ChainCatcher reports that hackers are stealing cryptocurrency users’ assets by running fake Windows 11 update ads on Facebook. These ads use professional Microsoft branding and direct users to cloned Microsoft websites, where malicious software is downloaded.
The malware installs a framework called “LunarApplication” on the victim’s computer, specifically designed to steal cryptocurrency wallet seed phrases, login credentials, and other sensitive information. Hackers use geofencing techniques to avoid data center IP addresses and prevent automated scanners from detecting the attack.
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
ZachXBT Reveals Crypto Scam Network on X Platform: Over 10 Accounts Manipulate Emotions to Harvest Funds, Profits Exceed Six Figures
ZachXBT revealed a coordinated network on the X platform that incited panic to attract traffic, leading to cryptocurrency scams and financial losses. These manipulators used high-follower accounts and AI-generated content to spread misleading information and steer users toward fraudulent activities. Users should carefully verify account histories to avoid scams.
GateNews21m ago
KyberSwap has identified and blocked all wallets related to the Resolv attack incident
Gate News reports that on March 23rd, Kyber Network stated that all wallets related to the Resolv attack incident have been quickly identified, and their further activity on the KyberSwap platform has been blocked.
GateNews40m ago
USR Stablecoin Collapse: Hackers Mint $80 Million in Unsecured Tokens, 70% Price Crash Triggers Trust Crisis
On March 23rd, USR, a stablecoin under Resolv, experienced a major security incident. Attackers exploited a private key leak to mint approximately $80 million in unbacked tokens, causing USR's price to collapse to $0.27, a decline exceeding 70%. Resolv has suspended smart contracts and burned 9 million anomalous tokens, with 71 million unbacked USR remaining in circulation. This incident reflects the fragility of stablecoins in terms of security and transparency, posing challenges to market confidence.
GateNews1h ago
ZachXBT Exposes Fake Account Warning of War-Related Crypto Scams
Blockchain investigator ZachXBT warns about a fraudulent account named "Rashid bin Saeed," suspected of misleading users into cryptocurrency "pump-and-dump" schemes. Despite having over 353,000 followers, it was only verified in February 2026 and often changes its name, promoting low-cap meme coins like CHIBI. This highlights a familiar pattern of gaining followers through sensational content before pushing low-liquidity tokens. The warning comes as the Crypto Fear and Greed Index plunges into extreme fear, increasing market manipulation risks.
TapChiBitcoin2h ago
IoTeX Foundation Opens Cross-Chain Bridge Security Incident Compensation Claim Channel
Gate News reported that on March 23, the IoTeX Foundation announced the official launch of a cross-chain bridge security incident compensation claims channel. According to previous reports, analysts noted that IoTeX private keys were suspected to have been compromised, with asset losses of approximately 4.3 million dollars; the IoTeX official statement indicated that on-chain attack losses were approximately 2 million dollars.
GateNews2h ago
ZachXBT Exposes 350,000 Fake Followers: War Misinformation Drives Traffic, Crypto Scam Resurfaces Pump-and-Dump Scheme
On-chain investigator ZachXBT exposed an account named "Rashid bin Saeed" that attracted attention through false geopolitical information and is suspected of manipulating crypto assets. The account promoted a meme coin called CHIBI and was consistent with high volatility cases, reminding investors to be vigilant about information sources to prevent market manipulation.
GateNews2h ago
