Massive Cryptocurrency Mining Operation Hijacks Over 1,500 PostgreSQL Servers
A sophisticated cyberattack campaign has compromised more than 1,500 PostgreSQL database servers for illicit cryptocurrency mining. The fileless attack, attributed to threat actor JINX-0126, employs advanced evasion techniques and targets internet-exposed instances with weak security.
Cryptocurrency npm Packages Compromised in Nine-Year API Key Theft Campaign
Multiple long-standing npm packages were discovered to contain malicious code designed to steal API keys and sensitive data through obfuscated scripts. The attack targeted eleven packages including popular blockchain development libraries, with evidence pointing to compromised maintainer accounts.
Teen Hacker 'Wiz' Arrested in $243M Genesis Cryptocurrency Heist
A 19-year-old suspect has been arrested for his role in stealing $243 million in cryptocurrency through an elaborate social engineering scheme. The teen, known online as 'Wiz,' is the third member of a hacker group that impersonated Google and Gemini representatives to orchestrate one of 2024's largest crypto thefts.
FBI Links North Korea's Lazarus Group to Record $1.5B Bybit Cryptocurrency Heist
The FBI has officially attributed a massive $1.5 billion cryptocurrency theft from Bybit exchange to North Korea's Lazarus Group hackers. As authorities track the stolen assets being laundered across blockchains, they've identified numerous suspicious wallet addresses and called for industry-wide action to help recover the funds.
Record-Breaking $1.5B Cryptocurrency Heist Hits Bybit Exchange
Cryptocurrency exchange Bybit suffered a massive security breach resulting in a $1.46 billion loss from its Ethereum cold storage wallet. Despite being the largest crypto hack to date, CEO Ben Zhou confirms the exchange can cover losses while maintaining normal operations.
Cryptocurrency Giant Bybit Suffers Largest Exchange Hack in History, Loses $1.46 Billion
In an unprecedented cybersecurity breach, hackers successfully infiltrated Bybit's cold storage wallet, stealing $1.46 billion in cryptocurrency assets. The attack, which primarily targeted Ethereum holdings, marks the largest cryptocurrency exchange theft to date and has sent shockwaves through the digital asset market.
Brazilian Banking Malware 'Coyote' Expands Target List to Over 1,000 Financial Sites
A sophisticated Windows malware strain called Coyote has dramatically expanded its attack scope, now targeting over 1,030 websites and 73 financial institutions in Brazil. The threat employs advanced techniques including keylogging, screenshot capture, and phishing overlays to steal sensitive credentials.
North Korean Hackers Deploy Hidden 'Phantom Circuit' to Control Global Cyber Operations
SecurityScorecard researchers uncover Lazarus group's sophisticated administrative layer used to manage cybercrime targeting cryptocurrency and software developers. The hidden infrastructure, linked to Pyongyang, oversees malware delivery and stolen data while exploiting LinkedIn recruitment schemes.
Malicious npm Packages Target Solana Users in Sophisticated Crypto Theft Campaign
Security researchers uncover a sophisticated attack using fake npm packages to steal Solana wallet credentials through Gmail's SMTP servers. The multi-platform campaign includes malicious GitHub repositories and packages with destructive capabilities, highlighting critical risks in the cryptocurrency software supply chain.
AWS Cloud Storage at Risk: New Ransomware Weaponizes S3 Encryption Features
A sophisticated ransomware group called Codefinger is exploiting AWS's native encryption features to lock down S3 buckets, marking a concerning evolution in cloud-based attacks. The group leverages stolen credentials and legitimate AWS functionality to encrypt data, making recovery impossible without the attacker's key.