What 5 Million Apps Revealed About Secrets in JavaScript

Leaked API keys are nothing new, but the scale of the problem in front-end code has been largely a mystery - until now. Intruder's research team built a new secrets detection method and scanned 5 ...
Decrypt

Hardware Wallet Owners Hit With Snail Mail Phishing Campaign

The paper mailers mimic Ledger and Trezor branding and device update themes to push users toward malicious verification sites ...

Crypto phishers are sending letters to Trezor, Ledger users again

Physical letter scam targets Ledger and Trezor customers with fraudulent letters containing QR codes linked to credential-stealing sites.