DD
MM
YYYY

CATEGORIES

PAGES

DD
MM
YYYY

spot_img

CATEGORIES

PAGES

Home Blog Page 35

Coruna Exploit Kit Targets Older iOS Devices to Steal Cryptocurrency 

By
Paul Ugbede Godwin
-
0

Google’s Threat Intelligence Group (GTIG) has identified and detailed a powerful exploit kit called Coruna, which targets older iOS devices to steal cryptocurrency wallet data and potentially drain funds.

It primarily exploits iPhones running iOS 13.0 through iOS 17.2.1 (spanning releases from September 2019 to December 2023). Newer versions (iOS 17.3 and later, including the current iOS as of 2026) are not vulnerable because Apple patched the relevant issues in those updates.

This is a drive-by and zero-click style exploit delivered via malicious or compromised websites; often fake finance, gambling, crypto, or news sites, including some Chinese-language scam pages. When a vulnerable iPhone visits the site, the kit fingerprints the device.

If it’s on an outdated iOS version, it deploys a chain of exploits; five full exploit chains using at least 23 vulnerabilities, some previously undisclosed. This allows sandbox escape, root access, and deep system compromise. Once inside, it scans for and extracts sensitive crypto data: mnemonic seed phrases (BIP39 recovery phrases), private keys, QR codes, encrypted wallet files, login credentials from apps, etc.

Targeted Wallets and Apps

It specifically hunts data from popular crypto apps and wallets such as MetaMask, Phantom, Trust Wallet, Exodus, Uniswap, and around 18 others in total. First spotted by Google in early 2025. Initially linked to suspected nation-state actors; Russian intelligence targeting Ukrainian users via compromised “watering hole” sites.

Later repurposed for financially motivated cybercrime, especially via fake Chinese crypto and finance sites to mass-steal assets. It’s described as unusually sophisticated for commodity malware—more like commercial spyware or nation-state grade tools adapted for crypto theft.

Go to Settings > General > Software Update on your iPhone and install the latest iOS version available. This is the primary fix, as Coruna does not work on patched systems. If You Can’t Update (e.g., older hardware that no longer receives full updates): Enable Lockdown Mode (Settings > Privacy & Security > Lockdown Mode). This blocks the exploit chains and is explicitly recommended by Google and Apple for high-risk users.

Avoid clicking suspicious links or visiting untrusted sites especially anything promising crypto deals, airdrops, or urgent wallet actions. Use hardware wallets for large holdings instead of software and mobile wallets when possible. If your iPhone is on iOS 17.3 or newer, you’re not at risk from this specific kit.

Never enter seed phrases on any website or app unless you’re 100% sure it’s legitimate. Consider using a separate, up-to-date device for crypto activities if your main phone is older. This threat highlights how outdated devices become prime targets for sophisticated attackers shifting from targeted espionage to broader crypto theft.

Android users face several similar threats to the Coruna iOS exploit kit, though the Android ecosystem differs due to its open nature, sideloading risks, and widespread use of accessibility services abused by malware. Unlike Coruna’s sophisticated zero-click browser-based exploits targeting outdated iOS versions for crypto wallet data extraction, Android threats often rely on: Malware installed via phishing, fake apps, malvertising, or sideloaded APKs.

Abuse of Android’s Accessibility Services for remote control, UI automation, and silent data theft; opening wallet apps, capturing screens, extracting seed phrases and private keys. Overlay attacks, clipboard hijacking, or direct credential and seed phrase stealing.

Some RATs (Remote Access Trojans) enable live control to drain wallets during active sessions. These are frequently sold as Malware-as-a-Service (MaaS), making them accessible to lower-skill criminals for mass financial theft. Crypto-focused Android malware surged in 2025–2026, contributing to billions in overall crypto scam and fraud losses.

Albiriox: A rapidly evolving Android RAT and banking Trojan sold as MaaS. It provides live remote control over infected phones, allowing attackers to perform on-device fraud—quietly draining bank accounts and crypto wallets during real user sessions. It targets global finance and crypto services with structured modules for credential theft and transaction manipulation.

BlackRock Limits Withdrawals From $26bn Private Credit Fund as Redemption Wave Rattles $2tn Industry

By
Samuel Nwite
-
0

Shares of BlackRock fell sharply on Friday after the asset management giant restricted withdrawals from one of its flagship private credit funds, a move that is intensifying scrutiny of the rapidly expanding $2 trillion private lending industry as investor redemption requests surge.

The world’s largest asset manager saw its stock slide 6.7% on the New York Stock Exchange during a broader market selloff triggered by weaker-than-expected U.S. jobs data and rising geopolitical tensions linked to the expanding U.S.–Israeli war against Iran. The development has added fresh pressure to alternative asset managers that have increasingly relied on wealthy individual investors to fuel growth in private credit funds.

At the center of the issue is the $26 billion HPS Corporate Lending Fund (HLEND), a business development company created to provide affluent investors access to private lending markets traditionally dominated by institutional investors.

The fund received redemption requests totaling about $1.2 billion during the first quarter, equivalent to roughly 9.3% of its net asset value. BlackRock said it would distribute about $620 million — the maximum allowed under its 5% quarterly redemption cap — leaving a portion of investor withdrawal requests unmet.

The redemption cap was triggered for the first time since the fund’s inception, underscoring the growing stress across private credit markets as investors reassess risk amid volatile financial conditions.

Greggory Warren, senior stock analyst at Morningstar, said the development should be seen as a warning for both regulators and investors.

“It should serve as a warning sign for the industry and the rulemakers about the downside of illiquid funds for retail investors,” Warren said.

Liquidity risks come into focus

Private credit has become one of the fastest-growing segments of global finance, expanding rapidly after banks scaled back riskier corporate lending following stricter regulations introduced after the 2008 financial crisis.

Asset managers stepped in to fill the gap by lending directly to mid-sized companies. These loans often offer higher interest rates and attractive yields for investors compared with traditional bonds.

But the structure also contains a built-in tension: while investors may request withdrawals periodically, the underlying loans often take years to mature and cannot easily be sold in secondary markets.

HLEND acknowledged the structural challenge in its investor communication, saying the redemption cap exists to prevent “a structural mismatch between investor capital and the expected duration of the private credit loans in which HLEND invests.”

If managers were forced to meet large redemption requests without restrictions, they might need to sell loans at steep discounts, potentially damaging returns for remaining investors.

Wider industry tremors

BlackRock’s move comes amid mounting stress across the broader private credit ecosystem.

Earlier this week, rival asset manager Blackstone raised the usual 5% redemption limit on an $82 billion private credit fund to 7% after a spike in withdrawal requests. The firm and its employees also injected $400 million into the vehicle to ensure all redemption requests could be honored.

Another alternative investment giant, Blue Owl Capital, repurchased 15.4% of one of its funds earlier this year in order to stabilize investor flows.

These steps signal growing sensitivity among investors who poured record amounts of money into private credit funds during the past decade, attracted by yields that often outperformed public markets.

Analysts say the combination of higher interest rates, economic uncertainty, and rising borrower stress is forcing investors to reassess the risk profile of the sector.

Borrower stress raises red flags

Recent corporate failures have also cast a spotlight on underwriting standards within the private lending industry.

Bankruptcies involving a U.S. auto parts supplier and a subprime auto lender last year raised concerns about the credit quality of borrowers. Those concerns intensified after the collapse of a British mortgage lender earlier this month.

If defaults increase significantly, analysts warn that the consequences could ripple through private credit portfolios.

“The biggest risk for the alternative asset managers is that a marked increase in loan defaults on the part of their borrowers has an adverse effect on investment performance,” Warren said.

That, he added, could ultimately affect the industry’s ability to attract new capital and raise fresh funds.

Another factor weighing on investor sentiment is HLEND’s exposure to the technology sector.

According to fund disclosures, roughly 19% of the portfolio is tied to software companies. Technology stocks have faced renewed pressure as investors debate the disruptive impact of artificial intelligence and the potential for AI-native startups to reshape traditional software markets.

If valuations in the sector continue to adjust downward, borrowers dependent on growth projections from the technology boom could face tighter financial conditions.

For private lenders, that creates the possibility of higher default rates or loan restructurings.

Retail investors test the model

The situation also highlights the evolving investor base in private markets.

Historically, private credit was financed largely by institutional investors such as pension funds and insurance companies with long investment horizons. In recent years, however, asset managers have aggressively expanded access to wealthy individuals through structures like business development companies.

Funds such as HLEND typically offer limited liquidity — quarterly redemption windows rather than daily withdrawals — but the growing participation of retail investors means redemption cycles can become more volatile during periods of market stress.

In the first quarter alone, subscriptions to HLEND totaled $840 million, far below the $1.2 billion investors sought to withdraw. The imbalance between inflows and outflows suggests sentiment among investors is shifting.

Volatility pushes investors toward safety

The redemption wave is unfolding against a backdrop of heightened global uncertainty.

Markets have been rattled by escalating geopolitical tensions in the Middle East, persistent inflation pressures, and concerns about the long-term economic consequences of artificial intelligence-driven disruption.

In that environment, many investors have begun reallocating capital toward safer and more liquid assets, including government bonds and money market funds.

For large asset managers like BlackRock, the situation represents a test of how resilient the private credit model will be during periods of financial stress.

Over the past decade, private credit has grown into a cornerstone of the alternative investment industry, offering asset managers a lucrative source of fees and investors a way to access higher-yielding debt.

However, the pressure on HLEND illustrates how quickly liquidity tensions can emerge when investor sentiment shifts.

While institutional investors continue to allocate to private credit, analysts say the recent redemption wave suggests that the retailization of the sector — bringing wealthy individuals into traditionally illiquid markets — could become one of its biggest vulnerabilities during periods of volatility.

If economic conditions weaken or borrower defaults accelerate, the industry may face its most significant stress test since its explosive growth began after the global financial crisis.

Kazakhstan Plans $350m Crypto Investment, Echoing El Salvador’s Bold Bet on Digital Assets

By
Samuel Nwite
-
0

Kazakhstan’s central bank is preparing to allocate up to $350 million from its gold and foreign exchange reserves into cryptocurrency-related investments, a cautious step that signals how digital assets are gradually entering the portfolio strategies of sovereign financial institutions.

Governor Timur Suleimanov said the investment plan will focus on building a diversified portfolio tied to the broader digital asset ecosystem rather than direct large-scale purchases of cryptocurrencies.

“We are currently developing a list of instruments in which we will invest. This includes not only cryptocurrency itself,” Suleimanov said during a briefing on interest rates on Friday.

The planned portfolio is expected to include shares in technology firms tied to blockchain infrastructure, digital asset platforms, and index funds that track the performance of crypto-linked companies. By emphasizing equities and funds rather than simply buying tokens, Kazakhstan appears to be pursuing indirect exposure to the sector while managing the extreme price swings often associated with cryptocurrencies.

“These include shares of high-tech companies related to cryptocurrencies and digital financial assets, index funds and other instruments that exhibit similar dynamics to crypto assets,” Suleimanov said.

According to Aliya Moldabekova, the investments are expected to begin between April and May once the central bank completes its selection of eligible companies and financial instruments.

“We are not talking about any large investment in cryptocurrencies,” Moldabekova said. “We are currently selecting companies that deal with digital assets. For example, those involved in cryptocurrency infrastructure.”

Even at the upper end of the proposed allocation, the investment would account for only a small share of Kazakhstan’s financial buffers. As of February 1, the country held about $69.4 billion in gold and foreign exchange reserves, while the sovereign wealth vehicle, the National Fund of the Republic of Kazakhstan, controlled assets worth roughly $65.23 billion.

The modest scale suggests the initiative is more of a strategic experiment than a full pivot toward crypto reserves. Still, the move places Kazakhstan among a small but growing group of countries exploring how digital assets might fit into national financial strategies.

The approach mirrors, though in a far more conservative form, the policy pursued by El Salvador, which in 2021 became the first nation to adopt Bitcoin as legal tender under President Nayib Bukele.

El Salvador began purchasing bitcoin directly for its national reserves and integrated the cryptocurrency into its financial system, launching the government-backed Chivo Wallet to enable citizens to transact in the digital currency. The government also used public funds to accumulate bitcoin during market downturns, arguing that the strategy could strengthen financial inclusion and attract global investment.

While El Salvador’s approach involved direct holdings of volatile crypto assets, Kazakhstan’s strategy reflects a more cautious institutional framework. Rather than accumulating cryptocurrencies outright, the central bank is seeking exposure through companies that build the infrastructure supporting the digital asset market.

Analysts say the difference underlines the contrasting economic priorities and risk tolerances of the two countries. El Salvador’s bitcoin strategy was designed to position the country as a global crypto hub and reduce reliance on traditional financial systems. Kazakhstan, by contrast, appears focused on exploring emerging financial technologies without placing core reserves at significant risk.

Kazakhstan already occupies a strategic position in the global cryptocurrency market. After China banned large-scale crypto mining operations in 2021, many mining companies relocated to Kazakhstan, briefly turning the country into one of the world’s largest centers for bitcoin mining.

The rapid expansion placed heavy pressure on the national electricity grid and forced authorities to introduce tighter regulations, energy tariffs, and licensing requirements for mining operations. Those steps slowed the industry’s growth but also prompted policymakers to develop clearer frameworks governing digital assets.

By directing a small portion of its reserves toward crypto-linked investments, Kazakhstan may also be attempting to benefit financially from a sector in which it already plays a structural role through mining infrastructure and energy resources.

More broadly, the move underscores a gradual shift in how sovereign institutions view digital assets. For years, central banks approached cryptocurrencies primarily as regulatory challenges or financial stability risks. Increasingly, however, policymakers are examining whether the rapid growth of blockchain-based industries presents new investment opportunities.

The cautious scale of Kazakhstan’s planned allocation suggests that cryptocurrencies remain far from becoming reserve assets in the traditional sense. Yet the decision to commit even a small portion of national reserves indicates that the digital asset economy is beginning to influence the investment strategies of governments and central banks around the world.

Vast Space Doubles Down on Leapfrog Strategy After Missing First NASA ISS Awards, Raises $500m to Build Haven-1

By
Samuel Nwite
-
0

Vast Space, the ambitious commercial space station developer founded by former SpaceX engineer Jed McCaleb, is pressing forward with its “leapfrog strategy” despite not securing a spot in NASA’s first round of commercial space station awards announced in late 2025.

CEO Max Haot told CNBC’s Morgan Brennan this week that the company is fully committed to launching its Haven-1 station in 2027, building a track record of reliable human-rated habitats, and proving its capabilities so NASA cannot ignore it when the agency selects partners to replace or augment the International Space Station (ISS) after its planned retirement around 2030.

“If we do all of that, or are on the way to do that, I think it will be impossible to ignore for NASA in terms of the hardware that we have,” Haot said during the interview.

Vast raised $500 million in a new funding round led by Balerion Space Ventures, with participation from Qatar’s sovereign wealth fund and other strategic investors. The capital will support Haven-1’s development, including critical subsystems, crew module fabrication, and launch preparations on a Falcon 9 rocket. The company also announced last month that it was selected for NASA’s sixth private astronaut mission to the ISS, providing both revenue and operational experience.

The funding comes at a pivotal moment for the commercial space sector. SpaceX is widely expected to pursue a mega initial public offering (IPO) in 2026 or 2027, potentially valuing the company at well over $200 billion. Rocket Lab (RKLB) conducted multiple successful launches this week, while Sierra Space closed a $550 million round to advance its Dream Chaser spaceplane and Orbital Reef station project.

Investor appetite remains strong, fueled by President Donald Trump’s renewed emphasis on returning humans to the moon under the Artemis program and the need for a viable ISS successor. NASA’s recent selection process awarded contracts to Blue Origin (Orbital Reef) and Voyager Space (Starlab), among others, but excluded Vast. The agency has since signaled openness to multiple providers, with Congress extending ISS operations potentially to 2032 to bridge the transition.

NASA Administrator Jared Isaacman — confirmed in late 2025 after a year-long nomination delay — has overseen a major overhaul of Artemis, including accelerated timelines and a push for more commercial partnerships. Isaacman told Brennan at the a16z American Dynamism summit that the current “giant leaps” approach, launching missions every three to four years, is unsustainable and must evolve toward more frequent, iterative progress.

Vast’s strategy centers on speed, cost efficiency, and iterative development. Haven-1 is designed as a single-launch, single-module station capable of hosting four crew members for up to 30 days. It will serve as a testbed for larger modular habitats that Vast plans to deploy in the 2030s. Haot emphasized partnerships with Europe (ESA) and Japan (JAXA) to secure international customers and technology, as well as a low-cost philosophy that avoids the massive capital burn of some competitors.

“We will be ready for the call to replace the ISS,” Haot said. “I believe we will be successful and maybe there’ll eventually be space for many more.”

He highlighted profitability as a core goal, noting Vast aims to achieve positive cash flow through private astronaut missions, research payloads, tourism, and sovereign station services before NASA’s next major award cycle.

The company’s approach contrasts with larger players like Blue Origin and Voyager Space, which have secured early NASA funding but face longer development timelines. Vast is betting that demonstrated hardware in orbit will carry more weight than paper proposals when NASA selects long-term partners for LEO commercialization. Haven-1’s 2027 launch target — ambitious but backed by the new funding — positions Vast as a potential dark horse in the race to fill the post-ISS void.

The broader commercial space landscape is heating up. While Trump’s administration has prioritized lunar return and private-sector involvement in Artemis, NASA under Isaacman is shifting toward more frequent, commercially enabled missions. Congress’s extension of ISS operations to 2032 provides breathing room, but experts note the need for a robust U.S.-led commercial LEO ecosystem remains urgent.

Thus, Vast’s $500 million round, one of the largest for a pure-play space station developer, reflects investor confidence in the post-ISS opportunity. With SpaceX’s Starship progress, Rocket Lab’s Neutron development, and Sierra Space’s Dream Chaser nearing operational status, the sector is entering a high-stakes phase of hardware demonstration and customer acquisition.

Haot’s vision is to prove the technology works, build trust with NASA and international partners, and secure a leading role in the next era of human spaceflight. If Vast delivers Haven-1 on schedule and demonstrates reliable operations, it could force NASA to reconsider its initial selections — potentially creating “space for many more” as Haot envisions.

U.S. Rolls Out $20bn Insurance Backstop for Oil Tankers as Strait of Hormuz Crisis Sends Crude Prices Soaring

By
Samuel Nwite
-
0

The administration of Donald Trump on Friday unveiled a $20 billion reinsurance program designed to restart oil tanker traffic through the Strait of Hormuz, as escalating hostilities between Israel and Iran threaten to choke off one of the world’s most critical energy corridors.

The initiative comes amid a dramatic surge in oil prices and mounting concerns that the widening conflict in the Middle East could spiral into a full-scale supply shock for global energy markets.

U.S. crude futures jumped more than 12% on Friday, pushing prices above $90 per barrel, after tanker traffic through the Persian Gulf slowed sharply and some Gulf producers began cutting output because they could not ship crude through the narrow waterway.

Under the plan, the U.S. International Development Finance Corporation will provide insurance coverage for maritime losses of up to $20 billion on a rolling basis. The program is being implemented in coordination with the U.S. Department of the Treasury and United States Central Command, pinpointing the strategic nature of the crisis and the U.S. government’s effort to stabilize energy supply routes.

“We are confident that our reinsurance plan will get oil, gasoline, LNG, jet fuel, and fertilizer through the Strait of Hormuz and flowing again to the world,” said DFC Chief Executive Ben Black.

The Strait of Hormuz — which connects the Persian Gulf to the Gulf of Oman — handles roughly 20% of global oil consumption and about a fifth of the world’s liquefied natural gas shipments. The waterway is only about 21 miles wide at its narrowest point, making it uniquely vulnerable to military disruption, naval blockades, or missile and drone attacks.

Even temporary interruptions can ripple through energy markets. Analysts note that during previous geopolitical crises involving the strait, oil prices have spiked rapidly because the route serves as the primary export channel for several of the world’s largest producers, including Saudi Arabia, the United Arab Emirates, Kuwait, and Iraq.

The Trump administration had already signaled earlier in the week that it was prepared to intervene to keep the shipping lane open. Trump said commercial vessels transiting the Gulf could receive government-backed insurance and potentially escort protection from the United States Navy if conditions deteriorate further.

The measures follow several attacks on commercial tankers since U.S. and Israeli forces launched a large wave of airstrikes against Iranian targets last weekend. Shipping firms responded by halting voyages through the strait, creating a bottleneck that has effectively frozen a significant portion of Gulf oil exports.

Industry analysts say the market reaction highlights the fragility of global energy supply chains, particularly at a time when geopolitical tensions across multiple regions are already weighing on trade routes.

Matt Wright, senior freight analyst at the energy analytics firm Kpler, said insurance coverage alone is unlikely to resolve the immediate standoff.

“Tanker owners are worried about their physical security,” Wright said, noting that the lack of vessel movement reflects concerns that ships could become targets in an expanding regional conflict.

“There needs to be some confidence that Iran’s ability to continue to wage war has diminished,” he added.

The disruption has already begun affecting oil producers across the Gulf. With exports constrained, some countries have reportedly started reducing output as storage tanks approach capacity and tankers remain stranded outside the strait awaiting safer passage.

For energy markets, the situation is reviving fears of a supply shock similar to earlier Middle East crises that drove sharp increases in crude prices and triggered inflationary pressure across major economies.

Higher oil prices feed directly into transportation, manufacturing, and food costs, raising concerns among policymakers that the conflict could complicate the fight against inflation just as many central banks were preparing to ease interest rates.

The spike in energy prices is already beginning to reshape financial market expectations. Investors are reassessing the outlook for monetary policy, as sustained oil price increases could delay planned rate cuts by central banks such as the Federal Reserve and the European Central Bank.

At the same time, the crisis is forcing governments and energy companies to revisit contingency plans for supply disruptions. Some producers may attempt to reroute shipments through alternative pipelines or storage hubs, though such options are limited and cannot fully replace the capacity of the Strait of Hormuz.

However, the $20 billion reinsurance program is seen as an attempt by Washington to restore confidence in maritime trade long enough to prevent a deeper shock to the global energy system. U.S. officials hope tanker operators will gradually resume voyages through the strait by guaranteeing shipping losses and potentially deploying naval escorts.

It is not certain, though, if those assurances are sufficient. With the war expanding across multiple fronts and attacks on commercial shipping continuing, many energy traders and shipping firms say the risks in the Gulf remain elevated — leaving the global oil market on edge.

1...343536...8,333Page 35 of 8,333

© Tekedia. All rights reserved.

Term & Privacy

© Tekedia. All rights reserved.

Term & Privacy