/
-
Malicious NPM Packages Deliver NodeCordRAT
IntroductionZscaler ThreatLabz regularly monitors the npm database for suspicious packages. In November 2025, ThreatLabz identified three malicious packages: bitcoin-main-lib, bitcoin-lib-js, and bip40. The bitcoin-main-lib and bitcoin-lib-js packages execute a postinstall.cjs script during installation, which installs bip40, the package that contains the malicious payload. This final payload, named NodeCordRAT by ThreatLabz, is a remote access trojan (RAT) with data-stealing capabilities. It is also possible to download bip40…
-
Malicious NPM Packages Deliver NodeCordRAT
IntroductionZscaler ThreatLabz regularly monitors the npm database for suspicious packages. In November 2025, ThreatLabz identified three malicious packages: bitcoin-main-lib, bitcoin-lib-js, and bip40. The bitcoin-main-lib and bitcoin-lib-js packages execute a postinstall.cjs script during installation, which installs bip40, the package that contains the malicious payload. This final payload, named NodeCordRAT by ThreatLabz, is a remote access trojan (RAT) with data-stealing capabilities. It is also possible to download bip40…
-
Bitfinex Hack Mastermind Behind $10 Billion Theft Gets Early Release
Ilya Lichtenstein, the man behind the massive 2016 Bitfinex Bitcoin theft, has been released early from prison. Read how the First Step Act and a trail of Walmart gift cards led to this major update in one of the world’s largest crypto thefts. First seen on hackread.com Jump to article: hackread.com/bitfinex-hack-mastermind-gets-early-release/
-
Ledger Confirms Global-e Breach, Warns Users of Phishing Attempts
Ledger confirms data breach via Global-e partner. Customer info exposed, phishing attacks active. No passwords or crypto recovery phrases leaked. First seen on hackread.com Jump to article: hackread.com/ledger-global-e-breach-phishing-attempts/
-
Gratis-Versprechen, teurer Fehler: Hacker kapert über Windows-Aktivierungstool tausende Krypto-Transfers
First seen on t3n.de Jump to article: t3n.de/news/windows-aktivierungstool-infiziert-pc-1724021/
-
Crypto wallet shop Ledger confirms customer data lifted in Global-e snafu
Order and contact details accessed via ecommerce partner, and phishing has begun First seen on theregister.com Jump to article: www.theregister.com/2026/01/06/ledger_globale_breach/
-
AI, Quantum, and the New Threat Frontier: What Will Define Cybersecurity in 2026?
Tags: access, ai, api, application-security, attack, authentication, automation, business, ciso, cloud, compliance, computer, computing, container, control, crypto, cryptography, cyber, cybersecurity, data, data-breach, defense, detection, encryption, exploit, finance, flaw, framework, governance, government, healthcare, iam, identity, infrastructure, injection, LLM, malicious, metric, monitoring, network, nist, open-source, oracle, regulation, resilience, risk, service, skills, software, strategy, supply-chain, threat, tool, vulnerability, vulnerability-management, waf, zero-day, zero-trustAI, Quantum, and the New Threat Frontier: What Will Define Cybersecurity in 2026? madhav Tue, 01/06/2026 – 04:44 If we think 2025 has been fast-paced, it’s going to feel like a warm-up for the changes on the horizon in 2026. Every time this year, Thales experts become cybersecurity oracles and predict where the industry is…
-
What is Stealc Malware?
Stealc malware is an advanced information-stealing malware (infostealer) designed to secretly collect sensitive data from infected systems. Its primary focus is on web browsers, where it extracts saved passwords, cookies, autofill data, and session information. In many cases, it also targets cryptocurrency wallets and system files, making it a high-risk threat for both individuals and……
-
Hackers Steal $35M in Cryptocurrency Following LastPass Breach
Tags: attack, blockchain, breach, crypto, cyber, cybercrime, data-breach, encryption, hacker, intelligence, password, russiaRussian cybercriminals have laundered over $35 million in stolen cryptocurrency linked to the devastating 2022 LastPass breach, according to new forensic analysis by blockchain intelligence firm TRM Labs. The 2022 attack exposed encrypted password vaults belonging to roughly 30 million customers worldwide. While the vaults were initially protected by encryption, attackers who downloaded them could…
-
The cybercriminal behind the 2016 Bitfinex hack has been released from prison early thanks to Trump’s 2018 First Step Act
Ilya Lichtenstein, who was sentenced to prison for his role in the Bitfinex hack that occurred in 2016, has been released from prison early. Ilya Lichtenstein (38), convicted for the hack of the cryptocurrency stock exchange Bitfinex in 2016, has been released from prison early. A Trump administration official told CNBC that Lichtenstein served significant prison time…
-
Bitfinex Hack Convict Ilya Lichtenstein Released Early Under U.S. First Step Act
Tags: cryptoIlya Lichtenstein, who was sentenced to prison last year for money laundering charges in connection with his role in the massive hack of cryptocurrency exchange Bitfinex in 2016, said he has been released early.In a post shared on X last week, the 38-year-old announced his release, crediting U.S. President Donald Trump’s First Step Act. According…
-
Experts Trace $35m in Stolen Crypto to LastPass Breach
TRM Labs says it has recorded $35m drained from users’ wallets following 2022 LastPass breach First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/experts-trace-35m-stolen-crypto/
-
Experts Trace $35m in Stolen Crypto to LastPass Breach
TRM Labs says it has recorded $35m drained from users’ wallets following 2022 LastPass breach First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/experts-trace-35m-stolen-crypto/
-
Experts Trace $35m in Stolen Crypto to LastPass Breach
TRM Labs says it has recorded $35m drained from users’ wallets following 2022 LastPass breach First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/experts-trace-35m-stolen-crypto/
-
Krypto-Hacks 2025: Noch nie haben Cyberkriminelle so viel Geld erbeutet
Tags: cryptoFirst seen on t3n.de Jump to article: t3n.de/news/krypto-hacks-2025-rekord-cyberkriminelle-1723034/
-
Bitfinex hacker Ilya Lichtenstein credits Trump for early release from prison
Ilya Lichtenstein, who pled guilty to money laundering charges tied to his role in the massive hack of crypto exchange Bitfinex, has apparently been released early from prison. First seen on techcrunch.com Jump to article: techcrunch.com/2026/01/03/bitfinex-hacker-ilya-lichtenstein-credits-trump-for-early-release-from-prison/
-
Bitfinex crypto thief who was serving five years thanks Trump for early release
Tags: cryptoNetflix documentary part 2 in the works? First seen on theregister.com Jump to article: www.theregister.com/2026/01/02/bitfinex_crypto_thief_released/
-
Cryptocurrency theft attacks traced to 2022 LastPass breach
Blockchain investigation firm TRM Labs says ongoing cryptocurrency thefts have been traced to the 2022 LastPass breach, with attackers draining wallets years after encrypted vaults were stolen and laundering the crypto through Russian exchanges. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/cryptocurrency-theft-attacks-traced-to-2022-lastpass-breach/
-
Why 47-Day TLS and SSL Certificate Renewal Cycles Alarm CIOs
Visibility Gaps Increase the Risk of Certificate-Driven Outages. Moving to 47-day TLS and SSL certificate renewal cycles by 2029 will turn certificate management into an enterprise risk. Automation and crypto-governance are now board-level imperatives. Enterprises can prepare for continuous renewal cycles without losing resilience, says Sectigo CEO Kevin Weiss. First seen on govinfosecurity.com Jump to…
-
Trust Wallet links $8.5 million crypto theft to Shai-Hulud NPM attack
Trust Wallet believes the compromise of its web browser to steal roughly $8.5 million from over 2,500 crypto wallets is likely related to an “industry-wide” Sha1-Hulud attack in November. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/trust-wallet-links-85-million-crypto-theft-to-shai-hulud-npm-attack/
-
New GlassWorm malware wave targets Macs with trojanized crypto wallets
A fourth wave of the “GlassWorm” campaign is targeting macOS developers with malicious VSCode/OpenVSX extensions that deliver trojanized versions of crypto wallet applications. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/new-glassworm-malware-wave-targets-macs-with-trojanized-crypto-wallets/
-
Trust Wallet confirms second Shai-Hulud supply-chain attack, $8.5M in crypto stolen
Trust Wallet says a second Shai-Hulud supply-chain attack likely compromised its Chrome extension, leading to the theft of about $8.5M in crypto. Trust Wallet linked a second Shai-Hulud supply-chain attack to its Chrome extension hack, which resulted in the theft of about $8.5 million in crypto assets. The investigation reveals that the attacker independently developed…
-
2 Cyber Pros Admit to Being BlackCat Ransomware Affiliates
Americans Extorted at Least 5 Firms, Earning $1 Million From a Medical Device Maker. Two American cybersecurity professionals who moonlighted as BlackCat ransomware gang affiliates pleaded guilty to using the crypto-locking malware to extort at least five victims in the United States, including a medical device maker that paid a cryptocurrency ransom worth over $1…