29 articles tagged with #wallet-security. AI-curated summaries with sentiment analysis and key takeaways from 50+ sources.
Cybercriminals are deploying PHANTOMPULSE malware through compromised Obsidian plugins, targeting cryptocurrency users via social engineering on LinkedIn and Telegram. This attack demonstrates how legitimate developer tools can be weaponized to compromise crypto wallets and assets through sophisticated credential theft campaigns.
CoW Swap, a decentralized exchange protocol previously used by Vitalik Buterin for major ETH sales, has fallen victim to a DNS hijack attack. The platform has issued warnings urging users to avoid accessing the site until the security breach is resolved.
A musician lost approximately $420,000 worth of Bitcoin after downloading a counterfeit Ledger hardware wallet application. Blockchain analyst ZachXBT confirmed the stolen 5.9 BTC was transferred to KuCoin deposit addresses, highlighting the ongoing security risks users face from sophisticated phishing schemes targeting cryptocurrency holders.
American musician Garrett Dutton (G. Love) lost 5.9 BTC after unknowingly installing a counterfeit Ledger application from the App Store and entering his seed phrase. This incident highlights a critical vulnerability in app store security and demonstrates how even established platforms fail to prevent sophisticated impersonation attacks targeting cryptocurrency users.
MetaMask has integrated support for the ERC-7715 standard on OP Mainnet, enabling autonomous agents and decentralized applications to request granular wallet execution permissions from users. This development bridges the gap between autonomous systems and user-controlled wallets, allowing for more sophisticated smart contract interactions while maintaining security controls.
A $176 million Bitcoin theft case demonstrates how seed phrase leaks can lead to complete wallet drainage through surveillance techniques. The incident highlights critical security vulnerabilities in cryptocurrency storage practices despite crypto's reputation for security.
A Chinese hacker group disguised as a cybersecurity firm has stolen $7 million through supply-chain attacks targeting crypto wallets including Trust Wallet. The operation was exposed after an internal dispute led to a whistleblower leak revealing their methods and targets.
Ethereum dust attacks involving USDT have surged by 612%, with USDC transfers also experiencing significant increases. Researchers are issuing warnings to Ethereum users about this spike in malicious small-value transactions designed to compromise privacy and track wallet addresses.
Ledger's security research team discovered a critical vulnerability in MediaTek Android devices that allows attackers to steal cryptocurrency wallet PINs and seed phrases within seconds. This security flaw poses significant risks to mobile crypto wallet users on affected Android devices.
New research addresses potential security vulnerabilities that quantum computing could pose to cryptocurrency exchange wallet systems. The research focuses on maintaining exchanges' ability to generate deposit addresses without exposing private keys in a post-quantum cryptography environment.
Game developer Sillytuna lost $24 million in cryptocurrency during a violent physical robbery in the UK, contradicting initial reports that described it as an 'address poisoning' cyberattack. The victim has appealed for help recovering the stolen funds after what appears to be a 'wrench attack' - a physical assault to force access to crypto wallets.
South Korea's tax service accidentally exposed wallet seed phrases in a public press release, leading to the theft of Ethereum tokens from seized wallets. The stolen funds were eventually returned to the original wallets.
South Korea's tax service accidentally revealed cryptocurrency wallet recovery phrases in a public press release, leading to seized tokens being moved in what appears to be a security breach. This incident is part of a broader pattern of crypto custody failures by South Korean authorities in recent months.
South Korea's National Tax Service accidentally published a wallet seed phrase in a press release, leading to the immediate theft of $4.8 million in seized cryptocurrency tokens. This represents a major security blunder by government authorities in handling confiscated digital assets.
A critical logic flaw in the XRP Ledger's batch amendment feature was discovered and prevented, which could have allowed unauthorized fund transfers and account deletions. The vulnerability has been narrowly averted, protecting user wallets from potential exploitation.
cpp-ethereum versions 1.2.0 to 1.2.6 have a critical account unlocking security vulnerability that remains unfixed. Popular Ethereum clients like geth, Mist, and Ethereum Wallet are not affected by this issue and properly lock accounts.
A critical security vulnerability in cpp-ethereum versions 1.2.0 to 1.2.5 keeps user accounts unlocked, potentially allowing unauthorized access to funds. The issue has been fixed in version 1.2.6, while other Ethereum clients like geth and Mist are not affected.
A security vulnerability affects Windows users of the Alethzero GUI client, involving improper privacy permissions on the keys directory. Users of eth CLI client may also be at risk, while Frontier geth users are unaffected.
eToro has agreed to acquire Zengo, a cryptocurrency wallet company, for $70 million in a strategic move to integrate advanced asset protection technology into its retail trading platform. The acquisition combines eToro's established user base with Zengo's security-focused wallet infrastructure, addressing growing demand for safer custody solutions in crypto retail.
Anchorage Digital has made a strategic investment in cybersecurity firm Immunefi and purchased IMU tokens. The partnership will see Immunefi provide security services for Anchorage's Porto wallet product.
Trust Wallet has implemented real-time address poisoning protection across 32 EVM-compatible blockchain networks, introducing automated scam address screening functionality. This security enhancement comes as wallet providers face increasing pressure to protect users from sophisticated crypto scams and malicious addresses.
Google's Threat Intelligence Group warns of a powerful iOS exploit kit called 'Coruna' being deployed on fake crypto websites to steal seed phrases and wallet data from iPhone users. The exploit targets iOS versions 13.0 through 17.2.1 and can compromise devices simply by visiting malicious sites, specifically targeting popular crypto wallets like MetaMask, Trust Wallet, and others.
An XRP Ledger developer has issued a warning about a new scam targeting XRP wallet users. The alert aims to protect users from potential security threats and financial losses.
An on-chain developer has issued a warning about a new wave of deceptive NFT scams targeting XRP Ledger wallet holders. The attacks exploit human error through social engineering tactics, prompting heightened security concerns within the XRP community.
South Korea's National Tax Service is investigating a $4.8 million cryptocurrency theft that occurred after the agency accidentally leaked wallet seed phrases in a photo intended to showcase a crypto seizure. The incident highlights serious security vulnerabilities in government handling of seized digital assets.
