Trade
Basic
Futures
Futures
Hundreds of contracts settled in USDT or BTC
Options
HOT
Trade European-style vanilla options
Unified Account
Maximize your capital efficiency
Demo Trading
Futures Kickoff
Get prepared for your futures trading
Futures Events
Participate in events to win generous rewards
Demo Trading
Use virtual funds to experience risk-free trading
Earn
Launch
CandyDrop
Collect candies to earn airdrops
Launchpool
Quick staking, earn potential new tokens
HODLer Airdrop
Hold GT and get massive airdrops for free
Launchpad
Be early to the next big token project
Alpha Points
NEW
Trade on-chain assets and enjoy airdrop rewards!
Futures Points
NEW
Earn futures points and claim airdrop rewards
Investment
Simple Earn
Earn interests with idle tokens
Auto-Invest
Auto-invest on a regular basis
Dual Investment
Buy low and sell high to take profits from price fluctuations
Soft Staking
Earn rewards with flexible staking
Crypto Loan
0 Fees
Pledge one crypto to borrow another
Lending Center
One-stop lending hub
VIP Wealth Hub
Customized wealth management empowers your assets growth
Private Wealth Management
Customized asset management to grow your digital assets
Quant Fund
Top asset management team helps you profit without hassle
Staking
Stake cryptos to earn in PoS products
Smart Leverage
NEW
No forced liquidation before maturity, worry-free leveraged gains
GUSD Minting
Use USDT/USDC to mint GUSD for treasury-level yields
More
Trending Topics
View More13.78K Popularity
246 Popularity
110 Popularity
194 Popularity
83.47K Popularity
Pin
Have Fun With A Quiz in Gate Chat Group & Unlock Big Rewards!
Venue: Gate Chat Group
Time: Jan. 7, 04:00 AM (UTC)
💡 Rules:
‣ The quiz has 5 easy questions about Gate
‣ 2 lucky winners will be picked for each question with a $5 Position Voucher each
➜ How:
Open Gate App » Click at the bottom of "Home"-"Chat" » Enter Gate Chat Group or
➜ Click the Link to Enter: https://gate.onelink.me/Hls0/group?chatroom=groupGate Square New & Returning Creator Rewards are ongoing!
Your ideas may be more valuable than you think!
Make your first post or come back post to share a $20,000 monthly prize pool!
Post with #MyFirstPostOnSquare to receive a $50 Position Voucher each
Monthly Top Posters and Top Engagers will each earn an extra $50 reward
Your crypto insights could inspire many—start creating today!
👉 https://www.gate.com/postGate Square “Creator Certification Incentive Program” — Recruiting Outstanding Creators!
Join now, share quality content, and compete for over $10,000 in monthly rewards.
How to Apply:
1️⃣ Open the App → Tap [Square] at the bottom → Click your [avatar] in the top right.
2️⃣ Tap [Get Certified], submit your application, and wait for approval.
Apply Now: https://www.gate.com/questionnaire/7159
Token rewards, exclusive Gate merch, and traffic exposure await you!
Details: https://www.gate.com/announcements/article/47889Your First Words Matter!
Share your first post on and split $10,000 in New Year rewards.
Post with #My2026FirstPost to share your New Year wish
2026U Position Voucher, Gate New Year boxes, F1 Red Bull merch await you!
Ends on Jan 15, 2026, 16:00 UTC
2026 starts with this post!Gate 2025 Year-End Gala Square TOP50 List Announced!
The final ranking phase is now live.
Earn Votes by watching live streams and posting.
30 Votes = 1 chance — support your favorite creators now!
👉 https://www.gate.com/activities/community-vote-2025
iPhone 17 Pro Max, JD gift cards, Mi Band, Gate merch await you!
Creators are welcome to rally fans to climb the rankings and win rewards!
Voting ends: Jan 20, 02:00 UTC
Details: https://www.gate.com/announcements/article/48693
Cardano users beware: Eternl wallet phishing attack escalates, malware can remotely control devices and private keys
A carefully crafted phishing attack is spreading within the Cardano ecosystem. The attacker forges professional emails claiming to offer NIGHT and ATMA token rewards, enticing users to download a fraudulent version of the Eternl Desktop wallet. Once installed, the malicious program launches a remote management tool in the background, allowing the attacker to maintain long-term control over the victim’s device, including access to wallet private keys. This has been assessed by security researchers as a high-severity threat.
Attack Methods: Looks Like a Professional Social Engineering Trap
The “Perfect” Design of Forged Emails
The phishing emails are highly professional. The tone is formal, with rigorous grammar and almost no spelling or formatting errors, greatly increasing their deceiving effectiveness. The emails claim that users can earn NIGHT and ATMA tokens through the “Diffusion Staking Basket” program, leveraging the real staking rewards narrative within the Cardano ecosystem to enhance credibility. This combination of real project background with social engineering makes it harder to detect than simple spam.
Concealed Malware Deployment
Security researcher Anurag’s analysis shows that the fake domain download.eternldesktop.network distributes an Eternl.msi installer approximately 23.3 MB in size, bundled with a hidden remote management tool LogMeIn Resolve. After installation, the malicious program releases an executable named unattended-updater.exe and creates a complete file structure within the system’s Program Files directory, writing multiple configuration files. Among them, unattended.json directly enables remote access without user confirmation.
This means users unknowingly open a backdoor on their device for the attacker.
Ongoing Remote Control Capabilities
The malicious program connects to the GoTo Resolve infrastructure, continuously transmitting system event information to a remote server via hardcoded API credentials in JSON format. Once compromised, the attacker can maintain long-term control over the device, including remote command execution, credential theft, and wallet private key access. This is not a one-time data theft but a persistent control channel.
Why This Attack Is Especially Dangerous
How Users Should Protect Themselves
Immediate Actions
Verify Official Channels
Recognize Phishing Signals
Deeper Issues Reflected
This incident exposes the ongoing challenges within the crypto wallet ecosystem: users have high trust in wallet applications but limited ability to verify authenticity. Attackers exploit this information asymmetry through meticulously designed social engineering tactics to breach defenses.
Eternl, as a well-known wallet in the Cardano ecosystem, ironically becomes a tool for attackers due to its high visibility. This demonstrates that even mature projects cannot fully prevent impersonation.
Summary
The danger of this phishing attack lies in the combination of three aspects: professional social engineering design, covert malware implantation, and persistent control over user devices. For Cardano users, the most urgent task is to verify wallet sources immediately and ensure no fraudulent versions are installed. In the long term, this also highlights the need for the entire crypto ecosystem to establish more effective software authenticity verification mechanisms, rather than relying solely on user vigilance. Before downloading any wallet application, spending an extra 30 seconds to verify the official channel could save you millions in assets.