How the Bitwarden CLI Compromise Used Obfuscated Bun Payloads to Harvest Developer Secrets
The cryptocurrency development ecosystem faced a stark reminder of supply chain vulnerabilities on April 22, 2026, when a malicious version […]
Security
Why Social Engineering Now Beats Code Exploits in Crypto Theft — Lessons from the Elusive Comet Campaign
The cryptocurrency industry has entered a dangerous new era where sophisticated social engineering attacks now pose greater financial risk than
Supply Chain Attack on Ripple xrpl.js Library Exposes Private Keys in Critical CVE-2025-32965
A sophisticated supply chain attack targeting the widely-used Ripple xrpl.js npm library has sent shockwaves through the cryptocurrency development community,
Supply Chain Attacks on Developer Infrastructure: What the Vercel and SailPoint Breaches Teach Crypto Teams
The same week that DeFi suffered its largest exploit of 2026, the broader technology sector was rocked by two supply
Inside the Kelp DAO LayerZero Bridge Exploit: How a Single Verifier Failure Drained $292 Million
The decentralized finance ecosystem is still reeling from one of the most surgically executed attacks in its history. On April
Kelp DAO Suffers $293M Exploit Through rsETH Adapter Bridge Vulnerability
The decentralized finance ecosystem reels from yet another devastating blow as Kelp DAO confirms a $293 million exploit executed on
Social Engineering Attacks Drain $306M From Crypto Projects — How Teams Fight Back
Cryptocurrency projects lose $306 million to social engineering attacks over a devastating two-week stretch in April 2026, accounting for the
The $13 Billion Liquidity Flight: How a Single Bridge Exploit Exposed DeFi’s Fragile Interconnected Architecture
The numbers tell a story that should concern every DeFi participant. On April 18, 2026, a single exploit targeting KelpDAO’s
Zero Bugs, $292 Million Gone: How KelpDAO Operational Configuration Failure Redefined DeFi Risk
On April 18, 2026, the decentralized finance sector witnessed its most consequential exploit of the year — not because of
When Privacy Features Become the Attacker’s Exit Route: How Rhea Finance’s $18.4M Exploit Weaponized Zcash Integration
TL;DR Rhea Finance, NEAR’s largest DeFi protocol, lost $18.4 million in a sophisticated oracle manipulation attack on April 16, 2026