- Fondo de Protección
  Fondo de Protección de 1.000 BTC para asegurar tus activos
- Empleos
  WEEX y Vos - Construimos el futuro junto a los mejores
- Zona WXT
  Comisiones y airdrops exclusivos
- Centro de anuncios
  Mantenete al día con las novedades de WEEX
- Traders elite
  Compartí estrategias y ganá recompensas
- Wiki Cripto
  Dominá el trading con nuestras guías paso a paso
- Afiliados
  Ganá ventajas exclusivas y comisiones altas
- Noticias
  Mantenete al tanto de las últimas tendencias cripto
- Contactar al verificador
  Verificá los canales que usás
- Ventajas VIP
  Unite hoy a WEEX VIP
- Calendario de eventos
  Todos sobre los eventos globales de WEEX
Comprá cripto
- Compra rápida
  Comprá con tarjeta de crédito/débito, Apple Pay, Google Pay PIX o SEPA.
- Comercio P2P
  Comprá cripto sin comisiones
Mercados
Contratos
- Contratos USDT-M
  Contratos perpetuos liquidados en USDT
- Demo trading
  Demo de contratos USDT-M
- Contratos
  Operá con confianza
- Ranking
  Clasificaciones actuales y anteriores
Spot
Copy trading
WE-Launch

Escaneá para descargar la app
Más opciones

Venus $13 Million Phishing Attack Victim Retrospective: Attack by Lazarus Hacker Group, Originating from a Spoofed Zoom Meeting Invitation

By: theblockbeats.news|2025/09/04 15:22:31

BlockBeats News, September 4th, EurekaTrading founder Kuan Sun tweeted a recap of his near $13 million loss due to a phishing attack:

On September 2, 2025, around $13 million in assets in his wallet were nearly stolen by the Lazarus hacking group. The security team took emergency action and ultimately recovered the funds.

The incident was initiated by what seemed like a normal Zoom meeting invitation, which was actually a carefully orchestrated phishing trap. The hacker used a "familiar stranger" relationship, deepfake video, and a forged Rabby plugin to tailor an attack to the victim Venus's position. By mistakenly trusting the fake plugin, a withdrawal was executed, exposing the assets to the risk of being transferred along with debt.

PeckShield, SlowMist, Venus, and multiple security teams swiftly responded, paused the protocol to investigate the risk, and ultimately prevented the fund theft. Hardware wallets are not foolproof; plugins and frontends are still vulnerable to hijacking. Zoom links, upgrade pop-ups, and "familiar stranger" relationships could all serve as attack vectors.

“Machi” pierde 1573 millones de dólares en 35 días; actualmente tiene pérdidas flotantes de 227 millones de dólares en posición larga con apalancamiento de 25 veces