Futures
Access hundreds of perpetual contracts
TradFi
Gold
One platform for global traditional assets
Options
Hot
Trade European-style vanilla options
Unified Account
Maximize your capital efficiency
Demo Trading
Futures Kickoff
Get prepared for your futures trading
Futures Events
Join events to earn rewards
Demo Trading
Use virtual funds to experience risk-free trading
Launch
CandyDrop
Collect candies to earn airdrops
Launchpool
Quick staking, earn potential new tokens
HODLer Airdrop
Hold GT and get massive airdrops for free
Launchpad
Be early to the next big token project
Alpha Points
Trade on-chain assets and earn airdrops
Futures Points
Earn futures points and claim airdrop rewards
Security Agency: Suspected North Korean hacker group collaborates to attack cryptocurrency companies, stealing keys and cloud assets
Mars Finance reports that security research organization Ctrl-Alt-Intel has disclosed a group of suspected North Korea-linked hackers targeting staking platforms, exchange software vendors, and crypto exchanges. The attackers exploited the React2Shell vulnerability (CVE-2025-55182) and compromised AWS access credentials to infiltrate cloud environments, enumerate resources such as S3, EC2, RDS, EKS, and ECR, and extract keys and credentials from Secrets Manager, Terraform files, Kubernetes configurations, and Docker containers. Researchers stated that the attackers downloaded five Docker images and stole source code, including software components related to ChainUp clients. The attack infrastructure involved Korean servers at 64.176.226[.]36 and the domain itemnania[.]com. The report indicates that the activity exhibits characteristics consistent with North Korean attacks, but attribution confidence is medium, and the source of AWS credentials remains unclear.