hacker
623,818 views
291 Discussing
Hot
Latest
See original
🚨 ALERT: NEW CRYPTO MALWARE FOR WINDOWS "STEALKA" 🚨
Kaspersky has detected Stealka, a dangerous infostealer for Windows designed to steal crypto wallets, passwords, and sensitive data.
This malware primarily spreads through fake software uploaded to platforms like GitHub and SourceForge, masquerading as legitimate tools for developers or crypto users.
Once installed, Stealka operates silently: it scans the system for browser extensions (Chrome, Firefox, Edge), wallet configuration files like MetaMask or Exodus, and even the clipboard to copy private keys. It captures screenshots, logs keystrokes, and exfiltrates data to remote C2 servers.
Its stealth is advanced: it uses code obfuscation, anti-debugging techniques, and persists through the registry or scheduled tasks, evading many basic antivirus programs.
The main vector is deceptive downloads: fake npm packages or executables disguised as "crypto miner optimizer" or "wallet updater".
It primarily targets unupdated Windows users, focusing on Asia and Europe where crypto adoption is high.
Essential protection: always verify GitHub repos (check stars, forks, issues), use antivirus like Kaspersky, enable hardware 2FA (YubiKey), cold wallets (Ledger/Trezor), and avoid downloads from unofficial sources.
Sandbox tools like VirusTotal before execution.
In a volatile crypto market, security beats FOMO: a hacked wallet loses everything irreversibly.
#BREAKING #alert #Hacker #Windows
Kaspersky has detected Stealka, a dangerous infostealer for Windows designed to steal crypto wallets, passwords, and sensitive data.
This malware primarily spreads through fake software uploaded to platforms like GitHub and SourceForge, masquerading as legitimate tools for developers or crypto users.
Once installed, Stealka operates silently: it scans the system for browser extensions (Chrome, Firefox, Edge), wallet configuration files like MetaMask or Exodus, and even the clipboard to copy private keys. It captures screenshots, logs keystrokes, and exfiltrates data to remote C2 servers.
Its stealth is advanced: it uses code obfuscation, anti-debugging techniques, and persists through the registry or scheduled tasks, evading many basic antivirus programs.
The main vector is deceptive downloads: fake npm packages or executables disguised as "crypto miner optimizer" or "wallet updater".
It primarily targets unupdated Windows users, focusing on Asia and Europe where crypto adoption is high.
Essential protection: always verify GitHub repos (check stars, forks, issues), use antivirus like Kaspersky, enable hardware 2FA (YubiKey), cold wallets (Ledger/Trezor), and avoid downloads from unofficial sources.
Sandbox tools like VirusTotal before execution.
In a volatile crypto market, security beats FOMO: a hacked wallet loses everything irreversibly.
#BREAKING #alert #Hacker #Windows
$300M Coinbase #Hacker Breaks Silence, Sends Message to ZachXBT and Dumps $22M in ETH
The elusive hacker behind the massive $300M+ exploit targeting Coinbase users has resurfaced—and they’re not staying quiet.
Two hours ago, the attacker sent a taunting message to on-chain sleuth @zachxbt, a bold move in a case already surrounded by high stakes and high tension.
But that wasn’t all.
The same wallet also dumped 8,698 ETH, worth approximately $22.12 million, converting it into DAI—a clear signal of an ongoing laundering operation.
Hacker Wallet Address: 0xC84C35f57CaEeB5Da8E31D1144c293Ae5851Ab84
The timing of the sale, combined with the public jab at one of crypto’s most respected investigators, suggests the attacker is either growing bolder—or preparing to disappear for good.
All eyes are now on this wallet, and the chase just got hotter.
The elusive hacker behind the massive $300M+ exploit targeting Coinbase users has resurfaced—and they’re not staying quiet.
Two hours ago, the attacker sent a taunting message to on-chain sleuth @zachxbt, a bold move in a case already surrounded by high stakes and high tension.
But that wasn’t all.
The same wallet also dumped 8,698 ETH, worth approximately $22.12 million, converting it into DAI—a clear signal of an ongoing laundering operation.
Hacker Wallet Address: 0xC84C35f57CaEeB5Da8E31D1144c293Ae5851Ab84
The timing of the sale, combined with the public jab at one of crypto’s most respected investigators, suggests the attacker is either growing bolder—or preparing to disappear for good.
All eyes are now on this wallet, and the chase just got hotter.
See original
Bedrock Protocol Hack: How Hackers Stole $2 Million and Compromised Data Security
Well, the Bedrock protocol hacking story is something else. Let's take it step by step.
First of all, the Bedrock protocol itself is not just some platform. It is one of the key mechanisms for Bitcoin restaking, that is, transferring assets from one level of the blockchain to another to generate income. The point is that it must be as secure as possible, because big money flows there.
First of all, the Bedrock protocol itself is not just some platform. It is one of the key mechanisms for Bitcoin restaking, that is, transferring assets from one level of the blockchain to another to generate income. The point is that it must be as secure as possible, because big money flows there.
See original
Cryptocurrency Exchange BingX Hacked, Onchain Data Shows Over $43 Million Withdrawn
BingX was the victim of a cyberattack that caused more than $43 million in damages.
The company's CEO told X that the amount of stolen assets was insignificant and any customer losses would be compensated.
Cryptocurrency exchange BingX has been hacked and a “small” amount of assets have been stolen, and the exchange plans to compensate users for any losses, the company’s CEO said in a message on X.
The company's CEO told X that the amount of stolen assets was insignificant and any customer losses would be compensated.
Cryptocurrency exchange BingX has been hacked and a “small” amount of assets have been stolen, and the exchange plans to compensate users for any losses, the company’s CEO said in a message on X.
🔐 Cyber News (May 14, 2024):
1️⃣ ZachXBT: On May 8, 2024, an assailant made off with three rare NFTs from the Bored Ape Yacht Club collection. 🎨
2️⃣ The Block: The hacker, employing a spam transaction tactic, pilfered 1155.2 WBTC, later returning 4.2% of the assets owed to the victim after negotiation. Subsequently, the #hacker reimbursed the victim $71 million, factoring in cryptocurrency price fluctuations. 💰
3️⃣ Incrypted: Binance, the cryptocurrency exchange, incurred a $4.4 million penalty from Canada's Financial Transactions and Reports Analysis Centre (FINTRAC) for breaching anti-money laundering legislation. 💼
4️⃣ d_code: Over the span of two weeks, cybercriminals have been inundating #Toncoin (TON) holders with mass spam-NFT distributions. 📧
5️⃣ Weixin: Chinese authorities dismantled an illicit banking operation utilizing digital assets for unlawful conversions of yuan and South Korean won totaling $295.8 million. Media outlets reported the apprehension of six suspects in Jilin Province, northeast China, with the seizure of numerous bank cards and other illicit paraphernalia. 🚔
👍 Enjoying these updates? Feel free to subscribe for more, drop a like, or leave a comment below with any questions or thoughts!
1️⃣ ZachXBT: On May 8, 2024, an assailant made off with three rare NFTs from the Bored Ape Yacht Club collection. 🎨
2️⃣ The Block: The hacker, employing a spam transaction tactic, pilfered 1155.2 WBTC, later returning 4.2% of the assets owed to the victim after negotiation. Subsequently, the #hacker reimbursed the victim $71 million, factoring in cryptocurrency price fluctuations. 💰
3️⃣ Incrypted: Binance, the cryptocurrency exchange, incurred a $4.4 million penalty from Canada's Financial Transactions and Reports Analysis Centre (FINTRAC) for breaching anti-money laundering legislation. 💼
4️⃣ d_code: Over the span of two weeks, cybercriminals have been inundating #Toncoin (TON) holders with mass spam-NFT distributions. 📧
5️⃣ Weixin: Chinese authorities dismantled an illicit banking operation utilizing digital assets for unlawful conversions of yuan and South Korean won totaling $295.8 million. Media outlets reported the apprehension of six suspects in Jilin Province, northeast China, with the seizure of numerous bank cards and other illicit paraphernalia. 🚔
👍 Enjoying these updates? Feel free to subscribe for more, drop a like, or leave a comment below with any questions or thoughts!
🔐 Cyber News (Mar 31, 2024):
1️⃣ Etherscan: The #hacker responsible for breaching the #PrismaFinance liquid staking protocol engaged in negotiations with the project team. He expressed interest in returning the funds and presented a series of demands. The hacker wants the developers to hold a public online conference during which they will reveal their identities. Additionally, the unknown individual demanded that the team apologize to investors and users for their mistakes. Furthermore, the programmers are required to thank the hacker for the operation and announce collaboration on solving the issue. 🛡️
2️⃣ PeckShield: On March 29, 2024, PeckShield specialists reported a security incident involving the #EthenaLabs project. According to experts, unknown actors created a fake token, ENA, on the BNB Chain network. The incident occurred shortly after the launch pool with the Ethena Labs project on the Binance cryptocurrency exchange. The vulnerability underlying the exploit is still unknown. PeckShield reported a loss of 480 BNB, equivalent to $290,000. 💰
3️⃣ Vx-underground: An unknown group of cybercriminals has released malicious software targeting Call of Duty fans. Hackers are using it to steal bitcoins from players. Hackers are targeting users who use so-called cheat codes in Call of Duty. These are software solutions from unofficial providers that assist in gameplay. 🎮
4️⃣ Immunefi: In the first three months of 2024, as a result of 46 breaches and 15 fraudulent incidents, crypto projects lost over $321 million. This is 23.1% less than the same period last year when hackers stole over $437 million. 💸
5️⃣ TRM Labs: In 2023, the Tron blockchain accounted for 45% of all illegal cryptocurrency transactions. Mostly, this involves the #USDT stablecoin from Tether. 🔄
📢 What are your thoughts on this series of events?
1️⃣ Etherscan: The #hacker responsible for breaching the #PrismaFinance liquid staking protocol engaged in negotiations with the project team. He expressed interest in returning the funds and presented a series of demands. The hacker wants the developers to hold a public online conference during which they will reveal their identities. Additionally, the unknown individual demanded that the team apologize to investors and users for their mistakes. Furthermore, the programmers are required to thank the hacker for the operation and announce collaboration on solving the issue. 🛡️
2️⃣ PeckShield: On March 29, 2024, PeckShield specialists reported a security incident involving the #EthenaLabs project. According to experts, unknown actors created a fake token, ENA, on the BNB Chain network. The incident occurred shortly after the launch pool with the Ethena Labs project on the Binance cryptocurrency exchange. The vulnerability underlying the exploit is still unknown. PeckShield reported a loss of 480 BNB, equivalent to $290,000. 💰
3️⃣ Vx-underground: An unknown group of cybercriminals has released malicious software targeting Call of Duty fans. Hackers are using it to steal bitcoins from players. Hackers are targeting users who use so-called cheat codes in Call of Duty. These are software solutions from unofficial providers that assist in gameplay. 🎮
4️⃣ Immunefi: In the first three months of 2024, as a result of 46 breaches and 15 fraudulent incidents, crypto projects lost over $321 million. This is 23.1% less than the same period last year when hackers stole over $437 million. 💸
5️⃣ TRM Labs: In 2023, the Tron blockchain accounted for 45% of all illegal cryptocurrency transactions. Mostly, this involves the #USDT stablecoin from Tether. 🔄
📢 What are your thoughts on this series of events?
🔐 Cyber News (Aug 3, 2024):
1️⃣ Cointelegraph: Over 70% of funds lost to hacks in the cryptocurrency sector are from centralized financial platforms (CeFi). 📉
2️⃣ PeckShield: In July, $266 million was stolen, with experts noting a total of 16 incidents. The majority of the losses were due to the hack of the Indian cryptocurrency exchange WazirX, which amounted to $230 million. 🏴☠️
3️⃣ CertiK: In July, cryptocurrency projects lost $278.8 million due to malicious activities, making it the second-largest loss in 2024. 💸
4️⃣ PeckShield: On the morning of August 1, 2024, an unknown #hacker attacked the decentralized protocol Convergence. They gained access to the project's smart contract, minted approximately 58 million CVG tokens, and sold them. 🔓
5️⃣ AFM: Employees of the Kazakhstan Agency for Financial Monitoring (AFM) tracked assets of the cryptocurrency pyramid scheme Eolus amounting to 250 million tenge (over $520,000), stolen from nearly 2,500 citizens across the country. The agency managed to trace the transactions and ensure the return of the funds to the country. The cryptocurrencies are now held in a special AFM account and will be reimbursed to the victims. 🔍
If you haven't subscribed yet, make sure to do so! If you enjoyed the content, please like it or leave a comment below with your thoughts. 👍
1️⃣ Cointelegraph: Over 70% of funds lost to hacks in the cryptocurrency sector are from centralized financial platforms (CeFi). 📉
2️⃣ PeckShield: In July, $266 million was stolen, with experts noting a total of 16 incidents. The majority of the losses were due to the hack of the Indian cryptocurrency exchange WazirX, which amounted to $230 million. 🏴☠️
3️⃣ CertiK: In July, cryptocurrency projects lost $278.8 million due to malicious activities, making it the second-largest loss in 2024. 💸
4️⃣ PeckShield: On the morning of August 1, 2024, an unknown #hacker attacked the decentralized protocol Convergence. They gained access to the project's smart contract, minted approximately 58 million CVG tokens, and sold them. 🔓
5️⃣ AFM: Employees of the Kazakhstan Agency for Financial Monitoring (AFM) tracked assets of the cryptocurrency pyramid scheme Eolus amounting to 250 million tenge (over $520,000), stolen from nearly 2,500 citizens across the country. The agency managed to trace the transactions and ensure the return of the funds to the country. The cryptocurrencies are now held in a special AFM account and will be reimbursed to the victims. 🔍
If you haven't subscribed yet, make sure to do so! If you enjoyed the content, please like it or leave a comment below with your thoughts. 👍
See original
Unmasking the $4.3 million fraud scheme using 'Approval Phishing' on Ethereum
In a large-scale collaborative operation between the U.S. Secret Service and Canadian law enforcement agencies, a sophisticated fraud scheme targeting Ethereum wallet users was uncovered and intervened in time, preventing estimated damages of up to $4.3 million. This is one of the latest incidents that illustrate the potential dangers of the 'Approval Phishing' scam in the crypto world – an increasingly common attack that inflicts severe damage.
See original
Texdipektop Ripple ппедпедил долделцев XRP o вне фишинга
#Phishing #RippleTrends #XRPcryptowolf #attacked #hacker $XRP $NOT $BTC
According to the technical director of Ripple, asset holders should be prepared for a new wave of fraud. This time, according to David Schwartz, it is aimed at stealing personal data. His warning appeared after one of the users under the nickname @ZYearLetterman stated that he had communicated with the Ripple support service, and in the end it turned out to be a phishing attack disguised as an official service. The message received by @ZYearLetterman indicated that the service was investigating his account for copyright infringement, and in order to avoid blocking his account, he You must follow the link and fill out the review form. David Schwartz warned each of his subscribers that they should ignore such messages and under no circumstances click on the link! He explained that the link leads to a phishing resource that collects clients’ personal data and other information. Phishing attacks are one of the most common types of fraud on the Internet and many users and companies become their victims. Criminals are constantly improving their methods, which allows them to steal private information about clients, and then steal their finances. Despite all the calls from information security experts, many users do not exercise due diligence and become victims of hackers.
According to the technical director of Ripple, asset holders should be prepared for a new wave of fraud. This time, according to David Schwartz, it is aimed at stealing personal data. His warning appeared after one of the users under the nickname @ZYearLetterman stated that he had communicated with the Ripple support service, and in the end it turned out to be a phishing attack disguised as an official service. The message received by @ZYearLetterman indicated that the service was investigating his account for copyright infringement, and in order to avoid blocking his account, he You must follow the link and fill out the review form. David Schwartz warned each of his subscribers that they should ignore such messages and under no circumstances click on the link! He explained that the link leads to a phishing resource that collects clients’ personal data and other information. Phishing attacks are one of the most common types of fraud on the Internet and many users and companies become their victims. Criminals are constantly improving their methods, which allows them to steal private information about clients, and then steal their finances. Despite all the calls from information security experts, many users do not exercise due diligence and become victims of hackers.
See original
😱🤯😱🤯😱🤯😱
The "white hats" of Web3 earn millions, sweeping away traditional jobs in cybersecurity.
The top ethical hackers in Web3 are making millions by discovering flaws in DeFi, far surpassing the traditional cybersecurity salaries, which have a cap of USD 300,000.
The best ethical hackers looking for vulnerabilities in Web3's decentralized protocols are earning millions, eclipsing the USD 300,000 salary cap of traditional cybersecurity positions.
Researchers earn millions a year, compared to the typical cybersecurity salaries ranging from USD 150,000 to USD 300,000.
In the realm of cryptocurrencies, "white hats" are ethical hackers who are paid to reveal vulnerabilities in decentralized finance (DeFi) protocols.
#Hacker
#FOMO
#CreatorPad
$BNB
$SOL
$ETH
The "white hats" of Web3 earn millions, sweeping away traditional jobs in cybersecurity.
The top ethical hackers in Web3 are making millions by discovering flaws in DeFi, far surpassing the traditional cybersecurity salaries, which have a cap of USD 300,000.
The best ethical hackers looking for vulnerabilities in Web3's decentralized protocols are earning millions, eclipsing the USD 300,000 salary cap of traditional cybersecurity positions.
Researchers earn millions a year, compared to the typical cybersecurity salaries ranging from USD 150,000 to USD 300,000.
In the realm of cryptocurrencies, "white hats" are ethical hackers who are paid to reveal vulnerabilities in decentralized finance (DeFi) protocols.
#Hacker
#FOMO
#CreatorPad
$BNB
$SOL
$ETH
See original
Following yesterday's cryptocurrency crash caused by the news of the Bybit hack, the market is attempting a technical rebound. Historically, the market has always shown the ability to absorb various cyber attacks. 🙃
Bybit is currently searching for wallets to recover the stolen ETH, a complex task given the operating mode of the NK collective, which is responsible for this sophisticated attack.
Bitcoin is trying to stay above 95k, where it has been consolidating an interesting structure for a few months (93-98k range).
Yesterday it even attempted to break above 99k, but this collapse was unwanted. 🤔
$ETH
$BTC
#Hacker
Bybit is currently searching for wallets to recover the stolen ETH, a complex task given the operating mode of the NK collective, which is responsible for this sophisticated attack.
Bitcoin is trying to stay above 95k, where it has been consolidating an interesting structure for a few months (93-98k range).
Yesterday it even attempted to break above 99k, but this collapse was unwanted. 🤔
$ETH
$BTC
#Hacker
See original
#hacker https://app.binance.com/uni-qr/cart/21746916308874?r=527648310&l=en-US&uco=5lCqzywZiw1KZJSmHkdIFw&uc=app_square_share_link&us=copylink
See original
🚨 Bybit hack of $1.5 billion: the thieves have been found!
💰 On February 21, 2025, hackers stole 401,000 Ethereum (~$1.5 billion) from Bybit's cold wallet. This is the largest hack in the crypto industry!
🔍 How did this happen?
Hackers compromised Bybit's offline wallet during the transfer of funds to a hot wallet. The cryptocurrency was quickly withdrawn to unknown addresses and began to move.
🔍 How did this happen?
Hackers compromised Bybit's offline wallet during the transfer of funds to a hot wallet. The cryptocurrency was quickly withdrawn to unknown addresses and began to move.
#BTCBreaksATH #BNBBreaksATH #AmericaAIActionPlan The most boring and frustrating bull season will create the most millionaires. But, not if they are unable to protect their gains...
Go multisig and airgapped...
We are here to frustrate #Hacker
Go multisig and airgapped...
We are here to frustrate #Hacker
Recap on the Bybit hack 🔥
> Above $1bn in ETH was hacked from a Bybit hot wallet
This could have been a very bad day for crypo, but...
> Ben Zhou (CEO of Bybit) jumped in, even went on a 90 minutes live stream to assure us, that all customer funds are save, no matter if they manage to get hacked funds back or not!
This is the strong leadership of a CEO!
Thank you Ben 👏
Speaking about strong, it's not about how much you yap, but more about how relevant it is.
It's also written in the whitepaper of Kaito that it's about attention!
Yesterday Ben Zhou got a lot of attention earning him 2'287 yaps in just 24 hours.
Take notes and learn from this.
One more note...
> ZachXBT has submitted definitive proof that this attack on Bybit was performed by the LAZARUS GROUP and got a 50k bounty by Arkham for that!
GG Goat! #Bybit #Hacker #Multisig #BybitSecurityBreach #BinanceAirdropAlert
This could have been a very bad day for crypo, but...
> Ben Zhou (CEO of Bybit) jumped in, even went on a 90 minutes live stream to assure us, that all customer funds are save, no matter if they manage to get hacked funds back or not!
This is the strong leadership of a CEO!
Thank you Ben 👏
Speaking about strong, it's not about how much you yap, but more about how relevant it is.
It's also written in the whitepaper of Kaito that it's about attention!
Yesterday Ben Zhou got a lot of attention earning him 2'287 yaps in just 24 hours.
Take notes and learn from this.
One more note...
> ZachXBT has submitted definitive proof that this attack on Bybit was performed by the LAZARUS GROUP and got a 50k bounty by Arkham for that!
GG Goat! #Bybit #Hacker #Multisig #BybitSecurityBreach #BinanceAirdropAlert
GMX & MIM SPELL EXPLOITED FOR $12.9M – #HACKER MOVES FUNDS
A major exploit has hit #GMX (@GMX_IO) and MIM Spell (@MIM_Spell), with attackers draining approximately 6,262 ETH (~$12.9M) from related contracts.
The stolen funds were quickly bridged to Ethereum and split across three new wallets, suggesting the hacker is attempting to obfuscate the trail.
🔹 Hacked Contract: 0xAF9e33Aa03CAaa613c3Ba4221f7EA3eE2AC38649
🔹 New Wallets Holding the Funds:
0xa8f822E937C982e65b0437Ac81792a3AdA76A1ff
0x047C2a3dd1Ab4105B365685d4804fE5c440B5729
0x018182FD7B856AeE1606D7E0AA8bca10F1Cb0b5d
The exploit details are still unfolding—will the hacker cash out or be traced?
A major exploit has hit #GMX (@GMX_IO) and MIM Spell (@MIM_Spell), with attackers draining approximately 6,262 ETH (~$12.9M) from related contracts.
The stolen funds were quickly bridged to Ethereum and split across three new wallets, suggesting the hacker is attempting to obfuscate the trail.
🔹 Hacked Contract: 0xAF9e33Aa03CAaa613c3Ba4221f7EA3eE2AC38649
🔹 New Wallets Holding the Funds:
0xa8f822E937C982e65b0437Ac81792a3AdA76A1ff
0x047C2a3dd1Ab4105B365685d4804fE5c440B5729
0x018182FD7B856AeE1606D7E0AA8bca10F1Cb0b5d
The exploit details are still unfolding—will the hacker cash out or be traced?
Login to explore more contents