Crypto-Sec Latest News

Crypto-Sec is our bi-weekly round-up of crypto and cybersecurity stories and tips.

Biggest Phish of the Week: Hedera Users Targeted

• Hedera marketing email hacked
• Phishing emails sent to subscribers
• Users warned not to interact with links in emails

Phishing is a deceptive technique used by attackers to obtain sensitive information from users. In this case, the attacker posed as a representative of the Hedera development team to deceive users.

The team is expected to provide more information soon regarding the incident.

MoveIt File Transfer Vulnerability Patched

• Security researchers discover critical vulnerability
• Vulnerability patched in current version
• Users urged to upgrade to the latest version immediately

The vulnerability in MoveIt software allowed attackers to impersonate users and access sensitive data. Progress has already released a patch to address the issue but advises users to update to the latest version.

Address Poisoning Attack

• Cybersecurity firm detects address poisoning attack
• Victim loses over $70,000 worth of USDT
• Attacker uses fake tokens to redirect funds

Users are reminded to verify addresses carefully before making transactions to prevent falling victim to such attacks.

Centralized Exchange Exploits

• Istanbul-based exchange exploited via stolen private key
• Attack details and losses estimated
• Exchange advises users to use new deposit addresses

Since the attack, BtcTurk has implemented new security measures to protect user funds and prevent further exploits.

About the Author: Christopher Roark

Christopher Roark is known for his investigative work in tracking down scammers and hackers in the crypto industry.