Security Incidents

Two malicious Axios npm releases have prompted warnings for developers to rotate credentials and treat affected systems as compromised after a supply chain attack poisoned the popular JavaScript HTTP client library. The compromise was first reported by cybersecurity company Socket, which said

Singapore orders to stop disputes related to the Resupply hack in the crypto smear war A court in Singapore has ordered OneKey founder Wang Lei and a user on X to end threatening and defamatory accusations aimed at a collaborator involved with Curve, after a dispute

Google Quantum AI warns that 256-bit elliptic curve cryptography could be compromised in minutes with under 500,000 qubits, urging the crypto industry to swiftly adopt post-quantum cryptography to enhance security.

Google warns that advancements in quantum computing may compromise cryptocurrency security sooner than expected, prompting analysts to advocate for appropriate levels of urgency.

Gate News message. On March 31, blockchain sleuth ZachXBT monitored that a certain CEX user may have been the victim of a social engineering attack, with losses of about $18.2 million. The attacker began the operation about 45 minutes earlier, using a SafePal wallet, and transferred the assets from the Ethereum network to the Bitcoin network via the decentralized cross-chain protocol THORChain.

The quantum computing power required to break the encryption that secures blockchains continues to decline, at least in theory, raising the question of whether the industry can migrate to quantum-resistant platforms before they become vulnerable at an affordable cost. A new paper by Caltech and qu

Google’s Quantum AI team released a white paper stating that the quantum resources required to break elliptic curve cryptography are lower than expected. It proposes two quantum circuit schemes and recommends that the cryptocurrency community migrate to post-quantum cryptography by 2029 to address potential threats.

The blockchain security company Fuzzland’s research shows that the npm package of Anthropic’s AI programming tool Claude Code contains complete source map files, leaking the code of 1,906 source files. Although similar files were previously removed, the new version still contains this issue, exposing internal architecture and security mechanisms. यह leak does not involve user data, but it affects security.

Google’s quantum AI team research indicates that the quantum computing power needed to break Bitcoin is far lower than expected, possibly less than 500,000 qubits. Research simulations show that hackers can intercept ongoing Bitcoin transactions within 9 minutes, and that about one-third of Bitcoin is stored in wallets that have already been exposed, increasing the risk of quantum attacks. While Bitcoin’s Taproot upgrade strengthens privacy, it also exposes public keys, increasing asset risk.

A Maryland man has been charged with exploiting vulnerabilities at Uranium Finance, resulting in a $54 million loss. Prosecutors allege he hacked the platform, laundered the funds through high-value collectibles, and could face decades in prison.

DeFi risk management platform Steakhouse Financial was recently hacked, and its frontend system was used for phishing, but user funds were not affected. The attack stemmed from social engineering targeting the server provider, and Steakhouse will roll back the malicious changes and publish an incident report. Experts advise users to improve their security awareness and watch out for phishing risks.

Crypto firms Archblock, TrustToken, and TrueCoin have filed for bankruptcy due to financial devastation after Techteryx failed to pay invoices and was defrauded by an Eastern European criminal group. The company has also been involved in multiple legal disputes, facing tax issues and high-risk investment losses, highlighting potential risks in the stablecoin industry.

The Mist Security Team has issued a warning. axios@1.14.1 and axios@0.30.4 have been identified as malicious versions; they contain malicious payloads that can be delivered via an postinstall script. The impact on OpenClaw needs to be assessed by scenario. It is recommended that affected hosts immediately check and rotate credentials.

Gate News reports that on March 31, SlowMist founder Yu Xuan issued a security warning stating that the latest version 3.28 of OpenClaw may introduce a malicious axios dependency package, prompting users to conduct thorough inspections. Yu Xuan pointed out that, in addition to the risks directly associated with OpenClaw, related Skills may also rely on axios, leading to indirect contamination. Because axios is widely used, a comprehensive investigation is recommended. It is understood that this poisoning incident was detected in a timely manner.

Recently, there has been a surge in phishing attack cases targeting Pi Network. Scammers send fake 2FA links aimed at users who have already completed the second mainnet migration, attempting to steal their 24-word seed phrase. These phishing pages resemble the official interface and exploit users’ trust in official operations to carry out the scam. Experts recommend that if a user has leaked their seed phrase, they should immediately transfer their assets and stop using the old wallet to protect their assets.

Google’s quantum artificial intelligence team released a white paper, proposing a new quantum attack scheme that significantly lowers the cost of breaking elliptic curve encryption, sparking panic in the encryption industry. Research shows that the quantum computing threat is accelerating and moving closer, with major blockchains such as Bitcoin and Ethereum facing risks; the industry needs to rapidly advance the upgrade to post-quantum encryption.

Recently, the npm core package axios was hit by a supply-chain attack. The attacker compromised the lead maintainer’s account and published a malicious version that injects cross-platform malware. The attack process was carefully planned, including the release of bait versions. Affected users should check their lockfile and downgrade to a safer version, and rebuild their systems to prevent resource leakage. It is recommended that cryptocurrency and Web3 developers check and update sensitive credentials and take measures to protect against future attacks.

A Maryland man, Jonathan Spalletta, has been charged with hacking decentralized exchange Uranium Finance in 2021, stealing over $50 million. He faces counts of computer fraud and money laundering, allegedly using proceeds for high-end collectibles.