GLOBAL SITUATIONMONITORING
482 published briefsUTCFri, Apr 3 06:42:44
Cryptocurrency Private Key Theft
Private key extraction and wallet compromise from password manager breaches, including offline cracking and unauthorized access to cryptocurrency holdings.
2 intelligence briefs← Intelligence Hub
-
UNC4899 breached crypto firm after developer AirDropped trojanized file to work device
The North Korea-linked threat actor UNC4899 is suspected of breaching a cryptocurrency organization in 2025 after a developer transferred a trojanized file to a work device, leading to a cloud compromise and the theft of millions of dollars in cryptocurrency.
-
LastPass Breach Leads to Ongoing Crypto Theft
TRM Labs blockchain investigation links $35+ million in cryptocurrency thefts to the 2022 LastPass breach. Attackers crack master passwords offline, extract private keys, drain wallets via CoinJoin mixing, and launder funds through Russian exchanges.