AppsFlyer Web SDK used to spread crypto stealer JavaScript code

Malicious JavaScript code delivered by the AppsFlyer Web SDK hijacked cryptocurrency, potentially in a supply-chain attack.

MediaTek patches bug enabling crypto seed theft in just 45 seconds

Crypto wallet company Ledger said one in four Android users were once at risk of having their wallet seed phrases stolen due to a MediaTek vulnerability affecting certain Android phones.