hacking
348,513 views
191 Discussing
Hot
Latest
URGENT: AI HACKER ALERT! $CLAU EXPLOITED!
Phishing hackers are hitting crypto users NOW. A critical vulnerability in Anthropic's Claude Code (CVE-2025-64755) is being actively exploited. Attackers gain unauthorized command execution. A Proof of Concept is already public. This is a direct threat to your digital assets. Secure your accounts immediately. Do not engage with suspicious links or prompts. This is not a drill.
Disclaimer: This is not financial advice.
#CryptoSecuri #Aİ #Hacking #FOMO 🚨
Phishing hackers are hitting crypto users NOW. A critical vulnerability in Anthropic's Claude Code (CVE-2025-64755) is being actively exploited. Attackers gain unauthorized command execution. A Proof of Concept is already public. This is a direct threat to your digital assets. Secure your accounts immediately. Do not engage with suspicious links or prompts. This is not a drill.
Disclaimer: This is not financial advice.
#CryptoSecuri #Aİ #Hacking #FOMO 🚨
Kontigo HACKED! Millions in STABLECOINS AT RISK $USDT
Kontigo discovered and patched a major security vulnerability. They have already compensated 1,005 users for $340,900 in stablecoins. This attack targeted the company's management and users directly. Attackers have been identified and will face consequences. This happened during Kontigo's rapid expansion phase, fresh off a $20 million seed round. The stablecoin giant is fighting back.
Disclaimer: This is not financial advice.
#crypto #stablecoin #security #hacking 🚨
Kontigo discovered and patched a major security vulnerability. They have already compensated 1,005 users for $340,900 in stablecoins. This attack targeted the company's management and users directly. Attackers have been identified and will face consequences. This happened during Kontigo's rapid expansion phase, fresh off a $20 million seed round. The stablecoin giant is fighting back.
Disclaimer: This is not financial advice.
#crypto #stablecoin #security #hacking 🚨
$ETH Hacker Withdraws 1,000 ETH from Aave Following Multi-Signature Wallet Theft #Ethereum #Hacking #withdrawlinstant
Binance News
--
Hacker Withdraws 1,000 ETH from Aave Following Multi-Signature Wallet Theft
According to Odaily, a hacker involved in the theft of $27.3 million from a multi-signature wallet has withdrawn 1,000 ETH from Aave, valued at $3.24 million, and laundered the funds through Tornado Cash.
To date, the hacker has deposited a total of 6,300 ETH, worth $19.4 million, into Tornado Cash. The attacker, who controls the compromised multi-signature wallet, currently holds a leveraged long position valued at $9.75 million, with $20.5 million in ETH as collateral and a $10.7 million DAI loan.
To date, the hacker has deposited a total of 6,300 ETH, worth $19.4 million, into Tornado Cash. The attacker, who controls the compromised multi-signature wallet, currently holds a leveraged long position valued at $9.75 million, with $20.5 million in ETH as collateral and a $10.7 million DAI loan.
🤯 $3 Million Unlocked After 12 Years! 🔓
A forgotten Bitcoin wallet from 2013, holding 43.6 $BTC , has been miraculously recovered! “Michael” lost access after a RoboForm password glitch, and for years, the funds seemed gone forever.
But security wizards Joe Grand and Bruno cracked the code, reverse-engineering a flawed random number generator. They successfully unlocked the wallet in late 2023, earning a cut when $BTC was around $38,000. Michael then sold some at $62,000, and roughly 30 $BTC (around $3 million today) remains.
This incredible story is a stark reminder: Bitcoin is forever, but your access isn’t guaranteed! Early software vulnerabilities can have massive, delayed consequences. 🧐 $ETH is also benefiting from increased security awareness.
#Bitcoin #CryptoSecurity #LostWallet #Hacking 🚀
A forgotten Bitcoin wallet from 2013, holding 43.6 $BTC , has been miraculously recovered! “Michael” lost access after a RoboForm password glitch, and for years, the funds seemed gone forever.
But security wizards Joe Grand and Bruno cracked the code, reverse-engineering a flawed random number generator. They successfully unlocked the wallet in late 2023, earning a cut when $BTC was around $38,000. Michael then sold some at $62,000, and roughly 30 $BTC (around $3 million today) remains.
This incredible story is a stark reminder: Bitcoin is forever, but your access isn’t guaranteed! Early software vulnerabilities can have massive, delayed consequences. 🧐 $ETH is also benefiting from increased security awareness.
#Bitcoin #CryptoSecurity #LostWallet #Hacking 🚀
🤯 $3 Million Unlocked After 12 Years! 🔓
A forgotten Bitcoin wallet from 2013, holding 43.6 $BTC , has been miraculously recovered! “Michael” lost access after a RoboForm password glitch, and for years, the funds seemed gone forever.
But security wizards Joe Grand and Bruno cracked the code, reverse-engineering a flawed random number generator. They successfully unlocked the wallet in late 2023, earning a cut when $BTC was around $38,000. Michael then sold some at $62,000, and roughly 30 $BTC (around $3 million today) remains.
This incredible story is a stark reminder: Bitcoin is forever, but your security is only as strong as your weakest link. 🔐 Early software vulnerabilities can have massive, delayed consequences.
#Bitcoin #CryptoSecurity #LostWallet #Hacking 🚀
A forgotten Bitcoin wallet from 2013, holding 43.6 $BTC , has been miraculously recovered! “Michael” lost access after a RoboForm password glitch, and for years, the funds seemed gone forever.
But security wizards Joe Grand and Bruno cracked the code, reverse-engineering a flawed random number generator. They successfully unlocked the wallet in late 2023, earning a cut when $BTC was around $38,000. Michael then sold some at $62,000, and roughly 30 $BTC (around $3 million today) remains.
This incredible story is a stark reminder: Bitcoin is forever, but your security is only as strong as your weakest link. 🔐 Early software vulnerabilities can have massive, delayed consequences.
#Bitcoin #CryptoSecurity #LostWallet #Hacking 🚀
🤯 Bitfinex Hacker Walks Free After Just 14 Months! $NEAR
The hacker behind the infamous 2016 Bitfinex breach, Ilya Lichtenstein, who pilfered almost 120,000 $BTC, is a free man. 🚨 He served a mere 14 months of a 5-year sentence thanks to Trump’s “First Step Act.” This raises serious questions about justice in the crypto space. Even $DOGE holders are talking about it! $BNB
#Bitfinex #CryptoSecurity #Hacking #Justice ⚖️
The hacker behind the infamous 2016 Bitfinex breach, Ilya Lichtenstein, who pilfered almost 120,000 $BTC, is a free man. 🚨 He served a mere 14 months of a 5-year sentence thanks to Trump’s “First Step Act.” This raises serious questions about justice in the crypto space. Even $DOGE holders are talking about it! $BNB
#Bitfinex #CryptoSecurity #Hacking #Justice ⚖️
Global Cyberattack Exposes Microsoft Vulnerability: U.S. Agencies and Infrastructure Hit
The world is facing another major cyberattack—this time targeting the very core of governmental institutions. Hackers have exploited an unpatched vulnerability in Microsoft’s widely used SharePoint Server software, compromising dozens of organizations worldwide, from U.S. federal agencies to telecom networks across Asia.
Unlike Microsoft’s cloud-based services like Microsoft 365, the issue lies within local SharePoint servers—internal systems used for storing and sharing documents. These servers became the prime targets.
Zero-Day Flaw Left Thousands of Systems Unprotected
This is a "zero-day" vulnerability—an undisclosed flaw with no available patch. According to security experts, thousands of institutions were left exposed with no defenses in place.
Early investigations show that attackers infiltrated systems of over 50 organizations, including European government agencies, a major energy provider in the U.S., and a university in Brazil. In one Eastern U.S. state, hackers blocked access to a batch of public documents, making it impossible for the government to delete or retrieve them.
No Patch from Microsoft Yet — Organizations Forced to Improvise
Despite the severity of the breach, Microsoft has yet to release an official patch. Affected institutions have had to resort to temporary fixes—such as server reconfigurations or disconnecting them from the internet—to reduce risk.
While Microsoft confirmed the breach and issued a security advisory, the company has remained publicly silent. It recommended users quarantine vulnerable servers and take them offline if necessary.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA), along with counterparts in Canada and Australia, has launched an investigation. The Center for Internet Security (CIS), which works with local U.S. governments, identified nearly 100 at-risk organizations, including public schools and universities.
The situation is further complicated by recent budget cuts, which led to the termination of 60% of the personnel handling threat response. According to CIS Vice President Randy Rose, it took six hours on Saturday night to process the first incident alert. "If we hadn’t lost so many team members, it would’ve been much faster," he added.
Microsoft Faces Growing Scrutiny
This isn’t the first time Microsoft has faced doubts about its ability to protect customers. The Department of Homeland Security noted that the attackers may have built on an earlier SharePoint vulnerability that Microsoft had only partially addressed.
Experts warn of long-term consequences. Once attackers gain access to SharePoint servers, they can move laterally into systems like Outlook, Microsoft Teams, and internal databases. Some reportedly stole cryptographic keys that could enable future access—even after a patch is applied.
One anonymous researcher involved in the federal investigation warned, “Even if Microsoft releases a fix on Monday or Tuesday, it won’t help those already breached in the past 72 hours.”
Past Criticism Comes Back into Focus
Last year, a government-appointed panel criticized Microsoft’s handling of a targeted Chinese cyberattack on U.S. federal email systems—including communications by then-Commerce Secretary Gina Raimondo. In that case, hackers abused Microsoft’s cloud platform to access sensitive government emails.
The situation escalated further after a ProPublica report revealed that Microsoft had hired engineers in China to work on cloud systems tied to the U.S. military. In response, Microsoft announced on Friday that it would no longer employ Chinese workers on Pentagon-related projects.
Long-Term Fallout Likely
Governments, cybersecurity agencies, and corporations worldwide are now questioning whether Microsoft can still be trusted as a critical tech provider when it repeatedly fails to address major vulnerabilities in time.
While attackers gain access to sensitive data, the world is waiting for Microsoft to deliver a real solution—and wondering what the consequences will be for those already affected.
#cyberattack , #CyberSecurity , #HackAlert , #Microsoft , #hacking
Stay one step ahead – follow our profile and stay informed about everything important in the world of cryptocurrencies!
Notice:
,,The information and views presented in this article are intended solely for educational purposes and should not be taken as investment advice in any situation. The content of these pages should not be regarded as financial, investment, or any other form of advice. We caution that investing in cryptocurrencies can be risky and may lead to financial losses.“
Unlike Microsoft’s cloud-based services like Microsoft 365, the issue lies within local SharePoint servers—internal systems used for storing and sharing documents. These servers became the prime targets.
Zero-Day Flaw Left Thousands of Systems Unprotected
This is a "zero-day" vulnerability—an undisclosed flaw with no available patch. According to security experts, thousands of institutions were left exposed with no defenses in place.
Early investigations show that attackers infiltrated systems of over 50 organizations, including European government agencies, a major energy provider in the U.S., and a university in Brazil. In one Eastern U.S. state, hackers blocked access to a batch of public documents, making it impossible for the government to delete or retrieve them.
No Patch from Microsoft Yet — Organizations Forced to Improvise
Despite the severity of the breach, Microsoft has yet to release an official patch. Affected institutions have had to resort to temporary fixes—such as server reconfigurations or disconnecting them from the internet—to reduce risk.
While Microsoft confirmed the breach and issued a security advisory, the company has remained publicly silent. It recommended users quarantine vulnerable servers and take them offline if necessary.
The U.S. Cybersecurity and Infrastructure Security Agency (CISA), along with counterparts in Canada and Australia, has launched an investigation. The Center for Internet Security (CIS), which works with local U.S. governments, identified nearly 100 at-risk organizations, including public schools and universities.
The situation is further complicated by recent budget cuts, which led to the termination of 60% of the personnel handling threat response. According to CIS Vice President Randy Rose, it took six hours on Saturday night to process the first incident alert. "If we hadn’t lost so many team members, it would’ve been much faster," he added.
Microsoft Faces Growing Scrutiny
This isn’t the first time Microsoft has faced doubts about its ability to protect customers. The Department of Homeland Security noted that the attackers may have built on an earlier SharePoint vulnerability that Microsoft had only partially addressed.
Experts warn of long-term consequences. Once attackers gain access to SharePoint servers, they can move laterally into systems like Outlook, Microsoft Teams, and internal databases. Some reportedly stole cryptographic keys that could enable future access—even after a patch is applied.
One anonymous researcher involved in the federal investigation warned, “Even if Microsoft releases a fix on Monday or Tuesday, it won’t help those already breached in the past 72 hours.”
Past Criticism Comes Back into Focus
Last year, a government-appointed panel criticized Microsoft’s handling of a targeted Chinese cyberattack on U.S. federal email systems—including communications by then-Commerce Secretary Gina Raimondo. In that case, hackers abused Microsoft’s cloud platform to access sensitive government emails.
The situation escalated further after a ProPublica report revealed that Microsoft had hired engineers in China to work on cloud systems tied to the U.S. military. In response, Microsoft announced on Friday that it would no longer employ Chinese workers on Pentagon-related projects.
Long-Term Fallout Likely
Governments, cybersecurity agencies, and corporations worldwide are now questioning whether Microsoft can still be trusted as a critical tech provider when it repeatedly fails to address major vulnerabilities in time.
While attackers gain access to sensitive data, the world is waiting for Microsoft to deliver a real solution—and wondering what the consequences will be for those already affected.
#cyberattack , #CyberSecurity , #HackAlert , #Microsoft , #hacking
Stay one step ahead – follow our profile and stay informed about everything important in the world of cryptocurrencies!
Notice:
,,The information and views presented in this article are intended solely for educational purposes and should not be taken as investment advice in any situation. The content of these pages should not be regarded as financial, investment, or any other form of advice. We caution that investing in cryptocurrencies can be risky and may lead to financial losses.“
Bybit Breach: How the Lazarus Group Struck Crypto Again—and What It Means for Your Digital Wallet ✍
This is Lazarus
They just stole $1.46 billion from #bybit
And they didn’t break the code — they broke the people
Here’s untold story of how they did it (and why no one is truly safe) 👇
1/10
Lazarus is a state-backed North Korean #hacking group
They’ve stolen billions from banks, crypto exchanges, and DeFi protocols
And now, they’ve pulled off the biggest #crypto heist in history
But how? Well...
2/10
There was no code exploit.
No leaked private keys.
Bybit’s own multisig signers approved the transactions.
They thought they were signing a routine transfer.
Instead, they were handing over their entire cold wallet...
3/10
But that raises a terrifying question.
How did Lazarus know exactly who to target?
A multisig wallet requires multiple signers.
If even one refused to sign, the hack would fail.
But they all signed.
That means Lazarus didn’t just hack Bybit…
They knew who to manipulate
4/10
There are only a few ways to get that kind of information.
• Inside job – Someone leaked the signer list.
• Social engineering – Lazarus studied their emails & behavior.
• Device compromise – One or more signers were infected with malware.
This means other exchanges are at risk too...
5/10
Today Lazarus stole 0.42% of all #Ethereum
It means they own
More than the Ethereum Foundation.
More than Vitalik Buterin.
And more than Fidelity.
But laundering that much ETH without detection isn’t easy...
6/10
In previous attacks, Lazarus has used:
• Bridging to other #blockchain
• On-chain mixing services
• OTC trading via illicit brokers
Would they try the same tactics again?
7/10
Investigators quickly flagged the 53 wallets holding the stolen ETH.
Any attempt to cash out or swap funds would immediately raise red flags.
But Lazarus are in no hurry...
8/10
In 2022, Chainalysis found Lazarus still held $55M from hacks six years earlier.
They don’t cash out fast. They wait.
And no one has ever gotten their money back.
Not once.
Lazarus doesn’t negotiate. They don’t return funds.
So what happens to users?
9/10
Bybit’s CEO, Ben Zhou, addressed the crisis publicly:
• “Client funds are 1:1 backed.”
• “We have enough liquidity to cover withdrawals.”
• “All other wallets remain secure.”
So far, no bank run...
10/10
But this isn’t the first time this happened
And it won’t be the last.
So how do you stay safe? Follow these simple steps:
They just stole $1.46 billion from #bybit
And they didn’t break the code — they broke the people
Here’s untold story of how they did it (and why no one is truly safe) 👇
1/10
Lazarus is a state-backed North Korean #hacking group
They’ve stolen billions from banks, crypto exchanges, and DeFi protocols
And now, they’ve pulled off the biggest #crypto heist in history
But how? Well...
2/10
There was no code exploit.
No leaked private keys.
Bybit’s own multisig signers approved the transactions.
They thought they were signing a routine transfer.
Instead, they were handing over their entire cold wallet...
3/10
But that raises a terrifying question.
How did Lazarus know exactly who to target?
A multisig wallet requires multiple signers.
If even one refused to sign, the hack would fail.
But they all signed.
That means Lazarus didn’t just hack Bybit…
They knew who to manipulate
4/10
There are only a few ways to get that kind of information.
• Inside job – Someone leaked the signer list.
• Social engineering – Lazarus studied their emails & behavior.
• Device compromise – One or more signers were infected with malware.
This means other exchanges are at risk too...
5/10
Today Lazarus stole 0.42% of all #Ethereum
It means they own
More than the Ethereum Foundation.
More than Vitalik Buterin.
And more than Fidelity.
But laundering that much ETH without detection isn’t easy...
6/10
In previous attacks, Lazarus has used:
• Bridging to other #blockchain
• On-chain mixing services
• OTC trading via illicit brokers
Would they try the same tactics again?
7/10
Investigators quickly flagged the 53 wallets holding the stolen ETH.
Any attempt to cash out or swap funds would immediately raise red flags.
But Lazarus are in no hurry...
8/10
In 2022, Chainalysis found Lazarus still held $55M from hacks six years earlier.
They don’t cash out fast. They wait.
And no one has ever gotten their money back.
Not once.
Lazarus doesn’t negotiate. They don’t return funds.
So what happens to users?
9/10
Bybit’s CEO, Ben Zhou, addressed the crisis publicly:
• “Client funds are 1:1 backed.”
• “We have enough liquidity to cover withdrawals.”
• “All other wallets remain secure.”
So far, no bank run...
10/10
But this isn’t the first time this happened
And it won’t be the last.
So how do you stay safe? Follow these simple steps:
It was a major security breach in which Euphoria. Official Account was hacked by hackers.
A massive security breach has shaken the cryptocurrency market with the official account of Euphoria, one of the largest crypto derivatives trading apps that are built on MegaETH, becoming infected by a high-end assault on September 27, 2025, as revealed by the wisdom word on September 28, 2025, This is a worrying case, where the compromised account has been used to distribute phishing links, and the hackers still have the account under their full control, which is highly dangerous to users of the platform. The attack highlights how the security of digital assets is currently a daunting problem in the ever-changing environment.
The attackers have used the account to conduct a targeted attack, leaving fake links intended to trick users to provide sensitive data or give authorization to fraudulent transactions that may empty their online wallets. This is an aggressive step that emphasizes the increased complexity of cyber threats taking advantage of trusted platforms to have the most impact. The inability to control the account is an ongoing cause of the urgency, which makes it strongly desirable to users and stakeholders.
Professionals are in a state of panic, greatly recommending that users stop all communication with the compromised account to secure their prized possessions. This proactive measure will help to avert the risks, and people will be able to protect their assets in the context of the ongoing crisis. The case can also be viewed as a wake-up call and acts as a reminder of the importance of strong security initiatives and alert measures in the crypto scene.
With the situation taking new dimensions, the breach preconditions a revolutionary reaction, and attempts are being made to restore the situation and tighten the belts. This high profile attack is set to intrigue the community leading to a revival of attention to cybersecurity and resilience to guarantee the safety of digital assets in a more volatile environment.
#euphoria #hacking
A massive security breach has shaken the cryptocurrency market with the official account of Euphoria, one of the largest crypto derivatives trading apps that are built on MegaETH, becoming infected by a high-end assault on September 27, 2025, as revealed by the wisdom word on September 28, 2025, This is a worrying case, where the compromised account has been used to distribute phishing links, and the hackers still have the account under their full control, which is highly dangerous to users of the platform. The attack highlights how the security of digital assets is currently a daunting problem in the ever-changing environment.
The attackers have used the account to conduct a targeted attack, leaving fake links intended to trick users to provide sensitive data or give authorization to fraudulent transactions that may empty their online wallets. This is an aggressive step that emphasizes the increased complexity of cyber threats taking advantage of trusted platforms to have the most impact. The inability to control the account is an ongoing cause of the urgency, which makes it strongly desirable to users and stakeholders.
Professionals are in a state of panic, greatly recommending that users stop all communication with the compromised account to secure their prized possessions. This proactive measure will help to avert the risks, and people will be able to protect their assets in the context of the ongoing crisis. The case can also be viewed as a wake-up call and acts as a reminder of the importance of strong security initiatives and alert measures in the crypto scene.
With the situation taking new dimensions, the breach preconditions a revolutionary reaction, and attempts are being made to restore the situation and tighten the belts. This high profile attack is set to intrigue the community leading to a revival of attention to cybersecurity and resilience to guarantee the safety of digital assets in a more volatile environment.
#euphoria #hacking
Ransomware Payouts Drop 35% as Victims Resist Demands
Ransomware Attacks Surge, but Payouts Decline
Despite a significant rise in ransomware attacks in 2024, the total ransom payments from victims dropped by 35%, as more companies and individuals refused to comply with hackers' demands.
According to the Chainalysis Cybercrime Report, ransomware generated less revenue compared to the previous year, even though hacker activity intensified.
Declining Payouts Despite Increasing Attacks
🔹 Total ransomware payments in 2024 reached $813 million, down from a record $1.25 billion in 2023.
🔹 The first half of the year saw a 2.3% increase in successful extortion attempts.
🔹 The Dark Angels Group alone collected $75 million.
🔹 However, in the second half of the year, law enforcement efforts significantly disrupted ransomware operations.
Law Enforcement Crackdowns Disrupt Cybercrime Operations
🔹 Enhanced investigative techniques, sanctions, and asset seizures severely impacted cybercriminal networks.
🔹 The shutdown of the Russian crypto exchange Cryptex and Germany's crackdown on 47 Russian platforms weakened ransomware-related money laundering.
According to Jacqueline Burns Koven, Head of Cyber Threat Intelligence at Chainalysis, criminals became more cautious when moving funds through centralized exchanges (CEX). However, non-KYC platforms remain the preferred method for converting stolen crypto into fiat.
Ransomware Victims Increasingly Refuse to Pay
🔹 Less than 50% of ransomware attacks resulted in payouts.
🔹 Those who did comply paid up to $250,000 in ransom on average.
🔹 With improved tracking tools and stronger investigations, more victims chose not to pay, despite the growing frequency of attacks.
Cybercriminals Adapt to Heightened Security Measures
🔹 Hackers are evolving, developing new tactics to bypass security defenses and pressure victims into paying.
🔹 New ransomware variants are emerging, often derived from leaked, rebranded, or purchased code.
🔹 Attacks are now executed faster, with ransom negotiations starting within hours of data exfiltration.
Ransomware operations now range from state-sponsored hackers to ransomware-as-a-service (RaaS) groups and independent cybercriminals. One of the most notable recent cases was the data theft from cloud service provider Snowflake.
While ransomware tactics continue to evolve, enhanced cybersecurity efforts and law enforcement actions are making it harder for cybercriminals to profit. 🚨
#CyberSecurity , #hacking , #cryptohacks , #cybercrime , #CryptoNewss
Stay one step ahead – follow our profile and stay informed about everything important in the world of cryptocurrencies!
Notice:
,,The information and views presented in this article are intended solely for educational purposes and should not be taken as investment advice in any situation. The content of these pages should not be regarded as financial, investment, or any other form of advice. We caution that investing in cryptocurrencies can be risky and may lead to financial losses.“
Despite a significant rise in ransomware attacks in 2024, the total ransom payments from victims dropped by 35%, as more companies and individuals refused to comply with hackers' demands.
According to the Chainalysis Cybercrime Report, ransomware generated less revenue compared to the previous year, even though hacker activity intensified.
Declining Payouts Despite Increasing Attacks
🔹 Total ransomware payments in 2024 reached $813 million, down from a record $1.25 billion in 2023.
🔹 The first half of the year saw a 2.3% increase in successful extortion attempts.
🔹 The Dark Angels Group alone collected $75 million.
🔹 However, in the second half of the year, law enforcement efforts significantly disrupted ransomware operations.
Law Enforcement Crackdowns Disrupt Cybercrime Operations
🔹 Enhanced investigative techniques, sanctions, and asset seizures severely impacted cybercriminal networks.
🔹 The shutdown of the Russian crypto exchange Cryptex and Germany's crackdown on 47 Russian platforms weakened ransomware-related money laundering.
According to Jacqueline Burns Koven, Head of Cyber Threat Intelligence at Chainalysis, criminals became more cautious when moving funds through centralized exchanges (CEX). However, non-KYC platforms remain the preferred method for converting stolen crypto into fiat.
Ransomware Victims Increasingly Refuse to Pay
🔹 Less than 50% of ransomware attacks resulted in payouts.
🔹 Those who did comply paid up to $250,000 in ransom on average.
🔹 With improved tracking tools and stronger investigations, more victims chose not to pay, despite the growing frequency of attacks.
Cybercriminals Adapt to Heightened Security Measures
🔹 Hackers are evolving, developing new tactics to bypass security defenses and pressure victims into paying.
🔹 New ransomware variants are emerging, often derived from leaked, rebranded, or purchased code.
🔹 Attacks are now executed faster, with ransom negotiations starting within hours of data exfiltration.
Ransomware operations now range from state-sponsored hackers to ransomware-as-a-service (RaaS) groups and independent cybercriminals. One of the most notable recent cases was the data theft from cloud service provider Snowflake.
While ransomware tactics continue to evolve, enhanced cybersecurity efforts and law enforcement actions are making it harder for cybercriminals to profit. 🚨
#CyberSecurity , #hacking , #cryptohacks , #cybercrime , #CryptoNewss
Stay one step ahead – follow our profile and stay informed about everything important in the world of cryptocurrencies!
Notice:
,,The information and views presented in this article are intended solely for educational purposes and should not be taken as investment advice in any situation. The content of these pages should not be regarded as financial, investment, or any other form of advice. We caution that investing in cryptocurrencies can be risky and may lead to financial losses.“
Microsoft Hack Puts U.S. Nuclear Security at Risk
The U.S. National Nuclear Security Administration (NNSA), which oversees the design and maintenance of America’s nuclear weapons arsenal, has become one of the victims of a cyberattack targeting Microsoft SharePoint. The incident also affected several other key government agencies – and all signs point once again to China-linked hackers.
Microsoft Targeted Again – Along with the U.S. Nuclear Authority
The vulnerability in Microsoft SharePoint was exploited on July 18, and according to a spokesperson from the Department of Energy, some systems were affected. Fortunately, due to widespread use of Microsoft 365 cloud services and robust cybersecurity measures, the damage was reportedly minimal, with only a few systems impacted – all of which are now being restored.
Representatives of the NNSA confirmed that no classified information was leaked during the incident. Still, the fact that someone managed to access infrastructure related to U.S. nuclear operations is highly concerning.
SharePoint – The Weak Link
The vulnerability only affected locally hosted SharePoint systems – not the cloud-based ones – which opened the door to this breach. The attack extended far beyond U.S. borders, hitting Middle Eastern and EU government systems as well. Other U.S. victims included the Department of Education, the Florida Department of Financial Services, and Rhode Island’s General Assembly.
Earlier reports revealed that hackers stole login credentials, tokens, and hash codes, potentially giving them access to sensitive internal systems.
China-Linked Groups Suspected
Microsoft has named several hacking groups believed to be backed by the Chinese government – specifically Violet Typhoon, Linen Typhoon, and Storm-2603. Cybersecurity firm Mandiant, owned by Google, stated that at least one attacker was very likely of Chinese origin.
U.S. cybersecurity agency CISA confirmed that the SharePoint vulnerability is being actively exploited. Microsoft has already released three updates to fix the issue.
The Chinese embassy in Washington responded by denying any involvement and warned against “groundless accusations.”
Microsoft Under Fire
Microsoft has become a repeated target of high-level cyberattacks in recent years. In 2021, a separate Chinese group called Hafnium breached systems via a vulnerability in Microsoft Exchange Server. After facing sharp criticism for its previous response, Microsoft CEO Satya Nadella declared that cybersecurity is now the company’s top priority.
Recently, Microsoft also announced it would no longer rely on Chinese engineers for developing cloud services tied to the U.S. Department of Defense – following concerns that such arrangements may have enabled access to sensitive systems.
The Flaw Was First Discovered – by Ethical Hackers
Interestingly, the SharePoint vulnerability was first discovered in May during a hacking contest in Berlin organized by cybersecurity firm Trend Micro. The event offered $100,000 rewards for discovering zero-day vulnerabilities, demonstrating just how valuable – and dangerous – these flaws can be.
Summary: Another Security Blow for the U.S.
Although no classified data was leaked, confidence in government infrastructure has taken another hit. The NNSA was among several high-profile victims, and China-sponsored cyber threats continue to rise.
The U.S. once again finds itself needing to strengthen its cyber defenses – not just against foreign adversaries, but also against its own systemic vulnerabilities.
#CyberSecurity , #Microsoft , #cyberattack , #hacking , #CryptoNews
Stay one step ahead – follow our profile and stay informed about everything important in the world of cryptocurrencies!
Notice:
,,The information and views presented in this article are intended solely for educational purposes and should not be taken as investment advice in any situation. The content of these pages should not be regarded as financial, investment, or any other form of advice. We caution that investing in cryptocurrencies can be risky and may lead to financial losses.“
Microsoft Targeted Again – Along with the U.S. Nuclear Authority
The vulnerability in Microsoft SharePoint was exploited on July 18, and according to a spokesperson from the Department of Energy, some systems were affected. Fortunately, due to widespread use of Microsoft 365 cloud services and robust cybersecurity measures, the damage was reportedly minimal, with only a few systems impacted – all of which are now being restored.
Representatives of the NNSA confirmed that no classified information was leaked during the incident. Still, the fact that someone managed to access infrastructure related to U.S. nuclear operations is highly concerning.
SharePoint – The Weak Link
The vulnerability only affected locally hosted SharePoint systems – not the cloud-based ones – which opened the door to this breach. The attack extended far beyond U.S. borders, hitting Middle Eastern and EU government systems as well. Other U.S. victims included the Department of Education, the Florida Department of Financial Services, and Rhode Island’s General Assembly.
Earlier reports revealed that hackers stole login credentials, tokens, and hash codes, potentially giving them access to sensitive internal systems.
China-Linked Groups Suspected
Microsoft has named several hacking groups believed to be backed by the Chinese government – specifically Violet Typhoon, Linen Typhoon, and Storm-2603. Cybersecurity firm Mandiant, owned by Google, stated that at least one attacker was very likely of Chinese origin.
U.S. cybersecurity agency CISA confirmed that the SharePoint vulnerability is being actively exploited. Microsoft has already released three updates to fix the issue.
The Chinese embassy in Washington responded by denying any involvement and warned against “groundless accusations.”
Microsoft Under Fire
Microsoft has become a repeated target of high-level cyberattacks in recent years. In 2021, a separate Chinese group called Hafnium breached systems via a vulnerability in Microsoft Exchange Server. After facing sharp criticism for its previous response, Microsoft CEO Satya Nadella declared that cybersecurity is now the company’s top priority.
Recently, Microsoft also announced it would no longer rely on Chinese engineers for developing cloud services tied to the U.S. Department of Defense – following concerns that such arrangements may have enabled access to sensitive systems.
The Flaw Was First Discovered – by Ethical Hackers
Interestingly, the SharePoint vulnerability was first discovered in May during a hacking contest in Berlin organized by cybersecurity firm Trend Micro. The event offered $100,000 rewards for discovering zero-day vulnerabilities, demonstrating just how valuable – and dangerous – these flaws can be.
Summary: Another Security Blow for the U.S.
Although no classified data was leaked, confidence in government infrastructure has taken another hit. The NNSA was among several high-profile victims, and China-sponsored cyber threats continue to rise.
The U.S. once again finds itself needing to strengthen its cyber defenses – not just against foreign adversaries, but also against its own systemic vulnerabilities.
#CyberSecurity , #Microsoft , #cyberattack , #hacking , #CryptoNews
Stay one step ahead – follow our profile and stay informed about everything important in the world of cryptocurrencies!
Notice:
,,The information and views presented in this article are intended solely for educational purposes and should not be taken as investment advice in any situation. The content of these pages should not be regarded as financial, investment, or any other form of advice. We caution that investing in cryptocurrencies can be risky and may lead to financial losses.“
🚨 WTF? $100,000,000 GONE despite 11 audits!!!
Balancer just suffered one of the biggest exploits of the year - $100M+ drained from staked ETH pools. What’s shocking isn’t just the number, it’s the fact that four major audit firms - OpenZeppelin, Trail of Bits, Certora, and ABDK - had already reviewed the contracts 11 times since 2021.
Let that sink in: eleven audits, bug bounties, top-tier security partners… and still a total wipeout.
DeFi isn’t broken - it’s just brutally transparent. Code can be perfect on paper and still crumble under the creativity of one skilled attacker. Early data suggests a faulty access control opened the door for funds to be withdrawn by an unauthorized command.
Balancer’s team offered the hacker a 20% white-hat bounty if the funds are returned - but so far, silence. The move buys time, but trust takes longer to rebuild.
The takeaway? “Audited” doesn’t mean “safe.” In DeFi, security isn’t a box to check - it’s an arms race between builders and exploiters. #Scamalert #Hackalert #Hacking #MarketPullback #CryptoMarketWatch
Balancer just suffered one of the biggest exploits of the year - $100M+ drained from staked ETH pools. What’s shocking isn’t just the number, it’s the fact that four major audit firms - OpenZeppelin, Trail of Bits, Certora, and ABDK - had already reviewed the contracts 11 times since 2021.
Let that sink in: eleven audits, bug bounties, top-tier security partners… and still a total wipeout.
DeFi isn’t broken - it’s just brutally transparent. Code can be perfect on paper and still crumble under the creativity of one skilled attacker. Early data suggests a faulty access control opened the door for funds to be withdrawn by an unauthorized command.
Balancer’s team offered the hacker a 20% white-hat bounty if the funds are returned - but so far, silence. The move buys time, but trust takes longer to rebuild.
The takeaway? “Audited” doesn’t mean “safe.” In DeFi, security isn’t a box to check - it’s an arms race between builders and exploiters. #Scamalert #Hackalert #Hacking #MarketPullback #CryptoMarketWatch
See original
🔴 Hackers are attacking through fake Office extensions — over 4,600 wallets stolen
Experts from Kaspersky Lab are sounding the alarm: hackers are spreading malware through fake Microsoft Office add-ons. The goal is mining on your computer and stealing crypto by substituting addresses.
📌 How it works:
– The malware is disguised as Office extensions
– Distributed through the SourceForge website
– The victim runs the installer → the system gets infected
– ClipBanker changes the cryptocurrency wallet address in the clipboard
– Money is transferred to the attackers
– Already 4,604 users have been affected, of which 90% are in Russia
📉 Impact: negative — a blow to trust in alternative software sources and an increased risk among crypto investors.
📜 Historical fact:
A similar ClipBanker was used in attacks in 2021. At that time, the virus replaced addresses for more than 10,000 users — the damage exceeded $2.5 million.
📢 You are not a trader if you find out about everything last. Subscribe 🔔
#CryptoSecurity #Hacking #ClipBanker #MicrosoftOffice #Kaspersky
Experts from Kaspersky Lab are sounding the alarm: hackers are spreading malware through fake Microsoft Office add-ons. The goal is mining on your computer and stealing crypto by substituting addresses.
📌 How it works:
– The malware is disguised as Office extensions
– Distributed through the SourceForge website
– The victim runs the installer → the system gets infected
– ClipBanker changes the cryptocurrency wallet address in the clipboard
– Money is transferred to the attackers
– Already 4,604 users have been affected, of which 90% are in Russia
📉 Impact: negative — a blow to trust in alternative software sources and an increased risk among crypto investors.
📜 Historical fact:
A similar ClipBanker was used in attacks in 2021. At that time, the virus replaced addresses for more than 10,000 users — the damage exceeded $2.5 million.
📢 You are not a trader if you find out about everything last. Subscribe 🔔
#CryptoSecurity #Hacking #ClipBanker #MicrosoftOffice #Kaspersky
❌ Last night, CoinMarketCap was hacked.
When visiting the site, malicious pop-ups appeared prompting users to connect their wallets, which were then emptied.
#CoinMartketCap #hacking #news #NewsAboutCrypto #HackerAlert
When visiting the site, malicious pop-ups appeared prompting users to connect their wallets, which were then emptied.
#CoinMartketCap #hacking #news #NewsAboutCrypto #HackerAlert
$WRX
#WRX Coin Chart Analysis
Despite issues like the #hacking incident and other factors, the chart looks promising.
It seems to have formed an impulse wave, and the WXY correction appears to be in progress.
Once the correction ends, the bull run should begin, right?
However, how high it will rise remains uncertain.
I’ll revisit the chart later, but for now, it doesn’t look bad.
If you'd like to see more chart analysis, please follow.
#WRX Coin Chart Analysis
Despite issues like the #hacking incident and other factors, the chart looks promising.
It seems to have formed an impulse wave, and the WXY correction appears to be in progress.
Once the correction ends, the bull run should begin, right?
However, how high it will rise remains uncertain.
I’ll revisit the chart later, but for now, it doesn’t look bad.
If you'd like to see more chart analysis, please follow.
🚨 NORTH KOREAN HACKERS STOLEN A RECORD $2 BILLION IN CRYPTO IN 2025!
CHAINALYSIS REPORTS.
#CyberSecurity #Crypto #northkorea #hacking #Blockchain
CHAINALYSIS REPORTS.
#CyberSecurity #Crypto #northkorea #hacking #Blockchain
See original
Bybit Hacked: Over $1.46 Billion in Ethereum Stolen
Cryptocurrency exchange Bybit has suffered what could be the largest hack in digital currency history, with $1.46 billion in Ethereum (ETH) being withdrawn from hot wallets. Bybit CEO Ben Zhou confirmed the hack via social media, saying that the hacker had taken control of a specific ETH cold wallet and transferred its entire contents to an unknown address.
Suspicions of a hack were raised when blockchain data showed a massive transfer of 401,346 ETH, worth approximately $1.13 billion, from a Bybit hot wallet to an unknown wallet. Not only did this transfer raise alarms about a possible hack, it also impacted the market price of Ethereum, which fell more than 4% after the stolen funds began to be liquidated.
Zhou assured users that despite the hack, all other cold wallets remain safe and withdrawals are working normally.
The method used in the Bybit hack is very similar to techniques used in previous major hacks, such as the WazirX and Radiant Capital hacks in 2024.
$ETH
#взлом #bybit #hacking
Cryptocurrency exchange Bybit has suffered what could be the largest hack in digital currency history, with $1.46 billion in Ethereum (ETH) being withdrawn from hot wallets. Bybit CEO Ben Zhou confirmed the hack via social media, saying that the hacker had taken control of a specific ETH cold wallet and transferred its entire contents to an unknown address.
Suspicions of a hack were raised when blockchain data showed a massive transfer of 401,346 ETH, worth approximately $1.13 billion, from a Bybit hot wallet to an unknown wallet. Not only did this transfer raise alarms about a possible hack, it also impacted the market price of Ethereum, which fell more than 4% after the stolen funds began to be liquidated.
Zhou assured users that despite the hack, all other cold wallets remain safe and withdrawals are working normally.
The method used in the Bybit hack is very similar to techniques used in previous major hacks, such as the WazirX and Radiant Capital hacks in 2024.
$ETH
#взлом #bybit #hacking
✅ The S&P 500 is treading water, $BTC is undergoing a correction, but buyers are still trying to defend the key level of $58k 🕯
Monday news:
✔️ Retail sales and industrial production data from China showed an economic slowdown
✔️ The government of Bhutan holds $780 million worth of BTC, earned through mining
✔️ The Dow Jones stock index reached a new high of $41,558 💵
✔️ Pre-orders for the iPhone 16 have dropped by 12.7% compared to the iPhone 15
✔️ Binance warned of a potential threat to user accounts due to malware called Clipper
✔️ A whale with a balance of 16,636 $ETH, bought in 2016 for $87,135, sold 350 ETH today 🤑
✔️ Hackers got a job at the Delta Prime protocol and withdrew $7 million
✔️ Research: In 2024, cryptocurrency donations for elections in the US will total $190 million
#BTC #DowJones #ETH #hacking
Monday news:
✔️ Retail sales and industrial production data from China showed an economic slowdown
✔️ The government of Bhutan holds $780 million worth of BTC, earned through mining
✔️ The Dow Jones stock index reached a new high of $41,558 💵
✔️ Pre-orders for the iPhone 16 have dropped by 12.7% compared to the iPhone 15
✔️ Binance warned of a potential threat to user accounts due to malware called Clipper
✔️ A whale with a balance of 16,636 $ETH, bought in 2016 for $87,135, sold 350 ETH today 🤑
✔️ Hackers got a job at the Delta Prime protocol and withdrew $7 million
✔️ Research: In 2024, cryptocurrency donations for elections in the US will total $190 million
#BTC #DowJones #ETH #hacking
@defioasis explains that the #Eigenpie ($EGP ) IDO presents a compelling investment opportunity with several advantages, including a low public sale FDV of $6 million and a #TVL exceeding $1 billion, which suggests significant upside potential compared to similar projects like #Magpie . With a short timeline featuring a 100% unlock at TGE and confirmed listings on #Bitget , KuCoin, and Bybit around the 25th, the project has also secured strong backing from notable investors like the @Arbitrum Foundation and @PancakeSwap . Furthermore, the public sale offers full refunds, with a total investment of $1.03 million ongoing until the 24th. However, potential risks include decreased investor confidence stemming from a previous #hacking incident involving Magpie's Penpie subDAO, as well as possible market fatigue due to ongoing projects. Overall, while EigenPie has attractive features, thorough research (DYOR) is crucial to navigate the associated risks.
Crypto Crime Trends: Rising Threats and Increased Losse
The cryptocurrency space continues to attract both innovation and risk, with increasing concerns over cybersecurity. As digital assets like Bitcoin and Ethereum become more mainstream, they are also becoming prime targets for cybercriminals. In 2024, cryptocurrency hack losses have surged by 21%, reaching an eye-watering $2.2 billion, according to recent reports. This marks the fourth consecutive year where cryptocurrency-related crimes have caused massive financial losses.
The nature of these attacks is becoming more sophisticated. Cybercriminals now have access to advanced techniques to breach digital wallets, exchanges, and even decentralized platforms. These attacks often occur through phishing, ransomware, or exploiting vulnerabilities in smart contracts. The stolen funds are typically funneled through decentralized exchanges, making it difficult for authorities to trace the illicit movements.
As the crypto industry grows, so does the scale of the threat. The decentralized nature of cryptocurrencies, while offering benefits like privacy and security, also makes them vulnerable to misuse. Hackers can act with relative anonymity, moving stolen assets across borders in seconds, making the recovery of stolen funds incredibly challenging.
For investors and crypto enthusiasts, these rising threats highlight the need for robust security measures. Using hardware wallets, enabling multi-factor authentication, and choosing exchanges with strong security protocols are essential steps to protect digital assets from cyberattacks. Additionally, vigilance in monitoring accounts for suspicious activity is critical to preventing significant losses.
The rise in cybercrime also underscores the importance of regulatory oversight and institutional partnerships to strengthen security frameworks across the cryptocurrency ecosystem. As the industry matures, ensuring that platforms and users adhere to the highest security standards will be crucial to combatting the growing threat of digital crime.
#BTCNextMove #Hacking
The cryptocurrency space continues to attract both innovation and risk, with increasing concerns over cybersecurity. As digital assets like Bitcoin and Ethereum become more mainstream, they are also becoming prime targets for cybercriminals. In 2024, cryptocurrency hack losses have surged by 21%, reaching an eye-watering $2.2 billion, according to recent reports. This marks the fourth consecutive year where cryptocurrency-related crimes have caused massive financial losses.
The nature of these attacks is becoming more sophisticated. Cybercriminals now have access to advanced techniques to breach digital wallets, exchanges, and even decentralized platforms. These attacks often occur through phishing, ransomware, or exploiting vulnerabilities in smart contracts. The stolen funds are typically funneled through decentralized exchanges, making it difficult for authorities to trace the illicit movements.
As the crypto industry grows, so does the scale of the threat. The decentralized nature of cryptocurrencies, while offering benefits like privacy and security, also makes them vulnerable to misuse. Hackers can act with relative anonymity, moving stolen assets across borders in seconds, making the recovery of stolen funds incredibly challenging.
For investors and crypto enthusiasts, these rising threats highlight the need for robust security measures. Using hardware wallets, enabling multi-factor authentication, and choosing exchanges with strong security protocols are essential steps to protect digital assets from cyberattacks. Additionally, vigilance in monitoring accounts for suspicious activity is critical to preventing significant losses.
The rise in cybercrime also underscores the importance of regulatory oversight and institutional partnerships to strengthen security frameworks across the cryptocurrency ecosystem. As the industry matures, ensuring that platforms and users adhere to the highest security standards will be crucial to combatting the growing threat of digital crime.
#BTCNextMove #Hacking
Login to explore more contents