🚀 Malicious Software Packages Target Bitcoin Wallet Library
#Bitcoin #Malware #CyberSecurity #Python #BitcoinWallet #SecurityThreat #GitHub #CryptoSecurity #BTC
According to ChainCatcher, security researchers at ReversingLabs have identified malicious software packages targeting the popular Python Bitcoin wallet library, bitcoinlib. These packages, named 'bitcoinlibdbfix' and 'bitcoinlib - dev,' were designed to disguise themselves as solutions to error messages encountered during Bitcoin transactions, with the intent to overwrite legitimate commands and steal sensitive database files.
The malicious developers also participated in discussions on GitHub, advocating for the use of their libraries. However, other developers correctly identified the scheme as fraudulent. The two packages have since been removed and are no longer available for download, eliminating the risk they posed to developers.#Bitcoin #Malware #CyberSecurity #Python #BitcoinWallet #SecurityThreat #GitHub #CryptoSecurity #BTC
🚀 Security Alert Issued Over Malicious Code in Polymarket Trading Bot
#SecurityAlert #MaliciousCode #Polymarket #TradingBot #Cybersecurity #SlowMist #WalletTheft #GitHub
According to BlockBeats, a security warning has been issued by SlowMist Technology's Chief Information Security Officer, 23pds, regarding a malicious code hidden in a Polymarket trading bot program. The program, known as 'polymarket-copy-trading-bot,' was found to contain code that automatically reads users' '.env' files, which include wallet private keys, leading to potential theft of funds. The developer of this program has repeatedly modified and submitted the code on GitHub, intentionally concealing the malicious package.#SecurityAlert #MaliciousCode #Polymarket #TradingBot #Cybersecurity #SlowMist #WalletTheft #GitHub
🚀 GitHub Project Compromised by Malicious Code
#GitHub #MaliciousCode #PolymarketCopyTradingBot #AssetTheft #CyberSecurity #WalletPrivateKeys #Hacker #ExcluderMcpPackage
According to Odaily, the GitHub project known as polymarket-copy-trading-bot has been compromised by malicious code. The program is designed to automatically access the user's .env file upon startup, extracting wallet private keys. These keys are then transmitted to a hacker's server through a concealed malicious dependency package, excluder-mcp-package@1.0.4, resulting in asset theft.#GitHub #MaliciousCode #PolymarketCopyTradingBot #AssetTheft #CyberSecurity #WalletPrivateKeys #Hacker #ExcluderMcpPackage
🚀 Aave DAO Proposes Transfer of Brand Assets to DAO Control
#AaveDAO #AAVE #brandassets #DAOcontrol #Snapshot #Aave #legalentity #AaveLabs #BGDLabs #socialmedia #domainnames #gitHub #npm #proposal
According to PANews, Aave DAO has initiated a proposal titled 'ARFC] $AAVE token alignment. Phase 1 - Ownership' on the Snapshot platform. The proposal aims to consolidate the ownership of the 'Aave' brand name, domain names including aave.com, social media accounts (such as X, Discord, Instagram), and online organizations (like GitHub and npm) under a legal entity controlled by the DAO. Additionally, it seeks to establish mechanisms to prevent abuse and enable legal recourse. The proposal requests current holders, such as Aave Labs and BGD Labs, to transfer these assets. The voting period is set from December 23 at 10:40 to December 26 at 10:40 (UTC+8). The proposal was authored by Ernesto Boado, co-founder of BGD Labs.#AaveDAO #AAVE #brandassets #DAOcontrol #Snapshot #Aave #legalentity #AaveLabs #BGDLabs #socialmedia #domainnames #gitHub #npm #proposal
🚀 Kaspersky Warns of New Malware Targeting Windows Users
#Kaspersky #Malware #Stealka #WindowsUsers #Cybersecurity #InformationStealing #FinancialData #BrowserCredentials #Cryptocurrency #GitHub #SourceForge #PiratedSoftware #Obfuscation #PasswordTheft #DigitalCrime
According to BlockBeats, global cybersecurity firm Kaspersky has issued an urgent alert regarding a new sophisticated information-stealing tool named 'Stealka.' This malware has begun large-scale attacks on Windows users. Discovered at the end of 2025, Stealka is specifically designed to collect sensitive financial data, browser credentials, and cryptocurrency wallet information.
The malware is primarily distributed through deceptive platforms like GitHub and SourceForge, masquerading as pirated software or cracked versions of high-demand applications. Stealka poses a significant threat due to its use of advanced obfuscation techniques, allowing it to bypass traditional signature-based security solutions and remain undetected during comprehensive scans of victim devices.
This threat emerges amid a nearly 60% surge in password theft detections throughout the year, marking a more aggressive phase in the evolution of digital financial crime.#Kaspersky #Malware #Stealka #WindowsUsers #Cybersecurity #InformationStealing #FinancialData #BrowserCredentials #Cryptocurrency #GitHub #SourceForge #PiratedSoftware #Obfuscation #PasswordTheft #DigitalCrime
🚀 DeepSeek Unveils New Model 'MODEL1' on Anniversary of DeepSeek-R1
#DeepSeek #MODEL1 #DeepSeekR1 #FlashMLA #GitHub #V32 #DeepSeekV32 #KVCacheLayout #SparsityHandling #FP8Decoding #MemoryManagement
On January 21, DeepSeek marked the first anniversary of DeepSeek-R1 by revealing details about its new model, 'MODEL1.' According to BlockBeats, the company updated its FlashMLA code on GitHub, highlighting 28 mentions of MODEL1 across 114 files. This model appears alongside V32, indicating it is distinct from DeepSeek-V3.2. The differences in the code are evident in areas such as KV cache layout, sparsity handling, and FP8 decoding, with several optimizations in memory management.#DeepSeek #MODEL1 #DeepSeekR1 #FlashMLA #GitHub #V32 #DeepSeekV32 #KVCacheLayout #SparsityHandling #FP8Decoding #MemoryManagement
🚀 Tencent Requests Removal of GitHub Projects Over Privacy Concerns
#Tencent #GitHub #WeChat #PrivacyConcerns #OpenSource #DataSecurity #Encryption #LegalPressure #MaliciousExploitation
Tencent has formally requested GitHub to remove several open-source projects that allow users to export or analyze their WeChat chat records. According to PANews, some project leaders have publicly stated that they have ceased maintenance due to legal pressure. On January 22, Tencent responded, explaining that these projects read WeChat chat records by reverse engineering the client and cracking local database keys. This bypasses encryption measures, posing risks to user and third-party data privacy and client security, and could be exploited by malicious entities.#Tencent #GitHub #WeChat #PrivacyConcerns #OpenSource #DataSecurity #Encryption #LegalPressure #MaliciousExploitation
🚀 ClawdBot Founder Faces GitHub Account Hijack by Crypto Scammers
#ClawdBot #GitHub #CryptoScammers #AccountHijack #PeterSteinberger #PANews #XPlatform #AccountRecovery #TrademarkIssues #GitHubRenaming
ClawdBot founder Peter Steinberger reported on the X platform that his GitHub account was hijacked by crypto scammers. According to PANews, Steinberger is seeking assistance from the GitHub community to recover his account. He clarified that he has not initiated any token projects and refuted allegations related to the misuse of his GitHub commit history. Steinberger explained that the account renaming was requested by Anthropic and was not a voluntary decision. Additionally, he mentioned that due to trademark issues, he had to adjust ClawdBot's account name, which led to a failed GitHub account renaming and the X account name being preemptively registered by members of the crypto community.#ClawdBot #GitHub #CryptoScammers #AccountHijack #PeterSteinberger #PANews #XPlatform #AccountRecovery #TrademarkIssues #GitHubRenaming
🚀 Anthropic's Open-Source Plugins Impact Global Software Stocks by $285 Billion
#Anthropic #OpenSource #Plugins #GlobalSoftwareStocks #BiancoResearch #GitHub #Markdown #JS #StockImpact
Jim Bianco, president of Bianco Research posted on X, Anthropic's release of 11 open-source plugins led to a $285 billion decrease in global software stocks. The plugins are available as text files on GitHub, utilizing Markdown and JS.#Anthropic #OpenSource #Plugins #GlobalSoftwareStocks #BiancoResearch #GitHub #Markdown #JS #StockImpact
🚀 OpenAI Launches GPT-5.3-Codex with Enhanced Cybersecurity Features
#OpenAI #GPT5.3Codex #Cybersecurity #SamAltman #Cursor #Github #VSCode #API
OpenAI CEO Sam Altman announced the launch of GPT-5.3-Codex, now available on platforms such as Cursor, Github, and VS Code. According to Jin10, this model is OpenAI's first to be set at a high level for cybersecurity, which caused a slight delay in its release. The company aims to make this model accessible to all API customers soon.#OpenAI #GPT5.3Codex #Cybersecurity #SamAltman #Cursor #Github #VSCode #API