Coinbase said a former customer support agent was arrested in India as investigators probe a breach tied to insider bribery and customer data theft. Chief Executive Officer Brian Armstrong said on Dec. 27 that the arrest involved a former support agent and thanked Hyderabad Police for assistance in the ongoing investigation. The update puts attention […]
The post Coinbase claims arrest in the $355 million insider extortion scheme that targeted nearly 70,000 customers appeared first on CryptoSlate.
Trust Wallet has pledged to compensate all users after an unknown hacker injected malicious code into its Chrome extension, stealing $7 million in crypto.
Trust Wallet's Chrome extension shipped a malicious update in December, exfiltrating wallet data and draining roughly $7 million from hundreds of accounts before the company pushed a fix. The compromised version 2.68 was live for days, auto-updating in the background, the way browser extensions are designed to. Users who followed every standard self-custody rule, such […]
The post How browser extensions expose crypto to a fatal design flaw the industry ignored, bleeding $713M in 2025 appeared first on CryptoSlate.
Trust Wallet told users to disable its Chrome browser extension version 2.68 after the company acknowledged a security incident and pushed version 2.69 on Dec. 25, following reports of wallet drains tied to the Dec. 24 update. According to BleepingComputer, victims and researchers began flagging thefts soon after 2.68 rolled out. Early public tallies placed […]
The post Hidden script caught harvesting private keys as Trust Wallet issues emergency warning for Chrome users appeared first on CryptoSlate.
There's always something going on in the crypto space, and this year was no exception. We take a look back at 2025's highlights.
While Polymarket did not name the third-party provider, some users speculated on social media that the vulnerability is linked to Magic Labs.
The victim of a similar $71 million address poisoning attack in 2024 managed to recover nearly all available funds, lending hope to the scam's latest victim.
Personal wallet hacks and private key breaches on centralized services are on the rise while DeFi hacks remain suppressed, Chainalysis said.
Binance co-CEO Yi He said her WeChat account was hijacked on Dec. 10 after a cell number tied to the profile was reclaimed and could not be recovered at first. The account was later restored after Binance worked with WeChat’s security team, according to a spokesperson cited the same day. Posts that appeared after the […]
The post Binance CEO had WeChat hacked by cellphone exploit that likely leaves your own crypto exposed appeared first on CryptoSlate.
The hacker spent 19,479 USDT to buy 21.16 million of the tokens, making around $55,000 from the subsequent pump, according to Lookonchain.
In Malaysia’s illegal Bitcoin (BTC) mining hotspots, the hunt begins in the sky. Drones buzz over rows of shops and abandoned houses, sweeping for pockets of unexpected heat, which is the thermal signature of machines that shouldn’t be running. On the ground, police carry handheld sensors that sniff out irregular power use. Sometimes the pursuit […]
The post Bitcoin thieves stole $1.1B using fake bird noises: Now Malaysia hunts heat signatures from the sky appeared first on CryptoSlate.
A British hacker tied to the $243 million Genesis creditor theft has possibly been arrested in Dubai, according to onchain sleuth ZachXBT.
North Korean operatives were caught on camera, live, after security researchers lured them into a booby-trapped “developer laptop,” capturing how the Lazarus-linked crew tried to blend into a US crypto job pipeline using legitimate AI hiring tools and cloud services. The evolution in state-sponsored cybercrime was reportedly captured in real time by researchers at BCA […]
The post Secret footage from a rigged laptop exposes how North Korean spies are slipping past your security team appeared first on CryptoSlate.
"Code is Law" co-director James Craig and Wildcat Finance co-founder Lawrence Day discuss their experiences with, and the consequences of, major DeFi hacks.
Yearn Finance lost about $9 million in an exploit on Sunday, after an attacker was able to mint a near-infinite amount of yETH tokens.
The following article is adapted from The Block’s newsletter, The Daily, which comes out on weekday afternoons.
When Upbit detected unauthorized withdrawals of roughly $36 million in Solana tokens from a hot wallet on Nov. 27, CEO Oh Kyung-seok went on record within hours. He stated: “The entire amount will be covered by Upbit’s holdings, with no impact on customer assets.” Six years earlier, Upbit said the same thing after losing 342,000 […]
The post $36 million Upbit hack revives the quiet truth about hot-wallet ‘insurance’ appeared first on CryptoSlate.
The complex attack took place in a single transaction, and appears to have involved liquid staking tokens from across the Ethereum ecosystem.
The following article is adapted from The Block’s newsletter, The Daily, which comes out on weekday afternoons.
Upbit said it discovered a vulnerability that could have allowed attackers to infer private keys from onchain wallet data.
Upbit said it reimbursed all 38.6 billion won in member assets from its reserves.
Six white hat actors recovered $3.86 million during the attack, but some declined to receive bounties as they do not want to be identified.
Upbit initially reported a loss of 54 billion won ($36.8 million) but later revised the figure down to 44.5 billion won ($30.4 million).
As of mid-afternoon South Korea time, Solana-based tokens traded with double-digit gains on Upbit following a hack that stole roughly 44.5 billion won ($32 million). CryptoQuant CEO Ki Young Ju noted that Korean traders began bidding up altcoin prices as arbitrage bots, which normally keep Korean and international prices aligned, stopped operating. The service suspension […]
The post Solana tokens rip on Upbit after $32M hack due to halted arbitrage appeared first on CryptoSlate.
The following article is adapted from The Block’s newsletter, The Daily, which comes out on weekday afternoons.
On Nov. 24, security firm Aikido detected a second wave of the Shai-Hulud self-replicating npm worm, compromising 492 packages with a combined 132 million monthly downloads. The attack struck major ecosystems, including AsyncAPI, PostHog, Postman, Zapier, and ENS, exploiting the final weeks before npm’s Dec. 9 deadline to revoke legacy authentication tokens. Aikido’s triage queue […]
The post Malicious worm compromises crypto domains in supply-chain attack appeared first on CryptoSlate.
For a few days in November, a malicious Chrome extension ranked as the fourth result for “Ethereum wallet” on the Chrome Web Store. The extension, called “Safery: Ethereum Wallet,” looked polished enough to pass as legitimate. It had a clean icon, a generic name adjacent to security language, a flood of five-star reviews, and boilerplate […]
The post Security reality check: Top-ranked Chrome ‘wallet’ that steals your seedphrase appeared first on CryptoSlate.
Arkham said in August it had uncovered a previously undisclosed heist of 127,426 stolen from Chinese mining pool LuBian.
Balancer’s preliminary report says a rounding flaw in swap logic caused the recent exploit, with recovery efforts underway across affected chains and forks.
A new quantum countdown website projects a two– to three-year window for quantum computers to break widely used public key cryptography, placing Bitcoin within its scope. Sites like The Quantum Doom Clock, operated by Postquant Labs and Hadamard Gate Inc., package aggressive assumptions about qubit scaling and error rates into a timeline that spans the late 2020s […]
The post Bitcoin will be hacked in 2 years… and other quantum resistant marketing lies appeared first on CryptoSlate.