#cryptocurrency hack

Recent attacks exploit the Log4j vulnerability (Log4Shell) by sending obfuscated LDAP requests to trigger malicious script execution, which establishes persistence, gathers system information, and exfiltrates data.  To maintain control, multiple backdoors and encrypted communication channels are established, while the attack’s persistence and ability to evade detection highlight the ongoing…

Attackers uploaded malicious Python packages targeting Raydium and Solana users to PyPI, leveraging a StackExchange post to distribute the malware.  The multi-stage malware stole sensitive data, drained cryptocurrency wallets, and established persistent backdoor access, bypassing Windows security protections, underscoring the vulnerability of software supply chains and the ineffectiveness of…

A forwarded Telegram video advertises heavily discounted, high-profile cryptocurrency projects, enticing viewers with links to a seemingly legitimate second-tier exchange and a concealed malicious link.  Through the use of this social engineering strategy, which is intended to lull victims into a false sense of security, users are most likely directed to a fraudulent platform to extract financial…

ViperSoftX is an advanced malware that has become more complicated since its recognition in 2020, to the extent that eBooks are used on Torrent sites to spread across systems.  Unlike other kinds of malware developers who mainly focus on developing new code instead of improving evasion techniques, ViperSoftX’s creators make use of various components from offensive security scripts. Due to this,…

Attackers behind Spinning YARN launched a new cryptojacking campaign targeting publicly exposed Docker Engine hosts by using new binaries chkstart (remote access with payload execution), exeremo (lateral movement through SSH), and vurld (Go downloader for malware retrieval) and a persistence mechanism that modifies systemd services with ExecStartPost for malicious commands.  It targets Docker API…

Ankr Coin News: Why ANKR Price Crashed Suddenly

BNB Chain-based protocol Ankr becomes the latest target of a DeFi exploit. The exploiter attacked the aBNBc smart contracts on the Ankr protocol and minted 10 trillion Ankr Reward Bearing Staked BNB (aBNBc). Data from on-chain analytics protocols and blockchain security firms revealed how hackers exploited Ankr for multi-million dollars. As a result, Ankr protocol’s ANKR token fell over 5% in…

FTX Hack: Almost $600 Million Transferred Out Of FTX Wallets

Crypto exchange FTX is witnessing millions of funds flowing out of FTX wallets. Almost $600 million in abnormal transfers have been reported in just a few hours, with some withdrawals being swapped from Tether to DAI. Ethereum, Solana, BNB LINK, AVAX, and MATIC tokens are reportedly being withdrawn by drainer. FTX Community Chat admin dropped a message in the Telegram group saying that FTX has…

Blockchain Hacks: Can They be Prevented with Smart Contract Audits?

Blockchain hacks will continue as long as cybercriminals keep easily discovering security vulnerabilities. Here is what happens if security is lacking, says Sumit Siddharth, founder of the SecOps Group. With the exponential growth of cryptocurrencies, NFTs and other blockchain implementations, there has never been a better time for a cybercriminal to convert a vulnerability into easy and big…