Minneapolis-based cybersecurity firm Jamf Threat Labs found a crypto-jacking program well hidden in pirated copies of Apple’s Final Cut Pro. Jamf warns Apple chip speed will make Macs increasingly popular targets for malware attacks. In its report, Jamf said: “During routine monitoring of our threat detections in the wild, we encountered an alert indicating XMRig...Read More
According to a March 9 Fox Business report, the next salvo in Uncle Sam’s war on crypto could be a massive class action lawsuit filed on behalf of retail investors against top exchanges. The outlet reported that leading securities lawyer Tom Grady is preparing for potential litigation against America’s largest crypto companies, including Coinbase, Robinhood,...Read More
U.S. Bankruptcy Judge Michael Wiles made the comments at a court hearing in New York on March 2. The Voyager Digital restructuring plan would involve the sale of just over $1 billion worth of its assets to Binance.US. However, the SEC has opposed the deal claiming that it violates securities laws. When questioned about the...Read More
Gary Gensler’s recent interview with New York Mag (NYMAG) has ruffled feathers across the crypto industry again. The SEC chair reiterated that he considers all crypto assets and all transitions to be subject to U.S. securities laws, aside from spot trading for Bitcoin. Although crypto assets have yet to be officially classified, Gensler said “everything...Read More
The cryptocurrency industry has long been a target of phishing attacks, and it seems that hackers are finding new and more clever ways to scam their victims. This time, it was the website of an anticipated event that was entirely faked in an attempt to trick victims out of their crypto. ETH Denver is advertised...Read More
In a YouTube video shared on their channel, the cybersecurity team at Unciphered demonstrated a critical security vulnerability for the OneKey wallet that they discovered during research. As is customary for the white hat discovery of vulnerabilities, the video was released after it was patched. Lacking Customary Encryption Unciphered, a cybersecurity startup whose main focus...Read More
All eyes in the crypto community have been on the SEC and its decision to pursue certain crypto staking offerings in the States. After Kraken, many believe Coinbase will be next to have to settle with the regulator, which is why the largest US-based exchange decided to address the matter. Our Products Are Not Securities:...Read More
On Feb. 9, Brian Armstrong cautioned that they were hearing rumors that the SEC would like to “get rid of crypto staking in the U.S. for retail customers.” He said he hopes that is not the case as “I believe it would be a terrible path for the U.S. if that was allowed to happen.”...Read More
South Korea is looking to amp up regulations to prevent unfair trade in the industry. As such, the Financial Services Commission issued instructions to five major crypto exchanges in the country to delist and classify digital assets that have similar properties to that of securities. The implosion of the once-prominent Terra ecosystem tokens was the...Read More
Back in 2017, the SEC released Report 21A, better known as the DAO Report. In it, the agency laid out the reasons why the tokens of most DAOs, Polkadot included, should be considered securities. The paper, however, stated that there were steps development teams could take in order to make their projects not function as...Read More
The first hints of trouble started brewing back in October. At the time, 3Commas was accused of leaking API keys that allowed bad actors to take control of APIs sold to end users, with disastrous consequences. An automated trading platform, 3Commas provides customers with an API that they can then connect to exchange platforms in...Read More
One of the most popular password management tools – LastPass – has recently been compromised, and cryptocurrency users may have been affected. With that in mind, it’s important to take reasonable action. First off, reports of LastPass being compromised started appearing yesterday. Some claim that customer details were leaked in data breaches, and these include...Read More
On Dec. 8, the SEC’s Division of Corporation Finance released a statement “regarding recent developments in crypto-asset markets.” The guidance has targeted companies that have disclosure obligations under federal securities laws. Citing “widespread disruption” in crypto markets, the regulator said that companies should evaluate their disclosures and update them if crypto is involved. “In meeting...Read More
Less than a week after exploiting the leading cryptocurrency derivatives exchange Deribit, the attacker started moving the stolen funds. As of November 5, the hacker had moved 1,610 Ether (ETH) worth over $2.5 million to the U.S.-sanctioned crypto mixer Tornado Cash, leaving a balance of about 7,501 ETH in the address. What Happened? On November...Read More
The popular cryptocurrency options exchange, Deribit, has seen its hot wallet exploited for a considerable $28 million earlier today. According to a statement from a company’s spokesperson shared with CryptoPotato, the funds are safe, and the loss has already been compensated by their reserves. Deribit took it to Twitter earlier today to reveal that its...Read More
The US Securities and Exchange Commission (SEC) has filed charges against The Hydrogen and its market maker, Moonwalkersfor, for allegedly engaging in unregistered securities and artificially inflating token’s priceoken. The SEC accused the two firms and thtwo execs of breaking the securities laws’ registration, anti-fraud, and market manipulation provisions. The securities watchdog also asked for...Read More
Despite adverse market conditions negatively impacting layer-one blockchains, the Solana ecosystem has continued improving its network stability and growing its user base, stated Messari in its Q1 report on the matter. However, noticeable declines in key metrics demonstrate that the Ethereum challenger has faced difficulties maintaining high network activity and volume due to ongoing security...Read More
Siyu Liu, Senior Product Manager; Chetan Rane, Product Manager Tl;Dr: We are excited to introduce the Coinbase Security Prompt: a faster and safer way for our users to verify their identity & activities when interacting with the Coinbase ecosystem. At Coinbase, we believe that our users need to have access to the best security possible...Read More
Tl;dr: Search engine phishing exploits the trust we have in search engines and the convenience of searching for something rather than remembering the domain. The following piece outlines what search engine phishing attacks may look like and how Coinbase users can avoid them. By Coinbase Security Team How do you log in to Coinbase? If...Read More
CertiK – a Web 3 and blockchain security firm – has secured an additional $60 million investment from SoftBank Vision Fund 2 and Tiger Global. This follows the firm’s $2 billion valuation last month, after an $88 million round in which Tiger Global also took part. With the new funding, investments in CertiK over the...Read More
Nessa Risley, an Uniswap user from North Carolina, invested about $10,400 on low-cap digital tokens such as EthereumMax, Matrix Samurai, and Rocket Bunny between May and July of last year. The trader has since experienced “substantial losses” and thus sought justice through legal action. On April 4, Risley launched the legal proceedings, alleging that Uniswap...Read More
Cryptocurrency security firm CertiK expands as a unicorn to join the ranks of blockchain-based businesses with a valuation upwards of $2 billion. CertiK is arguably the biggest blockchain security services provider in the field and has revealed a funding round of $88 million today. The company is valued at $2 billion following the latest round....Read More
By Coinbase Security Team As part of our mission to build a more fair, accessible, efficient, and transparent financial system enabled by crypto, we actively monitor for security threats not only to Coinbase but to the crypto ecosystem as a whole. As we have discussed in our previous blog posts on industry-wide crypto security threats...Read More
The SEC is now aiming at the creators of NFTs in an effort to determine whether or not they violate its rules and regulations. The financial regulator is growing concerned that NFTs are being used for unregulated securities token offerings, according to Bloomberg. The ongoing review is also examining fractional non-fungible tokens – when they...Read More
A few years after launching the Secure Asset Fund for Users (SAFU) initiative, Binance has updated it, and its value rose to $1 billion. This comes amid the growing number of hacks and security breaches in the cryptocurrency industry. The announcement from the company described the product as an “emergency insurance fund” established by the...Read More
Animoca Brands subsidiary, Lympo, an NFT platform that specializes in the minting of sports-related collectibles, has lost $18 million to a hack of several of its hot wallets. According to a Medium post that announced the breach of security, the team stated that it lost 165.2 million LMT tokens after a hacker gained access to...Read More
Reports emerged earlier today indicating that the team behind MetaSwap – a protocol enabling NFT swaps over Ethereum, Binance, and Polygon – has stolen 1,100 BNB. Shortly after, the native token tanked. The blockchain security and data analytics resource – PeckShield – detected suspicious behavior coming from the MetaSwap team and suggested a soft-rug pull....Read More
It appears that hackers are finding new avenues to exploit non-suspecting victims and take advantage of their computing power. This time, the primary tool to use are leaks of the new Spide-Man: No Way Home movie. Spider-Man: No Way Home premiered on December 17th, 2021 – merely a week ago, in the US. For the short...Read More
The self-described compounding yield optimizer – Grim Finance – has reported being hacked in a reentrancy exploit with the attacker swiping up to $30 million worth of Fantom tokens. The DeFi protocol took it to Twitter on Sunday to inform its users about the hack. The team described it as an “advanced attack,” in which...Read More
AscendEX, a cryptocurrency exchange that recently celebrated its third anniversary, confirmed that numerous tokens were maliciously transferred out of its hot wallet earlier today. While the firm is yet to affirm the total amount stolen, early estimations show that the funds are worth roughly $80 million. The company admitted to detecting an undisclosed number of...Read More
