News list for "GitHub"
The GitHub project polymarket-copy-trading-bot implanted with malicious code. When launched, the program automatically reads the wallet private key in the user.env file and transmits it to the hacker server through a hidden malicious dependency package [email protected], resulting in asset theft.
GitHub 项目 polymarket-copy-trading-bot 被植入恶意代码。该程序在启动时会自动读取用户 .env 文件中的钱包私钥,并通过隐藏的恶意依赖包 [email protected] 外传至黑客服务器,导致资产被盗。
Solana联合创始人Anatoly Yakovenko在Solana Breakpoint大会上表示,“我最喜欢的一点就是:去中心化并不是没有领导者,而是领导者的丰富涌现。过去五年里,有太多人站了出来——来自基金会、Labs 的人,也有完全不属于这些初始组织的社区成员、应用和协议的建设者——他们真正承担起了整个网络的领导角色。 发展到如今,我甚...
On October 4th, according to the analysis of crypto KOL @ONEMINNFT, the airdrop points system has been uploaded to MetaMask GitHub. According to its analysis, the points are given based on the spot and futures trading volume on MetaMask, as well as bonus points for past activities. MetaMask points are calculated as follows: - Spot trading: 80 points for every $100; - Futures trading: 10 points for every $100; - Past trading: 250 points for every $1,250 spent (up to 50,000 points); - Using Linea ...
10月4日消息,据加密 KOL @ONEMINNFT 分析,空投积分系统已上传至 MetaMask GitHub。据其分析,积分是根据 MetaMask 上的现货和期货交易量给出的,还有过去活动的奖励积分。MetaMask 积分计算方法如下:- 现货交易:每 100 美元获得 80 点积分;- 期货交易:每 100 美元赚取 10 个点积分;- 过往交易:每消费 1,250 美元可获得 250 点积分(最多 50,000 点积分);- 使用 Linea 链:100...
According to 0xkatz.era, fake phishing announcements have appeared on Gitcoin, with attackers spamming a large number of users through GitHub's native notification system. Affected users found that the page was no longer accessible when they clicked on the relevant organization link. Some users have reported the account and related issues to GitHub, reminding the community to be vigilant and prevent phishing risks.
据0xkatz.era称,Gitcoin出现假冒钓鱼公告,攻击者通过GitHub原生通知系统向大量用户发送垃圾信息。 受影响用户在点击相关组织链接时发现页面已无法访问。部分用户已向GitHub举报该账号及相关问题,提醒社区提高警惕,防范钓鱼风险。
According to the SlowMist security team, on July 2, a victim said that he used an open-source project hosted on GitHub the day before - zldp2002/solana-pumpfun-bot, and then the crypto assets were stolen. According to SlowMist analysis, in this attack, the attacker coaxed users to download and run malicious code by pretending to be a legitimate open-source project (solana-pumpfun-bot).
