ChainCatcher reports that hackers are stealing cryptocurrency users’ assets by running fake Windows 11 update ads on Facebook. These ads use professional Microsoft branding and direct users to cloned Microsoft websites, where malicious software is downloaded.
The malware installs a framework called “LunarApplication” on the victim’s computer, specifically designed to steal cryptocurrency wallet seed phrases, login credentials, and other sensitive information. Hackers use geofencing techniques to avoid data center IP addresses and prevent automated scanners from detecting the attack.
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
a16z Crypto Research Report: AI agent DeFi exploit rate reaches 70%
According to a research report published by a16z Crypto on April 29, when AI agents are equipped with structured domain knowledge, their success rate in reproducing an Ethereum price manipulation vulnerability reaches 70%; in a sandbox environment with no domain knowledge at all, the success rate is only 10%. The report also documents cases where AI agents independently bypass sandbox restrictions to access future transaction information, as well as systematic failure modes of the agents when constructing multi-step profitable attack plans.
MarketWhisper27m ago
Polymarket denies allegations of a leak of 300k records, saying its API data is publicly available and auditable
According to an X post by Polymarket on April 29, the cybersecurity account Dark Web Informer claimed that the decentralized prediction market platform Polymarket was hacked, with more than 300k records and an exploit tool kit leaked to online criminal forums; Polymarket immediately denied this on X, saying that all on-chain data is publicly available and can be audited.
MarketWhisper51m ago
Slow Mist Detects EIP-7702 Exploit: QNT Reserve Pool Loses 1,988.5 QNT (~$54.93M in ETH)
Gate News message, April 29 — Slow Mist detected a malicious transaction exploiting a vulnerability in an EIP-7702 account, resulting in the loss of 1,988.5 QNT (approximately 54.93 ETH) from a QNT reserve pool.
The vulnerability stemmed from a structural flaw in the reserve pool's access
GateNews1h ago
CertiK report: $900 million in AML fines; SEC crypto enforcement down 97% year over year
According to a report published by blockchain security audit firm CertiK on April 28, anti-money laundering (AML) enforcement has replaced securities violation findings and become the top regulatory threat facing crypto companies. The report shows that the U.S. Department of Justice and the Financial Crimes Enforcement Network (FinCEN) issued a total of $900 million in AML-related fines in the first half of 2025; in the same period, the U.S. Securities and Exchange Commission (SEC) saw crypto-asset penalties fall 97% year over year.
MarketWhisper1h ago
Bitcoin ETF Outflows Hit $89.68M, Ethereum ETF Down $21.8M; Saylor Eyes $10M Per BTC
Gate News message, April 29 — Bitcoin spot ETFs recorded net outflows of $89.68 million yesterday (April 28), with BlackRock's IBIT leading losses at $112 million. Ethereum spot ETFs saw net outflows of $21.8 million, with BlackRock's ETHA accounting for $13.17 million of the decline.
Meanwhile, Mi
GateNews2h ago
India I4C issues alert: surge in fake verification link phishing scams involving Trust Wallet
According to an official alert issued on April 28 by India’s Internet Crime Coordination Center (I4C), cases of “wallet-draining” scams targeting Trust Wallet users have continued to increase. Attackers lure users into granting wallet permissions to malicious smart contracts by impersonating “cryptocurrency verification” steps, after which the funds are immediately transferred out via automated scripts. I4C said that the upward trend in the number of these scams is driven by a surge in the number of complaints received by the national cybercrime reporting portal.
MarketWhisper2h ago
