Cryptocurrency Giant Bybit Suffers Largest Exchange Hack in History, Loses $1.46 Billion
In an unprecedented cybersecurity breach, hackers successfully infiltrated Bybit's cold storage wallet, stealing $1.46 billion in cryptocurrency assets. The attack, which primarily targeted Ethereum holdings, marks the largest cryptocurrency exchange theft to date and has sent shockwaves through the digital asset market.
Brazilian Banking Malware 'Coyote' Expands Target List to Over 1,000 Financial Sites
A sophisticated Windows malware strain called Coyote has dramatically expanded its attack scope, now targeting over 1,030 websites and 73 financial institutions in Brazil. The threat employs advanced techniques including keylogging, screenshot capture, and phishing overlays to steal sensitive credentials.
North Korean Hackers Deploy Hidden 'Phantom Circuit' to Control Global Cyber Operations
SecurityScorecard researchers uncover Lazarus group's sophisticated administrative layer used to manage cybercrime targeting cryptocurrency and software developers. The hidden infrastructure, linked to Pyongyang, oversees malware delivery and stolen data while exploiting LinkedIn recruitment schemes.
Malicious npm Packages Target Solana Users in Sophisticated Crypto Theft Campaign
Security researchers uncover a sophisticated attack using fake npm packages to steal Solana wallet credentials through Gmail's SMTP servers. The multi-platform campaign includes malicious GitHub repositories and packages with destructive capabilities, highlighting critical risks in the cryptocurrency software supply chain.
AWS Cloud Storage at Risk: New Ransomware Weaponizes S3 Encryption Features
A sophisticated ransomware group called Codefinger is exploiting AWS's native encryption features to lock down S3 buckets, marking a concerning evolution in cloud-based attacks. The group leverages stolen credentials and legitimate AWS functionality to encrypt data, making recovery impossible without the attacker's key.
New 'Fickle Stealer' Malware Emerges with Advanced Evasion and Data Theft Capabilities
A sophisticated Rust-based malware dubbed 'Fickle Stealer' has been discovered using multiple attack vectors and advanced anti-detection methods. The threat actively targets cryptocurrency wallets, browsers, and communication apps while employing complex techniques to evade security controls.
North Korean Hackers Steal $308M in Sophisticated Crypto Heist from Japanese Firm
US and Japanese authorities identify North Korean hacking group 'TraderTraitor' as responsible for a major cryptocurrency theft from DMM. The attackers used elaborate social engineering via LinkedIn to compromise a wallet software company employee, leading to the theft of over 4,500 Bitcoin.
LastPass Breach Sparks $45M Cryptocurrency Heist Wave
A catastrophic LastPass security breach has led to over $45 million in cryptocurrency thefts affecting more than 150 users since 2022. The latest attack before Christmas saw hackers steal $5.36 million from approximately 40 users, highlighting ongoing vulnerabilities from the initial breach.
Major Data Breach at Byte Federal Exposes 58,000 Bitcoin ATM Users' Personal Data
A significant security breach at Byte Federal, a leading US Bitcoin ATM operator, has compromised sensitive data of 58,000 customers through a GitLab vulnerability. The breach exposed personal information including government IDs and transaction records, prompting immediate security measures and customer warnings.
Turkish Highway Toll App Hit by Bitcoin Ransom Attack Through Push Notification Exploit
Turkey's electronic toll collection app HGS was compromised through its notification system API, with hackers demanding $25,000 in Bitcoin from users. While the Post and Telegraph Directorate assured data security, the incident exposed vulnerabilities in the widely-used public service application.