Binance Square
#security

security

1.7M views
3,088 Discussing
ScapingWw
·
--
$BONK DAO DRAINED $21.2M IN GOVERNANCE EXPLOIT 🔥 This isn’t a hack — the attacker simply passed a malicious proposal and walked away with the funds. The DAO’s own governance system was weaponized, and now $SPELL , $LDO , and $EVAA are under the microscope as the market digests what this means for DAO security. The way I see it, this creates ripple effects across the DeFi space — trust in governance tokens could take a hit in the short term. But it also opens up opportunities for projects with stronger safeguards. Where are you positioning while this shakes out? Not financial advice. Always manage your risk. #BONK #GovernanceExploit #DeFi #Security 🔥
$BONK DAO DRAINED $21.2M IN GOVERNANCE EXPLOIT 🔥

This isn’t a hack — the attacker simply passed a malicious proposal and walked away with the funds. The DAO’s own governance system was weaponized, and now $SPELL , $LDO , and $EVAA are under the microscope as the market digests what this means for DAO security.

The way I see it, this creates ripple effects across the DeFi space — trust in governance tokens could take a hit in the short term. But it also opens up opportunities for projects with stronger safeguards. Where are you positioning while this shakes out?

Not financial advice. Always manage your risk.

#BONK #GovernanceExploit #DeFi #Security

🔥
·
--
🚨 **SHOCKWAVE: Consensys Unknowingly Hired North Korean Dev!** In a stunning security revelation, Consensys, the powerhouse behind MetaMask, has admitted to a major operational security failure. - The company revealed it inadvertently employed a developer who was later discovered to have direct ties to North Korea. - This individual was hired through a supposedly reputable third-party service, exposing a massive blind spot in the vetting process for even the biggest names in crypto. - The incident sends a serious warning across the industry about the sophisticated methods state-sponsored actors use to infiltrate crypto projects from the inside. This is a huge wake-up call for the entire ecosystem. How can projects better protect themselves from these advanced infiltration threats? Share your security tips below! 👇 $ETH #CryptoNews #Security #CyberSecurity Disclaimer: This is not financial advice. DYOR.
🚨 **SHOCKWAVE: Consensys Unknowingly Hired North Korean Dev!**

In a stunning security revelation, Consensys, the powerhouse behind MetaMask, has admitted to a major operational security failure.

- The company revealed it inadvertently employed a developer who was later discovered to have direct ties to North Korea.

- This individual was hired through a supposedly reputable third-party service, exposing a massive blind spot in the vetting process for even the biggest names in crypto.

- The incident sends a serious warning across the industry about the sophisticated methods state-sponsored actors use to infiltrate crypto projects from the inside.

This is a huge wake-up call for the entire ecosystem. How can projects better protect themselves from these advanced infiltration threats? Share your security tips below! 👇

$ETH
#CryptoNews #Security #CyberSecurity

Disclaimer: This is not financial advice. DYOR.
📰 Consensys Unknowingly Hired North Korean Developer: Security incident highlights crypto industry vetting challenges On July 18, 2026, Consensys has disclosed that it unknowingly outsourced developer work to a North Korean operative, raising concerns about supply chain security in blockchain development. The incident highlights the challenges of remote work verification. This case underscores the importance of rigorous background checks and security protocols in crypto development. The industry faces increasing scrutiny over operational security practices. 📌 Key Takeaway: The Consensys incident demonstrates the growing sophistication of infiltration attempts in the blockchain development ecosystem. #Consensys #Security #CryptoIndustry #BinanceAlphaAlert
📰 Consensys Unknowingly Hired North Korean Developer: Security incident highlights crypto industry vetting challenges
On July 18, 2026, Consensys has disclosed that it unknowingly outsourced developer work to a North Korean operative, raising concerns about supply chain security in blockchain development. The incident highlights the challenges of remote work verification.
This case underscores the importance of rigorous background checks and security protocols in crypto development. The industry faces increasing scrutiny over operational security practices.

📌 Key Takeaway:
The Consensys incident demonstrates the growing sophistication of infiltration attempts in the blockchain development ecosystem.

#Consensys #Security #CryptoIndustry
#BinanceAlphaAlert
ATTACKER RETURNS 1122 $ETH WORTH $2M - WHAT DOES THIS MEAN 🔥 This is an unusual move. The TrustedVolumes attacker sent back 1122 ETH after stealing $5.8M initially. They still hold roughly $2M as a "bug bounty" — basically admitting the exploit was their find. On-chain shows the funds were converted to ~2513 ETH. Returning almost half suggests negotiation or pressure. Partial returns like this can create short-term uncertainty for $ETH liquidity, but they rarely move price directly. Are you watching this for a possible impact on market confidence? Not financial advice. Always manage your risk. #ETH #CryptoNews #Security #MarketUpdate ⚡
ATTACKER RETURNS 1122 $ETH WORTH $2M - WHAT DOES THIS MEAN 🔥

This is an unusual move. The TrustedVolumes attacker sent back 1122 ETH after stealing $5.8M initially. They still hold roughly $2M as a "bug bounty" — basically admitting the exploit was their find.

On-chain shows the funds were converted to ~2513 ETH. Returning almost half suggests negotiation or pressure. Partial returns like this can create short-term uncertainty for $ETH liquidity, but they rarely move price directly.

Are you watching this for a possible impact on market confidence?

Not financial advice. Always manage your risk.

#ETH #CryptoNews #Security #MarketUpdate

NORTH KOREAN AGENT WORKED INSIDE $ETH METAMASK CODE FOR A MONTH ⚡ From a risk perspective, this type of supply chain infiltration is more alarming than a direct exchange breach. A single developer with access to core wallet code can introduce backdoors into transaction-signing logic or fiat on-ramp integrations. Consensys identified the threat before any assets were lost, but the broader campaign has placed suspected operatives in over 50 crypto projects in six months. The data point that stands out: the same network behind this infiltration was tied to the $1.5 billion Bybit theft earlier this year. That signals a persistent structural weakness in how the industry vets remote contractors and third-party providers. How are you assessing contractor risk in the protocols you rely on? Not financial advice. Always manage your risk. #ETH #Security #MetaMask #CryptoThreat ⚡
NORTH KOREAN AGENT WORKED INSIDE $ETH METAMASK CODE FOR A MONTH ⚡

From a risk perspective, this type of supply chain infiltration is more alarming than a direct exchange breach. A single developer with access to core wallet code can introduce backdoors into transaction-signing logic or fiat on-ramp integrations. Consensys identified the threat before any assets were lost, but the broader campaign has placed suspected operatives in over 50 crypto projects in six months.

The data point that stands out: the same network behind this infiltration was tied to the $1.5 billion Bybit theft earlier this year. That signals a persistent structural weakness in how the industry vets remote contractors and third-party providers.

How are you assessing contractor risk in the protocols you rely on?

Not financial advice. Always manage your risk.

#ETH #Security #MetaMask #CryptoThreat

NORTH KOREAN HACKER INFILTRATED METAMASK CODE — IS $ETH SAFE? 🔥 A North Korean-linked developer using a fake identity spent about a month inside MetaMask’s core wallet code, including parts handling crypto-to-fiat conversions. Consensys caught it, revoked access, and reported zero asset or data loss — but the access window was real. This isn’t a trade signal. It’s a reminder that security risk at the protocol level can hit sentiment harder than charts. TRM Labs says compromised dev environments are a direct route to transaction-signing infrastructure. If that rattles ETH confidence, we’ll see it in bid depth first. Does this change your confidence in MetaMask’s security? Not financial advice. Always manage your risk. #ETH #Security #MetaMask #CryptoNews 🔥
NORTH KOREAN HACKER INFILTRATED METAMASK CODE — IS $ETH SAFE? 🔥

A North Korean-linked developer using a fake identity spent about a month inside MetaMask’s core wallet code, including parts handling crypto-to-fiat conversions. Consensys caught it, revoked access, and reported zero asset or data loss — but the access window was real.

This isn’t a trade signal. It’s a reminder that security risk at the protocol level can hit sentiment harder than charts. TRM Labs says compromised dev environments are a direct route to transaction-signing infrastructure. If that rattles ETH confidence, we’ll see it in bid depth first.

Does this change your confidence in MetaMask’s security?

Not financial advice. Always manage your risk.

#ETH #Security #MetaMask #CryptoNews

🔥
Hardware wallets are getting a lot of attention again. One well known crypto researcher said they are not the best choice for people who move large amounts of crypto every day. The main reason was that updates battery issues and slow signing can become a problem when time is important. Many people did not fully agree. Some believe a dedicated offline device is still the safest way to protect private keys. Others think using more than one wallet with better backup methods gives stronger security. The biggest lesson is simple. There is no perfect wallet for everyone. The best choice depends on how you use your crypto. Keep your recovery phrase safe test your setup before moving large funds and always use strong security habits. Good security is not only about the wallet. It is about using it the right way every day. #Bitcoin #Security #SelfCustody #CryptoCommunity $BTC {spot}(BTCUSDT) $ETH {spot}(ETHUSDT) $SOL {spot}(SOLUSDT)
Hardware wallets are getting a lot of attention again. One well known crypto researcher said they are not the best choice for people who move large amounts of crypto every day. The main reason was that updates battery issues and slow signing can become a problem when time is important.

Many people did not fully agree. Some believe a dedicated offline device is still the safest way to protect private keys. Others think using more than one wallet with better backup methods gives stronger security.

The biggest lesson is simple. There is no perfect wallet for everyone. The best choice depends on how you use your crypto. Keep your recovery phrase safe test your setup before moving large funds and always use strong security habits.

Good security is not only about the wallet. It is about using it the right way every day.

#Bitcoin #Security #SelfCustody #CryptoCommunity
$BTC
$ETH
$SOL
$BTC 21-YEAR-OLD CHARGED FOR STEALING $220K VIA MALWARE GAMES 💀 A Florida man allegedly infected 8,000 devices through games like BlockBlasters and DashFPS, draining 80 wallets. The FBI traced him via on-chain flow and gift card purchases on Bitrefill. This is a reminder that even on trusted platforms, malicious code gets through. Over $220k lost because someone downloaded a bad game. Are you checking the origins of every app you run? Not financial advice. Always manage your risk. #BTC #CryptoSafety #MalwareAlert #Security ⚡
$BTC 21-YEAR-OLD CHARGED FOR STEALING $220K VIA MALWARE GAMES 💀

A Florida man allegedly infected 8,000 devices through games like BlockBlasters and DashFPS, draining 80 wallets. The FBI traced him via on-chain flow and gift card purchases on Bitrefill.

This is a reminder that even on trusted platforms, malicious code gets through. Over $220k lost because someone downloaded a bad game. Are you checking the origins of every app you run?

Not financial advice. Always manage your risk.

#BTC #CryptoSafety #MalwareAlert #Security

$SOL SECURITY INCIDENT – ACROSS BRIDGE DEPOSITS HALTED 🔒 Across Protocol paused Solana deposits after a security breach on July 17 around 13:30 UTC. The team confirmed all user bridge transactions were processed and no customer funds were affected — only relayer funds belonging to Risk Labs are at risk. They're working with SEAL_911 to monitor related addresses and will publish a full post-mortem soon. This type of swift response usually builds trust, but markets hate uncertainty. Are you holding $SOL or waiting for clarity? Not financial advice. Always manage your risk. #SOL #Security #Bridge #CryptoNews ⚡
$SOL SECURITY INCIDENT – ACROSS BRIDGE DEPOSITS HALTED 🔒

Across Protocol paused Solana deposits after a security breach on July 17 around 13:30 UTC. The team confirmed all user bridge transactions were processed and no customer funds were affected — only relayer funds belonging to Risk Labs are at risk.

They're working with SEAL_911 to monitor related addresses and will publish a full post-mortem soon. This type of swift response usually builds trust, but markets hate uncertainty.

Are you holding $SOL or waiting for clarity?

Not financial advice. Always manage your risk.

#SOL #Security #Bridge #CryptoNews

$SOL ECOSYSTEM PROTOCOL HIT BY $580K HACK – IS THE FUNDING SAFE? 🔥 Yesterday, DeFiTuna, a derivative protocol within Solana's ecosystem, suffered a $580,000 USDC drain from its lending pool. The team has identified and patched the attack vector and is actively working to recover the funds. This incident highlights ongoing security risks in DeFi despite Solana's strong recovery narrative. The 580k deficit is material for a lending pool and could affect user confidence if not resolved quickly. Will this shake confidence in Solana DeFi or is it just a minor setback? Not financial advice. Always manage your risk. #SOL #DeFi #HackAlert #Security 🔥
$SOL ECOSYSTEM PROTOCOL HIT BY $580K HACK – IS THE FUNDING SAFE? 🔥

Yesterday, DeFiTuna, a derivative protocol within Solana's ecosystem, suffered a $580,000 USDC drain from its lending pool. The team has identified and patched the attack vector and is actively working to recover the funds.

This incident highlights ongoing security risks in DeFi despite Solana's strong recovery narrative. The 580k deficit is material for a lending pool and could affect user confidence if not resolved quickly.

Will this shake confidence in Solana DeFi or is it just a minor setback?

Not financial advice. Always manage your risk.

#SOL #DeFi #HackAlert #Security

🔥
📚 Hot Wallets vs Cold Wallets: Balancing convenience and security On July 16, 2026, choosing the right wallet type is crucial for crypto security. Hot wallets are connected to the internet — mobile apps, browser extensions, and exchange accounts. They're convenient for daily transactions but vulnerable to hacks. Cold wallets are offline storage devices like hardware wallets (Ledger, Trezor) or paper wallets. They're much more secure because private keys never touch an internet-connected device. However, transactions require manually connecting and signing. Best practice: use hot wallets for small amounts you need to access regularly, and cold wallets for long-term holdings. Never keep significant funds on exchanges — not your keys, not your coins. 📌 Key Takeaway: Hot wallets = convenient but connected (daily use). Cold wallets = secure but offline (long-term storage). The golden rule: not your keys, not your coins. #CryptoWallet #Security #BinanceAlphaAlert
📚 Hot Wallets vs Cold Wallets: Balancing convenience and security
On July 16, 2026, choosing the right wallet type is crucial for crypto security. Hot wallets are connected to the internet — mobile apps, browser extensions, and exchange accounts. They're convenient for daily transactions but vulnerable to hacks.
Cold wallets are offline storage devices like hardware wallets (Ledger, Trezor) or paper wallets. They're much more secure because private keys never touch an internet-connected device. However, transactions require manually connecting and signing.
Best practice: use hot wallets for small amounts you need to access regularly, and cold wallets for long-term holdings. Never keep significant funds on exchanges — not your keys, not your coins.

📌 Key Takeaway:
Hot wallets = convenient but connected (daily use). Cold wallets = secure but offline (long-term storage). The golden rule: not your keys, not your coins.

#CryptoWallet #Security
#BinanceAlphaAlert
Kaspersky detects malware targeting crypto investors - Cybersecurity company Kaspersky has detected a new malware framework targeting cryptocurrency investors. - The malware uses social engineering tactics and fake GitHub to spread. - Investors need to be cautious of apps with unclear sources and downloads from GitHub. #BinanceSquare #CryptoNews #Security #Malware $btc $eth #vlikevn Titanbot Source: CoinTelegraph
Kaspersky detects malware targeting crypto investors

- Cybersecurity company Kaspersky has detected a new malware framework targeting cryptocurrency investors.
- The malware uses social engineering tactics and fake GitHub to spread.
- Investors need to be cautious of apps with unclear sources and downloads from GitHub.

#BinanceSquare #CryptoNews #Security #Malware

$btc $eth

#vlikevn Titanbot

Source: CoinTelegraph
💎 Worth noting: Be careful when downloading games on Steam so you don’t end up with “dead loss” of your e-wallet! A 21-year-old man in Florida was just charged for installing malware into games on Steam to steal cryptocurrency. Case details: 📍 Number of infected devices: about 8,000 📍 Number of wallets stolen: about 80 📍 Total damage: over 220,000 USD 📍 List of at-risk games: BlockBlasters, Chemia, Dashverse, DashFPS, Lampy, Lunara, PirateFi and Tokenova. Deep dive: The criminals didn’t just upload the games to Steam—they also heavily promoted them on Discord, Telegram, and X to build trust. This shows that an application appearing on a major platform doesn’t automatically mean it’s absolutely safe. An interesting point: the FBI caught the suspect thanks to purchase trails—more than 150 Uber Eats gift cards bought via Bitrefill. Indeed, the “oil-stain trail” on the blockchain never disappears, no matter how hard you try to stay anonymous. Brothers, do you have the habit of downloading strange games or mods of unclear origin? Share your wallet security experience below! 👉 Read the news, make the decision — Follow the Channel https://app.binance.com/uni-qr/cpro/Square-Creator-4a0f2008149d?l=en&r=BOZMO8A1 #WhaleAlert #Crypto #OnChain #Security #Hack $BTC
💎 Worth noting: Be careful when downloading games on Steam so you don’t end up with “dead loss” of your e-wallet!

A 21-year-old man in Florida was just charged for installing malware into games on Steam to steal cryptocurrency.

Case details:
📍 Number of infected devices: about 8,000
📍 Number of wallets stolen: about 80
📍 Total damage: over 220,000 USD
📍 List of at-risk games: BlockBlasters, Chemia, Dashverse, DashFPS, Lampy, Lunara, PirateFi and Tokenova.

Deep dive:
The criminals didn’t just upload the games to Steam—they also heavily promoted them on Discord, Telegram, and X to build trust. This shows that an application appearing on a major platform doesn’t automatically mean it’s absolutely safe.

An interesting point: the FBI caught the suspect thanks to purchase trails—more than 150 Uber Eats gift cards bought via Bitrefill. Indeed, the “oil-stain trail” on the blockchain never disappears, no matter how hard you try to stay anonymous.

Brothers, do you have the habit of downloading strange games or mods of unclear origin? Share your wallet security experience below!

👉 Read the news, make the decision — Follow the Channel https://app.binance.com/uni-qr/cpro/Square-Creator-4a0f2008149d?l=en&r=BOZMO8A1

#WhaleAlert #Crypto #OnChain #Security #Hack $BTC
⚡️ AI agents are becoming smarter, but self custody still needs a human checkpoint. Ledger's new open-source Agent Stack allows AI to analyze wallet balances, prepare swaps, and draft transactions without exposing your private keys. Every on-chain action still requires physical confirmation on a Ledger device, reducing the risk of rogue agents or prompt-injection attacks. The core idea is simple: AI can assist, but it can't take control. As AI-powered finance grows, hardware-backed approval could become the standard for secure automation. What's your take—would you trust an AI agent if every transaction still needed your approval? $DGB $AI $MANTRA #AI #Crypto #Ledger #DeFi #Security
⚡️ AI agents are becoming smarter, but self custody still needs a human checkpoint.

Ledger's new open-source Agent Stack allows AI to analyze wallet balances, prepare swaps, and draft transactions without exposing your private keys. Every on-chain action still requires physical confirmation on a Ledger device, reducing the risk of rogue agents or prompt-injection attacks. The core idea is simple: AI can assist, but it can't take control.

As AI-powered finance grows, hardware-backed approval could become the standard for secure automation.
What's your take—would you trust an AI agent if every transaction still needed your approval?

$DGB $AI $MANTRA
#AI #Crypto #Ledger #DeFi #Security
Warning: New macOS malware targets Telegram and cryptocurrency wallets - According to SlowMist, a new type of malware on macOS is threatening users. - This malware is designed to steal login credentials, thereby taking control of the victims’ Telegram sessions. - In addition, it can decrypt cryptocurrency wallets or trick users into entering wallet recovery phrases through fake applications. - macOS users need to be especially vigilant and take the necessary security measures to protect their crypto assets. #BinanceSquare #CryptoNews #Security #Malware #Telegram MacOS $btc $eth vlikevn Titanbot Source: CoinTelegraph
Warning: New macOS malware targets Telegram and cryptocurrency wallets

- According to SlowMist, a new type of malware on macOS is threatening users.
- This malware is designed to steal login credentials, thereby taking control of the victims’ Telegram sessions.
- In addition, it can decrypt cryptocurrency wallets or trick users into entering wallet recovery phrases through fake applications.
- macOS users need to be especially vigilant and take the necessary security measures to protect their crypto assets.

#BinanceSquare #CryptoNews #Security #Malware #Telegram MacOS

$btc $eth

vlikevn Titanbot

Source: CoinTelegraph
Another perp DEX got hit. Ostium lost $18M to an oracle manipulation attack, the third DeFi exploit this month targeting price feeds rather than contract bugs. Majors are calm. BTC $65,068 (+0.66% 24h), ETH $1,920 (+2.72%), SOL $77.60. Fear & Greed at 25, Extreme Fear, and BTC perp funding flat at 0.0035%, no leveraged bid, no panic unwind. The market absorbing exploits without flinching is more worrying than the hacks. Oracle attacks work because perp DEXs trust a single price source. When that feed gets spoofed, the protocol logic executes against a fake mark. Audits miss it because the contract behaves as designed; the input is the problem. This is why I keep Crypticorn Price Prediction Dashboard open on perp-heavy days. Funding-rate divergence across venues flags when something is off before the tweet drops. $ETH $BTC #DeFi #Security #CryptoAI #MarketOutlook Not financial advice.
Another perp DEX got hit. Ostium lost $18M to an oracle manipulation attack, the third DeFi exploit this month targeting price feeds rather than contract bugs.

Majors are calm. BTC $65,068 (+0.66% 24h), ETH $1,920 (+2.72%), SOL $77.60. Fear & Greed at 25, Extreme Fear, and BTC perp funding flat at 0.0035%, no leveraged bid, no panic unwind. The market absorbing exploits without flinching is more worrying than the hacks.

Oracle attacks work because perp DEXs trust a single price source. When that feed gets spoofed, the protocol logic executes against a fake mark. Audits miss it because the contract behaves as designed; the input is the problem.

This is why I keep Crypticorn Price Prediction Dashboard open on perp-heavy days. Funding-rate divergence across venues flags when something is off before the tweet drops.

$ETH $BTC #DeFi #Security #CryptoAI #MarketOutlook

Not financial advice.
✨ AI + Crypto Is the AI 'hackpocalypse' actually happening? 🤖 Turns out it's a false alarm... $DeFi hack sizes and total value stolen are actually dropping! AI might not be the killer we feared just yet... 👀 #Security ‎
✨ AI + Crypto

Is the AI 'hackpocalypse' actually happening? 🤖

Turns out it's a false alarm... $DeFi hack sizes and total value stolen are actually dropping! AI might not be the killer we feared just yet... 👀

#Security
AnubisChain|CertiK + Armor Dual Security Audit🛡️ #AnubisChain |CertiK + Armor Dual Security Audit #AnubisChain has completed security verification with CertiK and Armor, covering core smart contracts and end-to-end asset security across the #ecosystem . ✅ 137 core smart contracts verified ✅ Asset reserves, issuance, and transfers fully traceable ✅ Multi-layer security framework strengthened #security is not a slogan. It is the foundation of long-term ecosystem trust. AnubisChain continues to build with higher standards, stronger protection, and verifiable on-chain transparency. 🔐

AnubisChain|CertiK + Armor Dual Security Audit

🛡️ #AnubisChain |CertiK + Armor Dual Security Audit
#AnubisChain has completed security verification with CertiK and Armor, covering core smart contracts and end-to-end asset security across the #ecosystem .
✅ 137 core smart contracts verified
✅ Asset reserves, issuance, and transfers fully traceable
✅ Multi-layer security framework strengthened
#security is not a slogan. It is the foundation of long-term ecosystem trust.
AnubisChain continues to build with higher standards, stronger protection, and verifiable on-chain transparency. 🔐
Multisignature provides enhanced security for your crypto assets by requiring multiple approvals before executing a transaction. It’s like having a multi-combination safe! #Crypto #Security
Multisignature provides enhanced security for your crypto assets by requiring multiple approvals before executing a transaction. It’s like having a multi-combination safe! #Crypto #Security
Log in to explore more content
Join global crypto users on Binance Square
⚡️ Get latest and useful information about crypto.
💬 Trusted by the world’s largest crypto exchange.
👍 Discover real insights from verified creators.
Email / Phone number