Cryptocurrency
Safeguard articles tagged "Cryptocurrency" — guides, analysis, and best practices for software supply chain and application security.
7 articles
Lazarus Financial Sector Campaigns 2024-2025
Lazarus Group's 2024-2025 financial sector campaigns combined exchange compromises, DeFi exploits, and developer social engineering. Here is what defenders must know.
Coinbase TaskUs Insider Breach: When the BPO Becomes the Attack Surface
In May 2025 Coinbase disclosed that contractor support agents at TaskUs had been bribed to leak customer data for months. We unpack the insider-threat supply-chain anatomy and what crypto and fintech defenders must change.
Coinbase Social Engineering and Insider Threat: How Bribed Support Agents Led to a $400M Breach
Attackers bribed overseas Coinbase support agents to steal customer data, then demanded a $20M ransom. Coinbase refused to pay and disclosed everything.
Crypto Exchange Supply Chain Hardening
Crypto exchanges are the highest-value software supply chain targets on the internet. A hardening playbook drawn from Lazarus, Ronin, and 3CX.
Ronin Network Hack: $625 Million Stolen from Axie Infinity's Blockchain Bridge
North Korean hackers stole $625 million from the Ronin Network bridge powering Axie Infinity, exploiting compromised validator keys in what became the largest DeFi hack in history at the time.
Crypto.com Hack: $34 Million Stolen by Bypassing Two-Factor Authentication
Attackers bypassed Crypto.com's two-factor authentication system to drain approximately $34 million from 483 user accounts, raising serious questions about the security of centralized crypto exchanges.
Cream Finance DeFi Hack: $130 Million Stolen Through Flash Loan Exploit
Cream Finance suffered its third exploit in 2021, losing $130 million through a sophisticated flash loan attack that exposed fundamental vulnerabilities in DeFi lending protocols.