According to Fox News, North Korean hackers are deploying a new Python-based malware, PylangGhost, by disguising it within fake job applications for major crypto firms like Coinbase, Robinhood, and Uniswap. Researchers at Cisco Talos report this social engineering campaign aims to steal private keys and wallet data from over 80 browser extensions, including MetaMask and Phantom, giving attackers full remote control of infected Windows and Mac systems. This threat comes as a TRM Labs report reveals a record $2.1 billion was stolen in the first half of 2025, with North Korean groups allegedly responsible for $1.6 billion. The data indicates a significant strategic shift in attack vectors, with over 80% of stolen funds now coming from infrastructure-level breaches like private key theft, which are ten times more lucrative than the once-prevalent DeFi smart contract exploits. For traders, this highlights a critical and evolving security risk to personal and exchange-held assets, contributing to negative market sentiment as seen in the recent downturns of major assets like Ethereum (ETH) and Chainlink (LINK).

According to Ryan Kim (@0xryankim), a suspicious meeting invitation process was encountered where a reputable contact approached him for a catch-up, but the Calendly invite lacked a Google Meet link and organizer details, followed by a Zoom link sent via Telegram (source: Twitter, May 28, 2025). This sequence strongly suggests a potential phishing attempt targeting crypto professionals. Traders are advised to scrutinize unsolicited meeting links and verify organizer identity to avoid credential theft or malware attacks, which can lead to significant crypto asset loss. Increased phishing attempts in the crypto sector underscore the necessity for robust operational security.

According to PeckShieldAlert, an address (0xa4C1...683f) has been compromised in a phishing attack, leading to a loss of approximately 1.82 million USDC. This incident highlights the ongoing risks associated with digital asset security and the importance of vigilance in safeguarding crypto assets.

According to Lookonchain, a phishing attack resulted in the loss of 12,083.6 spWETH, valued at $32.33 million. Arkham suggests that the compromised wallet may be linked to DiscusFish (@bitfish1). To prevent such incidents, users are advised to avoid clicking on unknown links and signing unknown signatures, and to always double-check their actions.

According to PeckShieldAlert, an address (0x6Ca3...cA64) has fallen victim to a phishing attack, resulting in a loss of approximately 3 million TRUMP tokens. This incident highlights the ongoing risks of phishing attacks in the cryptocurrency space.

According to PeckShieldAlert, an address 0xF744...6817 has been targeted in a zero transfer phishing attack, leading to a loss of 18.9K BSC-USD. The funds were intended for address 0x8bD5d497C5Ae0C0C1307f1bB321e4856310Ab11B but were redirected to a phishing address 0x8bf26045bbdd2538bd6433351a40fd1f9d0ab11b. Traders should be vigilant about phishing scams, especially zero transfer attacks, which can lead to significant losses.