Gate News Report, March 20 — According to Google Threat Intelligence Group monitoring, a vulnerability exploitation chain called DarkSword is targeting iPhones running iOS versions 18.4 to 18.7. Attackers are deploying malicious software named Ghostblade on compromised websites, which specifically searches for and steals data from several major cryptocurrency exchanges (including a CEX) and wallet apps (including Ledger, Trezor, MetaMask, Exodus, Uniswap, Phantom, and Gnosis Safe). Additionally, Ghostblade also synchronizes and steals sensitive information such as SMS, iMessage, contacts, Wi-Fi passwords, geolocation, and chat records from Telegram and WhatsApp. The malware is designed for rapid data theft; after collecting data, it automatically deletes temporary files and terminates itself. Currently, the attack activity has been observed in Saudi Arabia, Turkey, Malaysia, and Ukraine.
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
ZetaChain's GatewayEVM Contract Exploited in Cross-Chain Attack, Second Major Incident This Month
Gate News message, April 28 — ZetaChain, a Layer 1 blockchain network, disclosed on April 27 that its GatewayEVM contract was targeted in a cross-chain attack. The GatewayEVM is a cross-chain smart contract that serves as the gateway for ZetaChain to exchange assets and messages with external blockc
GateNews2h ago
Deepfake Call Tricks Cardano Dev, Exposes New Weak Spot
A Cardano developer says a realistic AI deepfake video call led to a laptop breach, a reminder that the next wave of crypto attacks may start with faces and voices rather than smart contracts.
The warning, shared with the Cardano community, describes an incident in which an impostor used
DailyCoin11h ago
French Prosecutors Charge 88 in Crypto Wrench Attack Ring
French authorities have charged 88 individuals, including 10 minors, in connection with kidnappings and extortions targeting cryptocurrency owners, according to a statement from the National Public Prosecutor's Office for Organized Crime (PNACO) released Friday. The charges are tied to 12 ongoing
CryptoFrontier13h ago
When DeFi is too slow for young people and too risky for old money: are we all using Treasury bond interest to shoulder junk bond risk?
DeFi once attracted young people with five-figure APY rates, but it is now seen as overpriced and carrying too much risk. Over the past year, more than $1.62 billion has been stolen, and at one point Aave’s interest rate spiked to 12.4%. The fair yield is about 12.55%, with a retail entry threshold of 18%. Institutional players prefer “strategy-isolated vaults” to reduce tail risk. Conclusion: high leverage is no longer in; in the future, we’ll need higher-risk pricing and insurance tools to accommodate both young people and old money.
ChainNewsAbmedia17h ago
Robinhood Warns of Phishing Emails Sent to Some Customers
Gate News message, April 27 — Robinhood alerted users on social media that some customers received fraudulent emails last Sunday evening claiming to be from noreply@robinhood.com with the subject line "Your recent login to Robinhood."
The phishing attempt stemmed from misuse of the account
GateNews17h ago
Websea Crypto Exchange Faces Suspected Exit Scam, Withdrawal Channels Closed
Gate News message, April 27 — Crypto trading platform Websea has suspended withdrawals and closed its C2C (peer-to-peer) channels, with multiple users reporting the exchange appears to have conducted an exit scam. The platform initially restricted withdrawals before completely shutting down the C2C
GateNews18h ago
