π North Korean Hackers Target Software Libraries with Malicious Code
#NorthKoreanHackers #Npm #Malware #MaliciousPackages #InfectiousInterview #Express #Hardhat #Blockchain #Web3 #Cryptocurrency #WalletSecurity #MemoryDecryption #Loader #GitHub #SupplyChainSecurity #CodeScanning #DependencyManagement #SoftwareSecurity
According to PANews, a report by U.S. cybersecurity firm Socket reveals that North Korean hackers have uploaded over 300 malicious code packages to the popular software repository npm. These packages, disguised as misspelled versions of popular libraries like express and hardhat, contain malware capable of stealing passwords and cryptocurrency wallet keys. The operation, dubbed 'Infectious Interview,' involves hackers posing as tech recruiters targeting blockchain and Web3 developers. Despite some malicious packages being removed after approximately 50,000 downloads, several remain online. Researchers traced the code patterns back to North Korean hacker groups, noting the use of memory decryption techniques in loader scripts to avoid detection. Although GitHub has enhanced verification processes and removed some malicious packages, the threat to supply chain security persists. Security experts advise development teams to treat each dependency installation as a potential code execution risk, recommending thorough scanning and verification before integration into projects.#NorthKoreanHackers #Npm #Malware #MaliciousPackages #InfectiousInterview #Express #Hardhat #Blockchain #Web3 #Cryptocurrency #WalletSecurity #MemoryDecryption #Loader #GitHub #SupplyChainSecurity #CodeScanning #DependencyManagement #SoftwareSecurity
π North Carolina Crypto User Reports Theft of Over 1.2 Million XRP
#NorthCarolina #CryptoTheft #XRP #ELLIPAL #ColdWallet #Cryptocurrency #MoneyLaundering #Hacker #BrandonLaRoque #CryptocurrencyTheft #XRPStolen #WalletSecurity
According to Foresight News, a cryptocurrency user from North Carolina, Brandon LaRoque, has reported a significant theft involving his ELLIPAL cold wallet. LaRoque revealed in a video that over 1.2 million XRP, valued at approximately $3 million, were stolen from his wallet.
The hacker initially transferred 10 XRP as a test before moving approximately 1.29 million XRP within two minutes. The stolen funds were first sent to a new wallet and then dispersed into about 30 different wallets, each receiving between 38,000 to 40,000 XRP. Subsequently, the funds were further distributed in a money-laundering style to between 500 and 900 wallets.
LaRoque has reported the incident to the authorities, seeking assistance in recovering the stolen cryptocurrency.#NorthCarolina #CryptoTheft #XRP #ELLIPAL #ColdWallet #Cryptocurrency #MoneyLaundering #Hacker #BrandonLaRoque #CryptocurrencyTheft #XRPStolen #WalletSecurity
π Google Chrome Extension Secretly Charges Fees on Solana Transactions
#GoogleChromeExtension #Solana #CryptoCopilot #Raydium #BlockchainSecurity #Cybersecurity #SolanaTransactions #CryptoFraud #DeFi #WalletSecurity #SOL
According to Odaily, a Google Chrome extension has been discovered to secretly charge users fees during transactions on the Solana blockchain. A report released by cybersecurity firm Socket on Tuesday revealed that the extension, known as Crypto Copilot, injects additional transfers into each Solana Swap, stealing at least 0.0013 SOL or 0.05% of the transaction amount.
Crypto Copilot utilizes the decentralized exchange Raydium to execute swaps for users but adds a secondary instruction to transfer SOL from the user to the attacker's wallet. The user interface only displays the swap details, while the wallet confirmation screen summarizes the transaction information without showing specific instructions.
Crypto Copilot is marketed as a convenient tool for Solana traders to execute swaps directly via Twitter.#GoogleChromeExtension #Solana #CryptoCopilot #Raydium #BlockchainSecurity #Cybersecurity #SolanaTransactions #CryptoFraud #DeFi #WalletSecurity #SOL
β€1
π Ethereum Community Foundation Urges Full Address Display to Prevent Phishing Attacks
#Ethereum #CommunityFoundation #PhishingAttack #USDT #AddressSecurity #Blockchain #WalletSecurity #CryptoRisks #ETH
According to PANews, the Ethereum Community Foundation has responded to the '50 million USDT phishing attack' incident by urging the immediate cessation of using truncated addresses with ellipses (e.g., 0xbaf4b1aF...B6495F8b5). The foundation emphasized that address information should be fully displayed to avoid unnecessary risks associated with hiding parts of the address. Additionally, some UI options provided by certain wallets and block explorers pose security issues, which can be resolved. The phishing incident involved an attacker generating an address with identical first and last three characters, leading victims to mistakenly transfer 50 million USDT to the attacker's similar-looking address.#Ethereum #CommunityFoundation #PhishingAttack #USDT #AddressSecurity #Blockchain #WalletSecurity #CryptoRisks #ETH
π Trust Wallet Security Concerns Raised Over PostHog JS Script
#TrustWallet #SecurityConcerns #PostHogJS #SlowMist #YuJin #WalletSecurity #CyberSecurity
According to PANews, SlowMist founder Yu Jin has raised concerns about a potential security issue involving Trust Wallet. Yu Jin stated that attackers appear to be well-acquainted with the Trust Wallet extension source code, having embedded PostHog JS to collect various user wallet information. Despite Trust Wallet releasing a fix, the PostHog JS script has not been removed.#TrustWallet #SecurityConcerns #PostHogJS #SlowMist #YuJin #WalletSecurity #CyberSecurity
π Trust Wallet Confirms $7 Million Impact, Ensures User Refunds
#TrustWallet #Refunds #Security #Crypto #Blockchain #UserSupport #BrowserExtension #Chrome #WalletSecurity #CryptoNews
According to BlockBeats, Trust Wallet has confirmed that approximately $7 million has been affected, and the team is committed to ensuring that all impacted users receive refunds. Supporting affected users is the team's top priority, and they are actively working to improve the refund process.
Additionally, the team urges users of the affected browser extension version 2.68 to follow these steps promptly:
Step 1: Do not open the Trust Wallet browser extension version 2.68 on desktop devices to ensure wallet security and prevent further issues.
Step 2: Open the Chrome extension panel in the Chrome browser by copying the following into the address bar (shortcut for the official Trust Wallet browser extension): chrome://extensions/?id=egjidjbpglichdcondbcbdnbeeppgdph
Step 3: If the switch below Trust Wallet is still in the "on" position, toggle it to "off."
Step 4: Click on "Developer mode" in the upper right corner.
Step 5: Click the "Update" button in the upper left corner.
Step 6: Check the version number: 2.69. This is the latest and secure version.#TrustWallet #Refunds #Security #Crypto #Blockchain #UserSupport #BrowserExtension #Chrome #WalletSecurity #CryptoNews
π Trust Wallet Compensates Users After Security Breach
#TrustWallet #SecurityBreach #APIKeyLeak #MaliciousCode #Compensation #WalletAddresses #AssetsTheft #Sha1HuludAttack #ChromeWebStoreAPI #GitHubCredentials #UserClaims #FixedVersion #WalletSecurity
According to Odaily, a security breach occurred in the Trust Wallet Browser Extension v2.68 between December 24 and 26, 2025, due to an API key leak that led to the upload of malicious code. This incident affected 2,520 wallet addresses, resulting in the theft of approximately $8.5 million in assets. Investigations revealed a connection to the Sha1-Hulud supply chain attack in November, where attackers gained access to the Chrome Web Store API using leaked GitHub credentials.
Trust Wallet has voluntarily decided to compensate affected users and is finalizing the compensation workflow and ownership verification process. The company has begun reaching out to victims who have contacted them officially. Trust Wallet advises affected users to transfer their funds to new wallets immediately and submit claims through the official form. Over 5,000 claims have been received, and the team is reviewing each case individually. Additionally, Trust Wallet has released a fixed version 2.69 and disabled the relevant publishing permissions and credentials.#TrustWallet #SecurityBreach #APIKeyLeak #MaliciousCode #Compensation #WalletAddresses #AssetsTheft #Sha1HuludAttack #ChromeWebStoreAPI #GitHubCredentials #UserClaims #FixedVersion #WalletSecurity
π Binance Wallet Enhances Security with New Center
#Binance #WalletSecurity #SecurityCenter #KeylessWallet #ImportedWallet #UserSecurity #DigitalAssets #Cryptocurrency #SecurityMeasures #RiskManagement #Trust #CryptoIndustry #AssetProtection
Binance announced on X the introduction of a new Security Center within the Binance Wallet, aimed at enhancing user security by automatically checking for potential risks. This new feature allows users to manage security for both Keyless and imported wallets from a single hub, providing a streamlined approach to wallet management.
The Security Center is designed to offer users a comprehensive overview of their wallet's security status, identifying vulnerabilities and suggesting improvements. By centralizing security management, Binance aims to simplify the process for users, ensuring that they can easily monitor and address any security concerns. This initiative reflects Binance's ongoing commitment to safeguarding user assets and maintaining trust within its platform.
Users are encouraged to regularly check their wallet security through the Security Center to ensure their assets remain protected. The feature is part of Binance's broader efforts to enhance security measures and provide users with the tools necessary to manage their digital assets effectively. As digital threats continue to evolve, Binance remains focused on developing solutions that address these challenges, reinforcing its position as a leader in the cryptocurrency industry.#Binance #WalletSecurity #SecurityCenter #KeylessWallet #ImportedWallet #UserSecurity #DigitalAssets #Cryptocurrency #SecurityMeasures #RiskManagement #Trust #CryptoIndustry #AssetProtection
π SlowMist Completes Security Audit of Binance Wallet
#SlowMist #Binance #SecurityAudit #DigitalAssets #CyberSecurity #WalletSecurity #TechAudit #BlockchainSecurity #UserTrust #Cryptocurrency
Binance announced on X that SlowMist has successfully completed a comprehensive security audit of its wallet. The audit involved both manual analysis and automated tools to ensure the highest level of security. SlowMist approached the audit from an attackerβs perspective, meticulously examining both open-source and proprietary code to identify potential vulnerabilities.
The security audit aimed to bolster the wallet's defenses against potential threats, ensuring that users can manage their digital assets with confidence. By reviewing the wallet's code thoroughly, SlowMist sought to uncover any weaknesses that could be exploited by malicious actors. This proactive measure underscores Binance's commitment to maintaining a secure platform for its users.
The audit process involved a detailed examination of the wallet's architecture and functionality. SlowMist employed advanced techniques to simulate potential attack scenarios, providing a comprehensive assessment of the wallet's security posture. The findings from this audit will inform future enhancements to the wallet, further strengthening its security features.
This initiative reflects Binance's ongoing efforts to prioritize user security and trust. By collaborating with security experts like SlowMist, Binance aims to ensure that its platform remains resilient against evolving cyber threats. The completion of this audit marks a significant step in safeguarding user assets and maintaining the integrity of the Binance ecosystem.#SlowMist #Binance #SecurityAudit #DigitalAssets #CyberSecurity #WalletSecurity #TechAudit #BlockchainSecurity #UserTrust #Cryptocurrency
π Cryptocurrency Holders Urged to Secure Wallets Ahead of Spring Festival
#Cryptocurrency #WalletSecurity #SpringFestival #TokenSafety #NS3AI #InvestorTips #CyberSecurity #DigitalAssets #HolidaySecurity
Cryptocurrency holders are advised to dedicate 10 minutes to conduct a comprehensive security check on their wallets before the Spring Festival. According to NS3.AI, this precaution is crucial to ensure the safety of tokens while individuals enjoy time with family and friends during the holiday. The guidance is intended to help investors avoid common security risks that may occur due to distractions during festive periods.#Cryptocurrency #WalletSecurity #SpringFestival #TokenSafety #NS3AI #InvestorTips #CyberSecurity #DigitalAssets #HolidaySecurity
π Security Alert Issued for Mac Users Targeted by Infiniti Stealer
#MacSecurity #InfinitiStealer #MalwareAlert #CryptocurrencySecurity #MacOSThreat #PythonMalware #CyberSecurity #SocialEngineering #KeychainTheft #WalletSecurity #MalwarePrevention #GoPlusAlert
GoPlus has issued a security warning regarding the malicious program Infiniti Stealer, which is targeting the cryptocurrency wallets of Mac users. According to Foresight News, the program employs social engineering tactics known as 'ClickFix,' using fake Cloudflare CAPTCHA pages to trick users into executing malicious commands on their terminals.
Once the commands are executed, the attack chain removes macOS's quarantine attributes and runs the payload in the background. The final payload is a Python stealer program compiled into a native binary file using Nuitka, designed to evade detection effectively. Infiniti Stealer is capable of accessing browser credentials, macOS Keychain, cryptocurrency wallets, and developer keys, such as .env files, and includes sandbox detection and delayed execution features.
GoPlus advises users to adhere to the principles of 'do not click, do not install, do not sign, do not transfer,' and to check for persistent files in the /tmp and ~/Library/LaunchAgents/ paths, as well as promptly reset credentials.#MacSecurity #InfinitiStealer #MalwareAlert #CryptocurrencySecurity #MacOSThreat #PythonMalware #CyberSecurity #SocialEngineering #KeychainTheft #WalletSecurity #MalwarePrevention #GoPlusAlert
π AI Agents Could Transform DeFi Trading Landscape
#AI #DeFi #Crypto #AIagents #MachineLedTrading #WalletSecurity #Liability #IdentityControls #PromptInjection
Crypto executives have highlighted the potential impact of AI agents on decentralized finance (DeFi), suggesting a shift from human-driven trading to machine-led coordination and continuous execution. According to NS3.AI, this transition could introduce new challenges related to liability, identity controls, prompt injection, and wallet security.#AI #DeFi #Crypto #AIagents #MachineLedTrading #WalletSecurity #Liability #IdentityControls #PromptInjection
π Ethereum Foundation Unveils Wallet Security Model at EthCC[9]
#EthereumFoundation #WalletSecurity #TrillionDollarSecurityPlan #1TS #WalletBeat #ClearSigning #SecurityMaturityModel #EthCC9 #CrossChainSecurity #DNSAttacks #EthereumSecurity #BlockchainSecurity #CryptoWallets #EthereumL1 #SecurityIncidents #CryptoLosses
Ethereum Foundation project manager Hester Bruikman presented updates on the 'Trillion Dollar Security Plan (1TS)' at the EthCC[9] conference. According to Foresight News, Bruikman detailed the WalletBeat wallet security maturity model, which evaluates wallets based on user security goals rather than a checklist of features. Wallets are categorized into four stages: Stage 0 lacks security measures; Stage 0.5 covers some features but still poses significant preventable loss risks; Stage 1 protects users from most common vulnerabilities; and Stage 2 safeguards assets in complex scenarios like cross-chain and DNS attacks.
Bruikman emphasized that the current focus of 1TS is on enhancing user experience security, particularly through advancing Clear Signing to eliminate blind signing practices. The WalletBeat grading standard is intended to pressure wallet manufacturers to upgrade their security measures. Additionally, Bruikman revealed that by the end of the first quarter of 2026, Ethereum had experienced 16 major security incidents, resulting in losses of $93 million, with historical cumulative losses exceeding $7 billion for Ethereum L1.#EthereumFoundation #WalletSecurity #TrillionDollarSecurityPlan #1TS #WalletBeat #ClearSigning #SecurityMaturityModel #EthCC9 #CrossChainSecurity #DNSAttacks #EthereumSecurity #BlockchainSecurity #CryptoWallets #EthereumL1 #SecurityIncidents #CryptoLosses
π Circle's Arc Blockchain Unveils Post-Quantum Security Roadmap
#CirclesArc #Blockchain #PostQuantumSecurity #QuantumComputing #WalletSecurity #PrivateStates #Validators #QuantumResistant #SmartContracts #EVM #QuantumProtection
Circle's Arc blockchain has announced a roadmap for post-quantum security design, aiming to proactively defend against potential threats posed by quantum computing to blockchain technology. According to Foresight News, the roadmap focuses on ensuring end-to-end security for wallets, private states, validators, and infrastructure.
The plan includes supporting quantum-resistant wallet signature schemes upon the mainnet launch. In the short term, quantum-resistant private state protection will be implemented through private virtual machines. Over the medium to long term, there will be gradual upgrades to infrastructure and validator signatures.
Arc's quantum-resistant design features full-stack coverage and user-selectable options, supporting quantum-resistant wallets and private smart contract state protection. It is also compatible with the Ethereum Virtual Machine (EVM) ecosystem, avoiding the need for large-scale mandatory migrations.#CirclesArc #Blockchain #PostQuantumSecurity #QuantumComputing #WalletSecurity #PrivateStates #Validators #QuantumResistant #SmartContracts #EVM #QuantumProtection
π XRP's Quantum Risk Lower Than Bitcoin, Validator Claims
#XRP #Bitcoin #QuantumRisk #Cryptocurrency #Blockchain #WalletSecurity #BTC
An XRP Ledger validator has highlighted that XRP faces less exposure to quantum risks compared to Bitcoin. According to NS3.AI, the validator noted that vulnerable XRP whale wallets represent approximately 0.03% of the total XRP supply. In contrast, a recent paper by Google estimated that around 6.7 million BTC, which constitutes nearly 32% of Bitcoin's supply, are stored in quantum-vulnerable addresses.#XRP #Bitcoin #QuantumRisk #Cryptocurrency #Blockchain #WalletSecurity #BTC