Breaking News – Cyber Threats (last 6h)
Generated: 2025-11-03 16:00 PST
- Hacker steals over $120 million from Balancer DeFi crypto protocol
BleepingComputer • 2025-11-03 13:53 • www.bleepingcomputer.com
The Balancer Protocol announced that hackers had targeted its v2 pools, with losses reportedly estimated to be more than $128 million. […]
https://www.bleepingcomputer.com/news/cryptocurrency/hacker-steals-over-120-million-from-balancer-defi-crypto-protocol/ - Fake Solidity VSCode extension on Open VSX backdoors developers
BleepingComputer • 2025-11-03 12:50 • www.bleepingcomputer.com
A remote access trojan dubbed SleepyDuck, and disguised as the well-known Solidity extension in the Open VSX open-source registry, uses an Ethereum smart contract to establish a communication channel with the attacker. […]
https://www.bleepingcomputer.com/news/security/fake-solidity-vscode-extension-on-open-vsx-backdoors-developers/ - Microsoft: SesameOp malware abuses OpenAI Assistants API in attacks
BleepingComputer • 2025-11-03 10:35 • www.bleepingcomputer.com
Microsoft security researchers have discovered a new backdoor malware that uses the OpenAI Assistants API as a covert command-and-control channel. […]
https://www.bleepingcomputer.com/news/security/microsoft-sesameop-malware-abuses-openai-assistants-api-in-attacks/ - Malicious VSX Extension "SleepyDuck" Uses Ethereum to Keep Its Command Server Alive
The Hacker News • 2025-11-03 10:08 • thehackernews.com
Cybersecurity researchers have flagged a new malicious extension in the Open VSX registry that harbors a remote access trojan called SleepyDuck.
According to Secure Annex’s John Tuckner, the extension in question, juan-bianco.solidity-vlang (version 0.0.7), was first published on October 31, 2025, as a completely benign library that was subsequently updated to version 0.0.8 on November 1 to
https://thehackernews.com/2025/11/malicious-vsx-extension-sleepyduck-uses.html
Sources: BleepingComputer, The Hacker News, KrebsOnSecurity, SANS ISC, CISA.
