Security News

FBI warns of scammers posing as crypto exchange employees
2024-08-01 15:28

The Federal Bureau of Investigation (FBI) warns of scammers posing as employees of cryptocurrency exchanges to steal funds from unsuspecting victims. [...]

UK govt links 2021 Electoral Commission breach to Exchange server
2024-07-30 12:00

The United Kingdom's Information Commissioner's Office revealed today that the Electoral Commission was breached in August 2021 because it failed to patch its on-premise Microsoft Exchange Server against ProxyShell vulnerabilities. Tracked as CVE-2021-34473, CVE-2021-34523, and CVE-2021-31207, these security flaws were chained to hack into the commission's Exchange Server 2016 and deploy web shells, which allowed the attackers to gain persistence after installing web shells and backdoors.

Crypto exchange Gemini discloses third-party data breach
2024-07-26 19:31

Cryptocurrency exchange Gemini is warning it suffered a data breach incident caused by a cyberattack at its Automated Clearing House service provider, whose name was not disclosed. According to the notification, Gemini suffered a third-party data breach when an unauthorized actor breached its vendor's systems between June 3 and June 7, 2024.

DeFi exchange dYdX v3 website hacked in DNS hijack attack
2024-07-23 20:08

Decentralized finance crypto exchange dYdX announced on Tuesday that the website for its older v3 trading platform has been compromised. dYdX also warned users not to visit or interact with the hacked dydx[.

North Korea likely behind takedown of Indian crypto exchange WazirX
2024-07-19 05:59

Indian crypto exchange WazirX has revealed it lost virtual assets valued at over $230 million after a cyber attack that has since been linked to North Korea. According to a late Thursday WazirX Xeet, the attack targeted one of its multi-signature wallets - digi-cash lockers that are designed to offer superior security by requiring multiple private keys to authorize a transaction.

WazirX Cryptocurrency Exchange Loses $230 Million in Major Security Breach
2024-07-19 04:07

"A cyber attack occurred in one of our wallets involving a loss of funds exceeding $230 million," the company said in a statement. The Mumbai-based company said the attack stemmed from a mismatch between the information that was displayed on Liminal's interface and what was actually signed.

Exchange Online adds Inbound DANE with DNSSEC for security boost
2024-07-17 19:02

Microsoft is rolling out inbound SMTP DANE with DNSSEC for Exchange Online in public preview, a new capability to boost email integrity and security. The SMTP DANE security protocol utilizes a TLS Authentication DNS record to verify the identity of destination mail servers and the authenticity of the certificates used for securing email communication.

A decade after collapsing, crypto exchange Mt Gox repays some investors
2024-07-08 00:44

Asia In Brief Mt Gox, the Japanese crypto exchange that dominated trading for a brief time in the early 2010s before collapsing amid the disappearance of nearly half a billion dollars worth of the digicash, likely as a result of its own shoddy software, has said it will start to repay some investors - in Bitcoin. Last week the failed scheme issued a notice [PDF] advising creditors that it would repay some Bitcoin and Bitcoin Cash.

Crypto exchange Kraken accuses blockchain security outfit CertiK of extortion
2024-06-20 17:35

Your profile can be used to present content that appears more relevant based on your possible interests, such as by adapting the order in which content is shown to you, so that it is even easier for you to find content that matches your interests. Content presented to you on this service can be based on your content personalisation profiles, which can reflect your activity on this or other services, possible interests and personal aspects.

Kraken Crypto Exchange Hit by $3 Million Theft Exploiting Zero-Day Flaw
2024-06-19 16:40

Crypto exchange Kraken revealed that an unnamed security researcher exploited an "extremely critical" zero-day flaw in its platform to steal $3 million in digital assets and refused to return...