Major Incidents or Breaches

  • CoinMarketCap experienced a website supply chain attack that injected a malicious Web3 popup, exposing site visitors to a wallet drainer campaign designed to steal cryptocurrency from connected wallets.
  • Oxford City Council suffered a data breach affecting legacy systems, resulting in unauthorised access to personally identifiable information spanning two decades.
  • Reports indicate that 16 billion passwords have been leaked from various platforms, including Apple and Google, as a result of cumulative data breaches. The scale of exposure increases the risk of credential stuffing and related attacks.

Notable Threat Actor Activity

  • The CoinMarketCap incident involved the use of a wallet drainer, a tool commonly deployed by threat actors targeting the cryptocurrency sector via supply chain compromises and malicious popups.

Trends, Tools, or Tactics of Interest

  • The use of website supply chain attacks to inject malicious Web3 popups, as seen in the CoinMarketCap incident, demonstrates continued targeting of crypto users through trusted platforms.
  • The large-scale exposure of credentials highlights ongoing risks from aggregated data breaches and the potential for automated attacks using leaked credentials.