Salus Re-poster
Our research-driven approach tackles the toughest security challenges in Web3 while pioneering innovative ZK solutions.
0 Följer
0 Följare
0 Gilla-markeringar
0 Delade
Inlägg
When it comes to their mobile hardware of choice, genuine degens prefer to use the iPhone.
Criminal organizations have begun targeting cryptocurrency users on iOS devices by employing Coruna, a hacking tool considered to be military-grade. Previously, this software was utilized by a Russian nation-state actor identified as UNC6353 to execute watering-hole attacks against Ukraine. According to fresh analysis of samples and infrastructure, this toolchain has moved beyond its original scope and is now being used by malicious actors to drain crypto wallet assets.
The operation of this exploit kit is sophisticated. It begins by fingerprinting a target device to ascertain the installed iOS version, after which it automatically chooses a matching WebKit exploit chain. The criteria for triggering the attack are minimal, requiring nothing more than a visit to a malicious webpage.
Once the attack is underway, the payload searches for sensitive data by scanning specific applications such as Trust Wallet, Phantom, and MetaMask. It also looks through QR codes, Notes, and Photos for items like seed phrase artifacts or private keys. The vulnerability impacts versions ranging from iOS 13.0–17.2.1. To secure your device against this known attack chain, you should enable Lockdown Mode and ensure you have updated to the latest iOS release.
The operation of this exploit kit is sophisticated. It begins by fingerprinting a target device to ascertain the installed iOS version, after which it automatically chooses a matching WebKit exploit chain. The criteria for triggering the attack are minimal, requiring nothing more than a visit to a malicious webpage.
Once the attack is underway, the payload searches for sensitive data by scanning specific applications such as Trust Wallet, Phantom, and MetaMask. It also looks through QR codes, Notes, and Photos for items like seed phrase artifacts or private keys. The vulnerability impacts versions ranging from iOS 13.0–17.2.1. To secure your device against this known attack chain, you should enable Lockdown Mode and ensure you have updated to the latest iOS release.
We are delighted to confirm that the security audit for @paythefly has been successfully finalized. Functioning as an Intent-based On-chain Payment Protocol, PayTheFly enables you to confirm once for silky-smooth 1-step payments. We wish the team the very best as they advance this new era of effortless Web3 payments! 🚀
We are delighted to announce the successful completion of the security audit for https://t.co/QU0Az7r83D (PermaDex), the multi-chain trading platform powered by @CodexField.
PermaDex serves as a high-speed, multi-chain trading platform engineered for clarity, efficiency, and seamless execution across supported networks.
We wish the PermaDex team continued success as they redefine digital trading and scale the future of on-chain markets! 🚀
PermaDex serves as a high-speed, multi-chain trading platform engineered for clarity, efficiency, and seamless execution across supported networks.
We wish the PermaDex team continued success as they redefine digital trading and scale the future of on-chain markets! 🚀
We are pleased to announce the successful completion of the security audit for https://t.co/QU0Az7r83D (PermaDex), the multi-chain trading platform powered by @CodexField.
Designed for clarity, efficiency, and seamless execution across supported networks, PermaDex operates as a high-speed, multi-chain trading platform.
We wish the PermaDex team continued success as they redefine digital trading and scale the future of on-chain markets! 🚀
Designed for clarity, efficiency, and seamless execution across supported networks, PermaDex operates as a high-speed, multi-chain trading platform.
We wish the PermaDex team continued success as they redefine digital trading and scale the future of on-chain markets! 🚀
Logga in för att utforska mer innehåll