● Beat
Security Desk
Exploits and threat intel. Skim only.
- jaredfromsubway MEV bot drained $7.5M via counter-MEV honeypot.
- Fake ZKsync token tied to fentanyl-linked Chinese criminal network caused $1M+ in losses.
- Altura winds down stablecoin vault amid mass withdrawals and msUSD contagion fears.
- Secret Network's Axelar bridge drained $4.67M via infinite-mint exploit, undetected for seven days.
- Two Texas brothers plead guilty to kidnapping a Minnesota family for $8M in crypto.
- Microsoft flags USB-spread malware hijacking crypto wallets.
- Steam Workshop wallpaper packs delivering infostealers to gamers.
- Texas brothers plead guilty to $8M armed crypto kidnapping.
- Aztec hit by a second exploit in less than a week, losing another $2.1 million.
- Popa botnet tied to a Nasdaq-listed Israeli proxy firm.
- 'Bitcoin Rodney' pleads guilty in $1.8 billion HyperFund fraud.
- Bybit lands on Singapore's MAS Investor Alert List.
- Binance VIP client manager reportedly under investigation by Chinese authorities.
- Aztec Connect's deprecated smart contract drained for $2.1 million.
- Chainalysis flags $36.7 million in losses from unverified DeFi contract attacks since January.
- South Korea charges 23 people over $11 million in crypto laundering linked to a Cambodian scam ring.
- Aztec Connect's deprecated bridge drained for $2.1M.
- Physical attack in France results in one indictment.
- Coinbase quantum report flags exchange cold wallets in address-reuse exposure pool.
- Google sues Chinese crime network for weaponising Gemini in crypto-targeted phishing campaign.
- AI agent burns developer funds on a fabricated security scan.
- Monero laundering maze covered in the lead.
- Tennessee man indicted for a four-year crypto Ponzi scheme.
- SBF appeal rejected, presidential pardon now his only remaining path.
- AudiA6 crypto laundering network taken down, $389M in bitcoin traced.
- Immunefi CEO says frontier AI models are driving a vulnerability surge across DeFi.
- Coinbase urges Bitcoin developers to begin post-quantum migration now.
- Raydium drained $1.34M via a retired AMM program.
- Krebs profiles 'The Gentlemen', ransomware's second-most-active gang.
- Humanity Protocol: $36M gone because multisig keys lived on one laptop.
- Chainalysis flags $36.7M stolen from unverified smart contracts since January.
- Microsoft's June Patch Tuesday is the largest on record, nearly 200 vulnerabilities patched.
- Humanity Protocol: $32 million drained, token down 89%.
- Yuga Labs rescued 68 NFTs from a Flooring Protocol exploit.
- Claude Opus 4.8 found a critical Zcash vulnerability before any human auditor did.
- A Satoshi-era wallet moved 15 BTC after 14 years of dormancy, complicating a $285B lawsuit.
- apxUSD depegs to $0.90 as collateral token STRC collapses.
- AI-assisted researcher who flagged a Zcash vulnerability now turns the same tooling on Monero.
- Microsoft researchers flag a prompt-injection flaw in Claude Code that could expose GitHub credentials.
- TrustedVolumes, a 1inch Fusion resolver, lost $6.7 million in an exploit.
- AI tooling surfaced a critical flaw in a major crypto network, with warnings the class of vulnerability extends to banks.
- Zcash Orchard Pool: four-year-old counterfeiting flaw disclosed.
- Kelp DAO hacker launders $220 million, leaving recovery hopes largely exhausted.
- EdgeX token collapses; ZachXBT alleges insiders held nearly the entire supply.
- DOJ task force freezes $3.8 million in illicit crypto tied to Southeast Asian organised crime.