According to @zachxbt, researchers at Cisco Talos have identified a North Korean hacking group, known as Famous Chollima, targeting cryptocurrency workers with new Python-based malware called PylangGhost. The attack vector involves impersonating major crypto firms like Coinbase, Robinhood, and Uniswap through fake job applications to trick individuals into installing the malware. This Remote Access Trojan (RAT) is designed to steal sensitive data from over 80 browser extensions, including critical crypto wallets like MetaMask, Phantom, and TronLink, posing a direct threat to user assets and company security. In a related development for industry security, former FBI Supervisory Special Agent Christopher Wong, who co-led the investigation into the $3.6 billion Bitfinex hack and the Axie Infinity Ronin Bridge breach, has joined blockchain intelligence firm TRM Labs. This move signals a significant enhancement in the private sector's capabilities to track and combat illicit crypto activities, a crucial development for investor confidence.

According to @phantom, traders should be on high alert due to escalating security threats. A recent front-end exploit on a major crypto media website and a similar attack on CoinMarketCap used fake airdrop pop-ups to deploy wallet drainers, tricking users into connecting their wallets. Simultaneously, researchers at Cisco Talos report that a North Korean hacking group, Famous Chollima, is targeting crypto professionals with new Python-based malware called PylangGhost. The attackers use fake job applications from prominent firms like Coinbase and Uniswap to distribute the malware, which is designed to steal credentials and data from over 80 browser extensions, including MetaMask and Phantom wallets. These security risks are unfolding as the market sees a downturn, with Ethereum (ETH) trading at approximately $2405, down 3.6%, and Chainlink (LINK) at $12.84, down 3.45% over the last 24 hours, based on provided market data.

According to @phantom, traders should be on high alert as sophisticated security threats escalate. Researchers at Cisco Talos have identified a North Korean hacking group, known as Famous Chollima, deploying a new Python-based malware called PylangGhost, as cited in the report. This Remote Access Trojan (RAT) is disguised within fake job applications from major crypto firms like Coinbase and Uniswap, targeting industry professionals. The malware is designed to steal sensitive data, including login credentials and wallet information from over 80 browser extensions such as MetaMask and Phantom. Concurrently, a separate front-end exploit targeted a major crypto news website with a fake airdrop pop-up designed to drain user wallets, a tactic also recently used against CoinMarketCap. These mounting security risks coincide with negative market performance, with Ethereum (ETH) falling approximately 3.6% to $2,405.01 and Chainlink (LINK) declining by 3.46% to $12.84, highlighting how security breaches can impact trader sentiment and asset valuations.

According to AltcoinGordon, darkweb threat actors claim to possess over 100,000 user records from Gemini and Binance, including full names, emails, phone numbers, and location data. Binance clarified that the breach did not originate from an exchange leak but rather from malware on infected computers.

According to ZachXBT, the Electrum Wallet hack in 2018 was a significant scam where attackers introduced malicious servers into the network. This led users to receive fraudulent prompts to update their wallet versions, which were actually malware. Traders should be aware of such tactics to protect their assets.