The post Seed-Phrase Poison, a Contagious “Coinbase Job” and Cybersecurity News appeared on BitcoinEthereumNews.com.

Coinbase and Ledger customers were the target of a phishing email of seed-phrases SilentPush analysts detected a PoisonSeed phishing campaign sending out emails with seed-phrases to steal cryptocurrencies.  In the first stage, the attackers create fake pages of well-known mass-mailing platforms, including Mailchimp, SendGrid, HubSpot, Mailgun and Zoho. They use them to hack into the corporate email accounts of various marketers and send spam from them. The hackers focus on Coinbase exchange customers and Ledger hardware wallet owners. The mailing is usually an urgent notification, in the style of “Coinbase is switching to self-storage wallets” and contains a seed phrase. The latter is suggested to be entered when creating a new cryptocurrency wallet ostensibly for “secure asset transfer” as part of an upgrade or migration. Fake email on behalf of Coinbase. Source: SilentPush. If the victim follows this instruction, the attacker gains full control over their funds. DPRK hackers pretended to be HR managers of major cryptocurrency exchanges Sekoia experts pointed to a new ClickFix tactic that North Korean hacker group Lazarus Group has begun using to attack job applicants in the AI and cryptocurrency industries. Professionals receive invitations from fake interview sites. Users encounter errors when navigating to them and viewing the content. The page offers to “fix” the problem by running PowerShell commands that download malware. In this campaign, hackers impersonate well-known crypto projects including Coinbase, KuCoin, Kraken, Circle, Securitize, BlockFi, Tether, Robinhood and Bybit. Brands used by hackers. Source: Sekoia. In addition to stealing cryptocurrencies, the malware is capable of performing file operations, shell commands, stealing cookies, browsing history and stored passwords, and collecting system metadata. Members of the group that hacked the NATO portal have suggested the arrest of their leader A member of SiegedSec, the hacker group responsible for hacking the NATO portal, The Heritage Foundation think tank and…

---

Filed under: News - @ April 5, 2025 11:28 am