🚀 Hackers Exploit DevOps Tool Vulnerabilities for Cryptocurrency Mining

According to PANews, security firm Wiz has identified a hacker group, codenamed JINX-0132, that is exploiting configuration vulnerabilities in DevOps tools for large-scale cryptocurrency mining attacks. The tools targeted include HashiCorp Nomad/Consul, Docker API, and Gitea, with approximately 25% of cloud environments at risk.

The attack methods involve deploying XMRig mining software using Nomad's default configuration, executing malicious scripts through unauthorized Consul API access, and controlling exposed Docker APIs to create mining containers. Wiz's data indicates that 5% of DevOps tools are directly exposed to the public internet, with 30% having configuration flaws.

Security teams recommend users promptly update software, disable unnecessary features, and restrict API access permissions to mitigate risks. This attack highlights the importance of cloud environment configuration management. Despite warnings from HashiCorp's official documentation about related risks, many users have not enabled basic security features. Experts emphasize that simple configuration adjustments can prevent most automated attacks.

#Hackers #DevOps #Cybersecurity #Cryptocurrency #Mining #Vulnerabilities #CloudSecurity #ConfigurationManagement #XMRig #SecurityUpdate #API #HashiCorp #Docker #Gitea

🚀 Microsoft Releases Emergency Patches for SharePoint Vulnerabilities

According to Cointelegraph, Microsoft has issued urgent security patches to address zero-day vulnerabilities in its SharePoint work management software. These vulnerabilities have led to spoofing attacks, compromising sensitive data and passwords across governments, businesses, and universities globally. The company acknowledged ongoing attacks targeting on-premises SharePoint Server customers, partially mitigated by the July Security Update.

The affected software includes on-premises versions of SharePoint, excluding the cloud-based SharePoint 365. Microsoft has released cumulative patches for "SharePoint Server Subscription Edition," "SharePoint Server 2019," and "SharePoint Server 2016." The vulnerabilities, identified as CVE-2025-53770 and CVE-2025-53771, were detailed in a blog post by Netherlands-based Eye Security, which described them as a "large-scale exploitation of a new SharePoint remote code execution." Eye Security reported four waves of attacks by Saturday, with numerous systems compromised.

The Cybersecurity and Infrastructure Security Agency (CISA) highlighted the use of ToolShell in these attacks, enabling malicious actors to access SharePoint content, including file systems and internal configurations, and execute code over the network. Microsoft's SharePoint product page notes that over 200,000 organizations and 190 million people utilize the software for content management, team sites, and intranets, though these figures may include users of the unaffected cloud-based version.

Microsoft has faced criticism for security lapses in the past, including a Windows 10 vulnerability introduced by a security update, similar to the current SharePoint issues. In 2024, the company was scrutinized by the United States Congress over security vulnerabilities that endangered federal officials' email accounts. U.S. President Donald Trump was involved in discussions regarding these security concerns. Microsoft's ongoing efforts to enhance cybersecurity remain crucial as it navigates these challenges.

#Microsoft #SharePoint #Vulnerabilities #Cybersecurity #EmergencyPatches #SpoofingAttacks #SecurityUpdate #CISA #RemoteCodeExecution #DataSecurity #OnPremises #ToolShell #Exploitation #PatchManagement #CVE #SecurityLapses #FederalSecurity

🚀 HashiCorp Vault Vulnerabilities Pose Security Risks in Cryptocurrency Sector

According to PANews, recent reports from Cyata have revealed multiple zero-day vulnerabilities in HashiCorp Vault, a widely used tool for wallet and key management in the cryptocurrency industry. These vulnerabilities affect critical areas such as authentication, identification, and authorization. Some of these flaws can bypass lock and multi-factor authentication protections, potentially allowing attackers to execute remote code, posing a significant threat to infrastructure security. The Cyata team has collaborated with HashiCorp to address these issues. 23pds, the Chief Information Security Officer at SlowMist Technology, advises relevant organizations to promptly upgrade to the latest version to mitigate potential risks.

#HashiCorp #Vault #Vulnerabilities #Security #Cryptocurrency #ZeroDay #Authentication #Authorization #RemoteCode #InfrastructureSecurity #Upgrade

🚀 Anthropic's Report Highlights Vulnerabilities in Smart Contracts

According to Foresight News, Anthropic has released a report detailing the performance of its models, Claude Opus 4.5, Claude Sonnet 4.5, and GPT-5, on the SCONE-bench benchmark. This benchmark includes 405 real-world attacked contracts from 2020 to 2025. The models identified exploitable vulnerabilities worth approximately $4.6 million in contracts attacked after the knowledge update time of March 2025.

In addition, a simulation test was conducted on 2,849 recently deployed contracts with no known vulnerabilities. During this test, Sonnet 4.5 and GPT-5 each discovered two new zero-day vulnerabilities, potentially leading to a combined loss of $3,694. Notably, the API cost for GPT-5 was $3,476.

#Anthropic #ClaudeOpus #ClaudeSonnet #GPT5 #SmartContracts #Vulnerabilities #SCONEbench #ForesightNews #ZeroDay #ExploitableVulnerabilities #BlockchainSecurity

🚀 AI Agents Demonstrate Significant On-Chain Attack Capabilities

According to BlockBeats, recent research by Anthropic reveals that AI agents possess substantial on-chain attack capabilities. In simulated tests on smart contracts that were hacked between 2020 and 2025, Claude Opus 4.5, Sonnet 4.5, and GPT-5 collectively replicated vulnerabilities valued at approximately $4.6 million. Additionally, while scanning 2,849 contracts with no known vulnerabilities, the models discovered two new zero-day vulnerabilities and successfully simulated profits.

The study highlights that the profitability of AI-driven on-chain attacks has doubled approximately every 1.3 months over the past year, indicating that AI technology is fully capable of autonomously exploiting vulnerabilities for profit.

#AIagents #onchainattacks #smartcontracts #vulnerabilities #ClaudeOpus #Sonnet #GPT5 #zeroDayVulnerabilities #AIdriven #cybersecurity #blockchain #profits #AIresearch

🚀 Security Flaws Detected in Two Major Trading Platforms

According to BlockBeats, SlowMist's Cosine reported on the X platform that the SlowMist team has identified serious vulnerabilities in two trading platforms, which directly impact the security of funds. Attempts to contact the platforms have been unsuccessful, and public outreach has also yielded no response. Cosine noted that one platform has a 24-hour trading volume of $3.7 billion, while the other has a volume of $240 million. A tweet from the SlowMist team account indicated that they had proactively reached out to a trading platform named 'ICRYPEX Global' the previous day.

#SecurityFlaws #TradingPlatforms #SlowMist #Cosine #ICRYPEXGlobal #Vulnerabilities #FundsSecurity #BlockBeats #CryptoSecurity #XPlatform

🚀 [ContractVulnerability] Shift in DeFi Security Approach Advocated by a16z Researcher

A senior security researcher at a16z Crypto, Daejun Park, has called for a shift in DeFi protocols from 'code as law' to 'specification as law,' advocating for a more principled security approach. According to ChainCatcher, Park suggests implementing standardized specifications and invariant checks to hard-code security measures, automatically reversing transactions that violate predefined rules. He notes that nearly all known vulnerabilities would trigger these checks, potentially preventing hacker attacks during execution.

A report from Slowmist highlights that hackers stole over $649 million last year through code vulnerabilities. Even established protocols like Balancer, which has been operational since 2021, suffered a $128 million loss due to code vulnerabilities in November last year. Developers are increasingly concerned about hackers using AI to find vulnerabilities.

The head of security at Immunefi points out that invariant checks could increase gas costs, potentially driving away users, and are not a cure-all solution. The co-founder of Asymmetric Research mentions that many vulnerabilities are challenging to write invariant rules for that can detect attacks without false positives.

#DeFi #Security #a16z #Blockchain #Vulnerabilities #InvariantChecks #Crypto #HackerAttacks #AI #SmartContracts #Slowmist #Immunefi #GasCosts #SpecificationAsLaw #ChainCatcher

🚀 Clawdbot AI Assistant Faces Security and Cost Challenges

Clawdbot, an open-source AI assistant, has rapidly gained popularity among developers for its advanced automation features across various messaging platforms. According to NS3.AI, despite its innovative capabilities, the platform has been found to have significant security vulnerabilities. These issues expose users to potential remote attacks due to default open network configurations. Additionally, high operational costs and extensive token usage have raised concerns, leading to calls for cautious adoption and improved security measures.

#Clawdbot #AIassistant #security #costchallenges #opensource #automation #messagingplatforms #vulnerabilities #remotetargets #tokenusage

🚀 DeFi Security Developments Highlight Mixed Outcomes Amid Market Uncertainty

Recent developments in decentralized finance (DeFi) security have shown a blend of successful hack recoveries and persistent vulnerabilities. According to NS3.AI, prominent firms are under fire for security shortcomings, while new funding commitments are being made to bolster Ethereum's infrastructure. Additionally, major cryptocurrency exchanges remain under scrutiny as market uncertainty continues in the wake of significant crashes.

#DeFi #security #hackrecovery #vulnerabilities #Ethereum #cryptocurrencyexchanges #marketuncertainty #funding #ETH

🚀 Dispute Arises Over Causes of October 10 Crypto Flash Crash

A disagreement has surfaced between cryptocurrency exchange executives and traders concerning the reasons behind the flash crash and mass liquidations on October 10. According to NS3.AI, the exchange's leader attributes the crash to Ethena’s USDe leveraged yield loop. In contrast, traders believe that thin liquidity or flawed market mechanisms were the primary causes. This debate underscores persistent worries about leverage and vulnerabilities in the market structure of crypto trading.

#crypto #flashcrash #liquidity #leverage #trading #cryptocurrency #marketstructure #ethena #usde #massliquidations #vulnerabilities #dispute

🚀 U.S. and Mexico to Develop Coordinated Trade Policy for Mineral Supply Chain Vulnerabilities

The United States Trade Representative (USTR) has announced that the U.S. and Mexico are planning to establish a coordinated trade policy aimed at addressing vulnerabilities in the supply chain of critical minerals. According to Jin10, this initiative is part of a broader effort to enhance the resilience and security of mineral supply chains, which are vital for various industries. The collaboration seeks to mitigate risks associated with supply disruptions and ensure a stable flow of essential minerals between the two countries. This move underscores the importance of international cooperation in maintaining robust supply chains amid global economic challenges.

#US Mexico #Trade Policy #Mineral Supply Chain #Vulnerabilities #Critical Minerals #Supply Chain Security #International Cooperation

🚀 OpenAI Launches EVMbench to Enhance Smart Contract Security

OpenAI has unveiled EVMbench, a benchmark aimed at evaluating AI models' capabilities in identifying, fixing, and exploiting vulnerabilities in smart contracts. According to NS3.AI, this initiative underscores the growing significance of comprehending smart contracts as AI agents may evolve into autonomous entities within crypto-native settings. The benchmark signifies progress towards incorporating AI-driven autonomous operations in blockchain ecosystems, with potential impacts on security and the infrastructure of decentralized economies.

#OpenAI #EVMbench #SmartContractSecurity #AIModels #Vulnerabilities #BlockchainEcosystems #DecentralizedEconomies #CryptoSecurity #AIAutonomy #Benchmark

🚀 AI Detects 92% of Real-World DeFi Vulnerabilities, Study Finds

A recent study reveals that specialized AI systems have successfully identified vulnerabilities in 90 DeFi smart contracts with a detection accuracy of 92%. According to Bitalk News, this is a significant improvement compared to GPT-5.1-based systems, which only detected 34% of vulnerabilities, involving a total of $7.5 million.

The specialized AI utilized domain-specific security methods, surpassing the limitations of traditional AI models. The study highlighted that the total losses associated with the smart contracts amounted to $228 million, with the vulnerabilities detected by the specialized system valued at $96.8 million.

These findings have raised concerns about the challenges AI poses in accelerating crypto-related crimes. Various studies indicate that AI can exploit smart contract vulnerabilities at a low cost, rapidly enhancing attack capabilities.

The research data and evaluation framework have been made available on GitHub as open-source, although the complete tools have not been released to prevent misuse.

#AI #DeFi #Vulnerabilities #SmartContracts #DetectionAccuracy #CryptoSecurity #BitalkNews #GPT5 #CyberSecurity #OpenSource #AIinCrypto