# Hackers İlgili Makaleler

Alert Across the Internet! Claude Code Source Code Leak Triggers "Secondary Disaster": Hackers Set GitHub Phishing Traps

A major security alert is circulating online following the accidental leak of Claude Code's source code by Anthropic. Hackers are exploiting the incident by creating fake GitHub repositories that distribute the information-stealing malware known as **Vidar**. Posing as a user named `idbzoomh`, the threat actor set up multiple repositories claiming to offer "unlocked enterprise features" from the leaked source code. These repositories are optimized for search engines to appear at the top of results for queries like “Claude Code leak,” increasing their reach. If a user downloads and executes the provided files, the Vidar malware is deployed. It is a sophisticated stealer designed to harvest sensitive data such as browser credentials, cryptocurrency wallets, and personal information. The attack also installs **GhostSocks**, a proxy tool that establishes hidden communication channels for remote control and data exfiltration. Security firm Zscaler notes that these malicious repositories update frequently, making it easier to bypass basic security scans. At least two similar repositories have been identified, suggesting the same attacker is testing different distribution methods. This incident highlights the compound risks in the AI era, where initial human error leads to secondary threats like social engineering. Developers are urged to obtain software only through official channels and avoid executing untrusted binaries.

marsbit04/03 01:06

These Days, Even Hackers Are Losing Money

An article titled "Even Hackers Are Losing Money These Days" details a cyber heist targeting Web3 social platform UXLink’s multi-signature wallet in September 2025. The attacker exploited a delegateCall vulnerability, bypassing security to steal over $11.3 million in assets, including stablecoins, ETH, WBTC, and UXLINK tokens. The hacker then dumped a large amount of UXLINK, causing its price to crash over 70%. Unlike typical hackers who launder funds through mixers like Tornado Cash, this attacker engaged in active on-chain trading, executing 625 transactions on CoW Swap over six months. However, poor trading decisions led to significant losses—at one point, the address was down nearly $4.8 million. The hacker repeatedly bought high and sold low, barely breaking even after six months of activity. Despite the traceability of the funds via platforms like Arkham, recovering the assets remains challenging for UXLink. The project has attempted to rebuild, but its token price has fallen 99% from its peak. The incident underscores that while technical skills enable theft, market volatility affects everyone equally—even hackers aren’t immune to losses.

marsbit03/25 05:25

Bitrefill Cyberattack Exposes 18,500 Records, Lazarus Group Suspected

Bitrefill, a cryptocurrency payment platform, was targeted by a cyberattack attributed to the North Korea-linked Lazarus Group on March 1, 2026. The breach, which began with a compromised employee laptop, exposed approximately 18,500 customer purchase records, including email addresses, crypto payment addresses, and IP data. The attackers primarily focused on moving funds from hot wallets and exploiting the gift card system, rather than stealing full customer data. Bitrefill quickly detected the unusual activity, shut down systems to prevent further damage, and has committed to covering all losses with its own funds. The company has since enhanced security measures, including stronger access controls and improved monitoring, and confirmed that most services are back to normal. This was Bitrefill's first major security breach in over a decade.

TheNewsCrypto03/18 13:44

Singapore Court Jails Man for Role in $6.9M Crypto Theft

A Singapore court has sentenced a man to two years in jail for his involvement in a cryptocurrency theft resulting in losses exceeding $6.9 million. The case involved unauthorized access to a crypto wallet linked to a global exchange, where hackers transferred out digital assets. Investigations led to the identification and arrest of suspects, with authorities recovering part of the stolen funds and electronic devices used in the operation. The defendant admitted to his role, highlighting growing concerns over cybercrimes targeting digital assets and increased law enforcement efforts to track and recover stolen cryptocurrencies.

TheNewsCrypto03/13 09:12

Infini Exploiter Hackers Resurface to Buy the $ETH Dip: How $BMIC Adds Security for the Future

Infini Exploiter hackers have resurfaced, using approximately $13 million in stolen funds to buy the $ETH dip, highlighting persistent vulnerabilities in legacy blockchain security. This event underscores a critical failure in current architecture, where compromised funds can be monitored but not frozen, revealing the ecosystem's fragility. In response, the article highlights $BMIC as a next-generation solution deploying a quantum-secure finance stack. It uses post-quantum cryptography and a Zero Public-Key Exposure model to prevent 'Harvest Now, Decrypt Later' attacks, making wallet exploits mathematically impossible. The $BMIC presale has raised over $444K, signaling strong market demand for AI-enhanced, quantum-proof financial tools that offer protection against evolving threats and future quantum computing risks.

bitcoinist02/09 16:32

Hackers and Scammers Stole $4 Billion in Cryptocurrencies in 2025

In 2025, hackers and fraudsters stole over $4 billion in cryptocurrencies, a 34.2% increase compared to the $3.01 billion stolen in 2024, according to analytics firm PeckShieldAlert. The total damage exceeded $4.04 billion, with $2.67 billion (a 24.2% annual increase) attributed to hacks and $1.37 billion (a 64.2% increase) to fraud cases. A strategic shift was noted towards a rise in scams utilizing social engineering methods, such as psychological manipulation to trick victims into revealing confidential information, which accounted for 12% of the losses. The most significant single incident was the $1.4 billion hack of the Bybit exchange in February of the previous year. An additional 22% of losses came from scams, including 'rug pulls' and pseudo-crypto investment schemes. Another key change was the increasing share of centralized services among the affected platforms. Their share of losses grew from just over 35% in 2023 to around 45% in 2024, and exceeded 70% in 2025. Only about $334.9 million of the stolen funds were frozen or returned during the year, a decrease from the $488.5 million recovered in 2024.

RBK-crypto01/13 12:39

North Korean Hackers Celebrate a 'Fat Year': Record $2.02 Billion Stolen in 2025, Money Laundering Cycle Approximately 45 Days

North Korean hackers set a record in 2025, stealing $2.02 billion in cryptocurrency, a 51% increase from 2024, despite a decrease in the number of attacks. Their cumulative thefts now total at least $6.75 billion. They achieved this by conducting fewer but more sophisticated attacks, often through infiltrating crypto services with IT workers or using complex impersonation strategies against executives. The overall crypto industry suffered over $3.4 billion in stolen funds. A key trend is the extreme concentration of losses, with the top three hacks accounting for 69% of the total. The disparity between the largest attack and the median hack reached a record 1000x. North Korean actors exhibited distinct money laundering patterns, heavily favoring Chinese OTC services, cross-chain bridges, and mixers. Their laundering cycle for major heists is approximately 45 days, moving through stages of immediate layering, initial consolidation, and final cash-out. Simultaneously, individual wallet thefts surged to 158,000 incidents affecting 80,000 users, though the total value stolen ($713 million) decreased. In a positive development, DeFi hacking losses remained low despite increased Total Value Locked (TVL), indicating improved security measures are having a significant impact. A case study of the Venus Protocol demonstrated effective real-time threat detection and fund recovery.

marsbit01/10 03:10

Social engineering accounts for majority of crypto TVL exploits in 2025, report shows

In 2025, crypto theft and exploits have resulted in over $2.53 billion in losses, with broader theft estimates reaching up to $3.4 billion. Social engineering emerged as the dominant attack method, accounting for 55.3% ($1.39 billion) of total exploit-related value. Private key compromises represented 15% ($0.37 billion), while other techniques like infinite mint attacks and smart contract exploits made up the remainder. North Korea-linked hackers were the most prolific threat actors, responsible for at least $2.02 billion in stolen crypto, largely due to a $1.4 billion breach of the Bybit exchange. The data indicates a shift in exploitation focus from technical vulnerabilities to human and operational weaknesses, emphasizing the need for improved user security, key management, and operational safeguards rather than solely relying on code fixes.

ambcrypto12/26 21:12

Crypto Crime Escalates: Chainalysis Data Shows Over $3.4 Billion Stolen This Year

Chainalysis reports that cryptocurrency theft has surged, with over $3.4 billion stolen so far in 2025, exceeding previous years. A significant shift in attack methods has occurred, with personal wallet compromises rising dramatically. Although private key compromises are less frequent, they account for the vast majority of stolen value. North Korean (DPRK) hackers were responsible for a record $2.02 billion in thefts, a 51% increase from the prior year, despite fewer attacks. Their tactics have evolved to include infiltrating crypto services and conducting fake job interviews to steal credentials. While the number of theft incidents and victims has increased, the average amount stolen per victim has decreased.

bitcoinist12/19 10:22

Crypto losses near $3.4B as hackers went ‘big game hunting’

cointelegraph12/18 13:02