A critical vulnerability in a popular WordPress plugin can allow hackers to hijack user-facing crypto websites. This vulnerability potentially creates opportunities for malicious actors to inject phishing pages, fake wallet links, and malicious redirects. While this flaw doesn’t affect wallet backends or token contracts, it exposes the front-end infrastructure that users rely on to safely…
A TikTok user went viral for reporting a new phishing scam targeting Coinbase users. This sophisticated attacker used a US-based phone number and accent, and apparently sent genuine Coinbase emails. Ultimately, however, the attack did not work. At several points, the intended victim expressed skepticism and unwillingness to reveal private information, and the scammer eventually…
RealT, a Florida-based RWA issuer, is being sued after offering tokenized shares of dozens of homes it does not own. Additionally, code and tax violations have accumulated over 408 properties in RealT’s possession. This incident highlights a serious potential problem for the entire RWA market. Can these companies really offer returns on property incomes, or…
According to blockchain security firm Cyvers, crypto exchange WOO X suspended transactions after a hack stole $14 million of user funds. It’s unclear how this breach took place, but damage is apparently isolated to user accounts instead of company-affiliated wallets. So far, the exchange has been proactive in informing its users, quickly admitting that the…