$BTC $36903 (1.94%) $ETH $2451.6 (1.16%) $SOL $90.8 (0.44%) $DOT $17.83 (0.2%) $ATOM $28.05 (-8.79%) $LINK $15.65 (4.5%) $ALGO $0.95 (2.42%) $FTT $38.77 (1.71%) $XMR $144.49 (-0.51%) $XTZ $2.94 (1.25%) $AAVE $145.88 (1.7%) $SNX $4.47 (-1.72%) $YFI $22976 (-4.22%) $SUSHI $4.07 (0.54%) $OMG $4.46 (5.33%) $OCEAN $0.57 (4.94%)

/ This NFT on OpenSea Will Steal Your IP Address

NFTs are usually passive affairs. A consumer buys the token, and then sells or stores the NFT. The NFT doesn’t really do anything. Some new NFTs are being used to harvest viewers’ IP addresses, though, in a demonstration of how NFT marketplaces like OpenSea allow vendors, or attackers, to load custom code when someone simply views an NFT listing. “We've been researching a lot of problems in the NFT space (with more of a focus on fraud) and one of the things we were playing around with was different XSS attacks on websites that display NFTs which is when I realized we could get OpenSea to load HTML pages,” Nick Bax, head of research at NFT organization Convex Labs, told Motherboard in an online chat. XSS refers to cross site scripting attacks, one of several different kinds of attack that someone could use an NFT for.

More on VICE2022-01-28

/ Putin Says Russia Has 'Competitive Advantages' in Bitcoin Mining

Russian president Vladimir Putin today said that Russia has "certain competitive advantages" when it comes to mining cryptocurrencies such as Bitcoin, according to a transcript posted to an official government website. His comments came one day after the government's Finance Ministry said it would be "necessary to allow these technologies to develop"—and that a cryptocurrency ban was not necessary. Last week, Russia’s central bank called for a ban on Bitcoin mining and cryptocurrency transactions. "As for cryptocurrencies, the central bank has its own position, it is related to the fact that, according to experts of the central bank, the expansion of this type of activity carries certain risks, and above all for the citizens of the country, given the high volatility and some other components of this topic," President Putin said Wednesday in a video call with government members.

More on Decrypt2022-01-26

/ Oregon Man Admits Selling Marijuana and Laundering Bitcoin

An Oregon man admitted selling marijuana on the darkweb and laundering Bitcoin. Robert Kelly O’Neill, 59, pleaded guilty to possession with intent to distribute marijuana and money laundering. O’Neill’s case, along with many others, came from the investigation conducted as a part of the so-called “Operation Dark Gold.” In January 2016, Homeland Security Investigations (HSI) and the U.S. Postal Inspection Service (USPIS) launched a widespread investigation into darkweb vendors, according to announcements from both agencies. During the investigation, HSI and USPIS employees identified a darkweb vendor known as “Gold” who exchanged Bitcoin for cash. Gold advertised money laundering services wherein darkweb vendors would send Gold Bitcoin and Gold would ship cash to a physical address provided by the vendor. Such a scheme is ripe for infiltration by law enforcement; if they were able to take control of Gold’s accounts, they could passively collect the addresses of darkweb vendors

More on Darknetlive2022-01-24

/ Bank of Russia Calls for Full Ban on Crypto

Russia must ban cryptocurrencies, the country's central bank said in a report released Thursday. The report, "Cryptocurrencies: trends, risks, measures," was presented during an online press conference with Elizaveta Danilova, the director of the Bank of Russia's Financial Stability Department. The report says cryptocurrencies are volatile and widely used in illegal activities such as fraud. By offering an outlet for people to take their money out of the national economy, they risk undermining it and making the regulator's job of maintaining optimal monetary policies harder, the report says. The bank, therefore, suggest Russia needs new laws and regulations that effectively ban any crypto-related activities in the country. In particular, cryptocurrency issuance and organization of its circulation in Russia must be banned. The ban should apply to exchanges, over-the-counter trading desks and peer-to-peer platforms.

More on CoinDesk2022-01-20

/ NFT marketplace OpenSea buys crypto wallet Dharma Labs, changes CTO

NFT marketplace OpenSea on Tuesday said it had bought Dharma Labs, a digital wallet for cryptocurrencies, for an undisclosed amount, and said Dharma's chief executive officer would become OpenSea's chief technology officer. OpenSea, which was founded in 2017 and was recently valued at $13.3 billion in its latest round of venture funding, said the deal would help it "dramatically improve the experience of buying, minting, and selling NFTs" on its marketplace. NFTs, or non-fungible tokens, are a type of digital asset which exist on the record-keeping technology blockchain. They have exploded in popularity over the last year, with people buying artworks and video highlights from sports games as NFTs.

More on Reuters2022-01-18

/ Crypto.com Suffers Hack for At Least $15M in Ethereum

Cryptocurrency exchange Crypto.com has reportedly fallen victim to a hack, with at least $15 million worth of Ethereum stolen. Despite reports of missing funds, the platform has yet to confirm that it has indeed been attacked. With almost $3 billion in trading volume in the last 24 hours, Crypto.com is the industry’s fourth-largest centralized crypto exchange, according to CoinGecko.

More on Decrypt2022-01-18

/ BitMEX Group plans to acquire a 268-year-old German bank

Crypto firm BitMEX Group announced Tuesday its plan to acquire Bankhaus von der Heydt, a 268-year-old private bank based in Germany. The group's BXM Operations AG — a company founded by BitMEX CEO Alexander Höptner and its CFO Stephan Lutz — has signed a purchase agreement with Dietrich von Boetticher, the bank's current owner. The deal is subject to the approval of German financial regulator BaFin. Bankhaus von der Heydt was founded in 1754. In October, it partnered with Fireblocks to offer crypto services to its clients. BitMEX Group said it expects the transaction to complete in the middle of this year. But the BaFin approval may not come easy after recent fintech scandals in Germany, including Wirecard and Greensill Bank.

More on The Block 2022-01-18

/ USDC's supply on Ethereum surpasses that of rival USDT's for the first time

The total supply of the USDC stablecoin on the Ethereum blockchain has surpassed that of rival Tether's (USDT) for the first time. The current total supply of USDC on Ethereum stands at 39.92 billion, whereas USDT's total supply on the blockchain stands at 39.82 billion, according to Etherscan. USDC's supply beating USDT's on Ethereum is significant since the blockchain remains a major contributor of growth for both stablecoins. USDC and USDT are available on several blockchains, including Solana and Algorand.

More on The Block2022-01-17

/ Kazakhstan is huge for crypto mining. Political upheaval could jeopardize that

The Central Asian nation plunged into chaos as violent protests sparked by rising fuel prices left dozens killed and hundreds injured. As part of the mayhem, internet and telecommunications cuts have been reported nationwide — and that's having an impact on local cryptocurrency mining operations, which are among the largest in the world. Kazakhstan emerged as a popular mining hub last year, after neighboring China cracked down on the activity — curbs Chinese authorities said were necessary to protect the country's efforts to reduce carbon emissions.

More on CNN2022-01-07

/ Fintech firm hit by Log4j hack refuses to pay $5 million ransom

One of the largest Vietnamese crypto trading platforms, ONUS, recently suffered a cyber attack on its payment system running a vulnerable Log4j version. Soon enough, threat actors approached ONUS to extort a $5 million sum and threatened to publish customer data should ONUS refuse to comply. After the company's refusal to pay the ransom, threat actors put up data of nearly 2 million ONUS customers for sale on forums.

More on Bleeping Computer2021-12-30

/ LastPass quells cyber-attack fears, blames email notification surge on ‘glitch’

LastPass has launched an investigation following a recent surge in blocked login attempts. The emailed notifications to a pre-registered email address would normally follow attempts to log in from a different browser version, device, or location. Users in receipt of these emails are invited to go to a link in order to confirm that the attempted login was valid. When LastPass noticed an unexpected rise in the occurrence of blocked access emails it initially suspected that it could be the resulted of a “credential stuffing” attack. In a blog post yesterday (December 28), LastPass said early result of its investigation revealed no evidence that any of its users’ accounts had been hacked or otherwise compromised.

More on The Daily Swig2021-12-29

/ US returns $154 Million in bitcoins stolen by Sony employee

The United States has taken legal action to seize and return over $154 million purportedly stolen from Sony Life Insurance Company Ltd, a SONY subsidiary, by an employee in a textbook business email compromise (BEC) attack. "According to the government's complaint, Rei Ishii, an employee of Sony Life Insurance Company Ltd. ("Sony Life") in Tokyo, allegedly diverted the $154 million when the company attempted to transfer funds between its financial accounts," the Justice Dept said today. "Ishii allegedly did this by falsifying transaction instructions, which caused the funds to be transferred to an account that Ishii controlled at a bank in La Jolla, California."

More on Bleeping Computer2021-12-23