According to @zachxbt, a North Korean hacking group known as Famous Chollima is deploying a new Python-based malware called PylangGhost through fake job applications impersonating top firms like Coinbase and Robinhood. This remote access trojan (RAT) is designed to steal credentials and wallet data from over 80 browser extensions, including MetaMask and Phantom, by tricking applicants into running malicious commands. The analysis highlights that the primary vulnerability in Web3 is not smart contract code but poor operational security (OPSEC), such as inadequate key management and a lack of contributor vetting. This operational negligence in DeFi contrasts sharply with the mature, layered security culture of traditional finance (TradFi). Despite these significant security threats, market data shows major assets trading higher, with ETHUSDT up 6.285% and SOLUSDT up 4.172% in the last 24 hours, suggesting the market may be underpricing these systemic risks.