Tag: crypto
-
Singer loses life savings to fake wallet downloaded from the Apple App Store
If you hold cryptocurrency, there’s a very simple golden rule that you should always follow. Never hand over your seed phrase. First seen on bitdefender.com Jump to article: www.bitdefender.com/en-us/blog/hotforsecurity/singer-loses-life-savings-fake-wallet
-
New CGrabber and Direct-Sys Malware Spread Through GitHub ZIP Files
Hackers spread CGrabber and Direct-Sys malware through GitHub ZIP files, bypassing security tools to steal passwords, crypto wallets, and user data. First seen on hackread.com Jump to article: hackread.com/cgrabber-direct-sys-malware-github-zip-files/
-
$15M Grinex Hack Forces Trading Halt After Major Crypto Wallet Breach
The Grinex cyberattack has once again drawn attention to the vulnerabilities facing the global Crypto exchange ecosystem. In a cyberattack on Grinex, the Kyrgyzstan-based platform was forced to suspend all trading operations after hackers executed a large-scale wallet breach, stealing more than $15 million in USDT. First seen on thecyberexpress.com Jump to article: thecyberexpress.com/grinex-cyberattack-15m-wallet-breach/
-
French cops free mother and son after 20-hour crypto kidnap ordeal
Tags: cryptoLatest in a string of cases that have earned France an unfortunate title First seen on theregister.com Jump to article: www.theregister.com/2026/04/15/crypto_kidnap_france/
-
French cops free mother and son after 20-hour crypto kidnap ordeal
Tags: cryptoLatest in a string of cases that have earned France an unfortunate title First seen on theregister.com Jump to article: www.theregister.com/2026/04/15/crypto_kidnap_france/
-
French cops free mother and son after 20-hour crypto kidnap ordeal
Tags: cryptoLatest in a string of cases that have earned France an unfortunate title First seen on theregister.com Jump to article: www.theregister.com/2026/04/15/crypto_kidnap_france/
-
Fake Ledger Live App on Apple Store Linked to $9.5M Crypto Theft
Apple approved a fake Ledger Live app on its App Store, allowing scammers to steal $9.5 million from more than 50 users. Did you install this app? First seen on hackread.com Jump to article: hackread.com/fake-ledger-live-app-apple-store-crypto-theft/
-
Crypto-exchange Kraken extorted by hackers after insider breach
The Kraken cryptocurrency exchange announced that a cybercrime group is trying to extort the company by threatening to release videos showing internal systems that host client data. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/crypto-exchange-kraken-extorted-by-hackers-after-insider-breach/
-
Telegram Is Still Hosting a Sanctioned $21 Billion Crypto Scammer Black Market
The UK designated Xinbi Guarantee as an enabler of crypto scammers and human trafficking weeks ago. Telegram is still hosting it in plain sight. First seen on wired.com Jump to article: www.wired.com/story/telegram-is-still-hosting-a-sanctioned-21-billion-crypto-scammer-black-market/
-
Fake Ledger Live app on Apple’s App Store stole $9.5M in crypto
A malicious Ledger Live app for macOS available from Apple’s App Store has drained approximately $9.5 million in cryptocurrency from 50 victims in just a few days this month. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/fake-ledger-live-app-on-apples-app-store-stole-95m-in-crypto/
-
Omnistealer uses the blockchain to steal everything it can
This malware is coming for your password managers, saved logins, cloud storage, crypto wallets, and just about anything else it can reach. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/omnistealer-uses-the-blockchain-to-steal-everything-it-can/
-
US, UK and Canada disrupt $45M crypto theft in Operation Atlantic
US, UK and Canada ran Operation Atlantic, uncovering $45M in crypto theft and freezing $12M to return to victims. An international law enforcement operation from the US, UK and Canada, codenamed Operation Atlantic, has targeted large-scale cryptocurrency theft schemes. Authorities identified more than $45 million in stolen digital assets and successfully froze around $12 million.…
-
Q1 2026 Open Source Malware Index: Adaptive Attacks, Familiar Weaknesses
Tags: access, ai, api, attack, automation, cloud, credentials, crypto, data, github, guide, intelligence, kubernetes, linux, macOS, malicious, malware, open-source, pypi, risk, software, supply-chain, tactics, theft, tool, update, windows, worm<div cla TL;DR Sonatype identified 21,764 open source malware packages in Q1 2026, bringing the total logged since 2017 to 1,346,867. npm accounted for 75% of malicious packages this quarter. Trojans dominated, with most activity focused on credential theft, host reconnaissance, and staged payload delivery. The quarter’s defining pattern was trust abuse: attackers succeeded by…
-
GUEST ESSAY: Google’s 2029 deadline exposes readiness gap as move to quantum-safe crypto lags
For years, quantum risk was easy for most institutions to treat as premature: real in theory, urgent someday, but not yet an operational problem. That is no longer tenable. Related: AI spawns semantic attacks Two developments this month brought the… (more”¦) First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/04/guest-essay-googles-2029-deadline-exposes-readiness-gap-as-move-to-quantum-safe-crypto-lags/
-
Operationalize your post-quantum computing (PQC) readiness: Private PQC certificate management, built into Sectigo Certificate Manager
Post-quantum cryptography (PQC) readiness requires a gradual, practical approach not a sudden shift. Sectigo Private PQC, built into Sectigo Certificate Manager (SCM), enables enterprises to safely experiment with PQC certificates using existing workflows, governance, and lifecycle management. With built-in guardrails and support for ML-DSA algorithms, organizations can test real-world operational impacts, build crypto agility, and…
-
Hackers Exploit Obsidian Plugin to Deploy Cross-Platform Malware
Hackers are abusing Obsidian’s Shell Commands plugin and shared cloud vaults to deliver a new cross”‘platform malware chain that ends with the PHANTOMPULSE remote access trojan. Attackers pose as a venture capital firm targeting financial and cryptocurrency professionals, first engaging over LinkedIn and then moving conversations to Telegram group chats with multiple fake “partners” to…
-
Fake Proxifier GitHub Installer Spreads ClipBanker Crypto Malware
Hackers are abusing a fake Proxifier installer hosted on GitHub to deliver a multi”‘stage ClipBanker malware that silently hijacks cryptocurrency transactions from infected systems. The campaign combines search”‘engine poisoning, trojanized installers, and fileless techniques to stay under the radar while swapping victims’ wallet addresses with those controlled by attackers. The infection typically begins when users…
-
JanelaRAT Malware Targets Latin American Banks with 14,739 Attacks in Brazil in 2025
Banks and financial institutions in Latin American countries like Brazil and Mexico have continued to be the target of a malware family called JanelaRAT.A modified version of BX RAT, JanelaRAT is known to steal financial and cryptocurrency data associated with specific financial entities, as well as track mouse inputs, log keystrokes, take screenshots, and collect…
-
$12 million frozen, 20,000 victims identified in crypto scam crackdown
More than $12 million has been frozen, and over 20,000 victims have been identified in an international law enforcement operation targeting cryptocurrency and investment … First seen on helpnetsecurity.com Jump to article: www.helpnetsecurity.com/2026/04/13/crypto-scam-crackdown-12-million-frozen/
-
Operation Atlantic Seizes $12m in Crypto Losses
UK, US and Canadian authorities have identified over 20,000 victims of approval phishing scams that trick users into handing over full crypto wallet access First seen on infosecurity-magazine.com Jump to article: www.infosecurity-magazine.com/news/operation-atlantic-seizes-12m/
-
AI and cryptocurrency scams are costing Americans billions, FBI reports
The fraud landscape has been changed by AI and cryptocurrency in a way that should concern organisations and individuals alike. First seen on fortra.com Jump to article: www.fortra.com/blog/ai-and-cryptocurrency-scams-are-costing-americans-billions-fbi-reports
-
AI and cryptocurrency scams are costing Americans billions, FBI reports
The fraud landscape has been changed by AI and cryptocurrency in a way that should concern organisations and individuals alike. First seen on fortra.com Jump to article: www.fortra.com/blog/ai-and-cryptocurrency-scams-are-costing-americans-billions-fbi-reports
-
Over 20,000 crypto fraud victims identified in international crackdown
An international law enforcement action led by the U.K.’s National Crime Agency (NCA) has identified over 20,000 victims of cryptocurrency fraud across Canada, the United Kingdom, and the United States. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/police-identifies-20-000-victims-in-international-crypto-fraud-crackdown/
-
Your Push Notifications Aren’t Safe From the FBI
Plus: Iran’s internet blackout hits the 1,000-hour mark, cryptocurrency scams result in a record amount of money stolen from Americans, and more. First seen on wired.com Jump to article: www.wired.com/story/security-news-this-week-your-push-notifications-arent-safe-from-the-fbi/
-
‘It reads like a spy novel’: $280 million theft from Drift involved North Korean fake companies, cutouts
Drift officials said the operation began six months ago, when they were approached at a cryptocurrency conference by members of a company claiming to focus on quantitative trading. First seen on therecord.media Jump to article: therecord.media/drift-crypto-theft-post-mortem-north-korea
-
Crushing the Axios supply chain threat with Tenable Hexa AI: Use cases for agentic AI
Tags: ai, attack, business, credentials, crypto, cve, data, data-breach, malicious, moveIT, network, okta, radius, risk, software, supply-chain, threat, update, vulnerability, zero-daySee how you can use Tenable Hexa AI to determine in minutes if you’re impacted by the Axios npm supply chain attack. Learn how easy it is to automate configuration of scans, identify impacted assets, prioritize remediation, and more using agentic AI from Tenable. Key takeaways: Tenable Hexa AI, the agentic engine of the Tenable…
-
Crushing the Axios supply chain threat with Tenable Hexa AI: Use cases for agentic AI
Tags: ai, attack, business, credentials, crypto, cve, data, data-breach, malicious, moveIT, network, okta, radius, risk, software, supply-chain, threat, update, vulnerability, zero-daySee how you can use Tenable Hexa AI to determine in minutes if you’re impacted by the Axios npm supply chain attack. Learn how easy it is to automate configuration of scans, identify impacted assets, prioritize remediation, and more using agentic AI from Tenable. Key takeaways: Tenable Hexa AI, the agentic engine of the Tenable…