Market Cap: $2.2013T 1.07%
Volume(24h): $54.0961B 4.04%
  • Market Cap: $2.2013T 1.07%
  • Volume(24h): $54.0961B 4.04%
  • Fear & Greed Index:
  • Market Cap: $2.2013T 1.07%
Cryptos
Topics
Cryptospedia
News
CryptosTopics
Videos
Top News
Cryptos
Topics
Cryptospedia
News
CryptosTopics
Videos
bitcoin
bitcoin

$87959.907984 USD

1.34%

ethereum
ethereum

$2920.497338 USD

3.04%

tether
tether

$0.999775 USD

0.00%

xrp
xrp

$2.237324 USD

8.12%

bnb
bnb

$860.243768 USD

0.90%

solana
solana

$138.089498 USD

5.43%

usd-coin
usd-coin

$0.999807 USD

0.01%

tron
tron

$0.272801 USD

-1.53%

dogecoin
dogecoin

$0.150904 USD

2.96%

cardano
cardano

$0.421635 USD

1.97%

hyperliquid
hyperliquid

$32.152445 USD

2.23%

bitcoin-cash
bitcoin-cash

$533.301069 USD

-1.94%

chainlink
chainlink

$12.953417 USD

2.68%

unus-sed-leo
unus-sed-leo

$9.535951 USD

0.73%

zcash
zcash

$521.483386 USD

-2.87%

Cryptocurrency News Articles

Hacker Alert: TeleMessage Vulnerability Exploited Amid Crypto Chaos

Jul 19, 2025 at 07:03 am

Hackers are actively exploiting a TeleMessage vulnerability, as revealed by GreyNoise, alongside a resurgence of activity from the Infini hack wallet and a critical flaw found in the 1inch Router, highlighting ongoing security challenges in crypto.

Hacker Alert: TeleMessage Vulnerability Exploited Amid Crypto Chaos

Hacker Alert: TeleMessage Vulnerability Exploited Amid Crypto Chaos

Hold on to your hats, folks! The world of cybersecurity is buzzing with activity, and not the good kind. From exploits targeting TeleMessage to dormant crypto wallets springing back to life, it’s a wild ride out there. Let's dive in.

TeleMessage Under Fire: CVE-2025-48927 Exploitation

According to a recent report from GreyNoise, hackers are actively seeking to exploit the CVE-2025-48927 vulnerability in TeleMessage. This flaw allows hackers to extract data from vulnerable systems due to the platform's use of a legacy confirmation in Spring Boot Actuator, where a diagnostic /heapdump endpoint is publicly accessible without authentication. GreyNoise has detected multiple IP addresses attempting to exploit this since April. TeleMessage, similar to Signal but designed for archiving chats for compliance, suffered a security breach in May, leading to stolen files. While TeleMessage claims the vulnerability has been patched, the timeline for full implementation can vary.

This is significant because TeleMessage isn’t just your average messaging app. It’s used by government organizations and enterprises, including former US government officials. GreyNoise recommends blocking malicious IPs and restricting access to the /heapdump endpoint to mitigate risks.

Infini Hack Wallet Awakens: $16 Million in Motion

In another corner of the crypto universe, a dormant wallet linked to the Infini hack has sprung back to life. The wallet, associated with a breach that drained $49.5 million in USDC, began moving funds in July 2025 for the first time since February. The attacker has started liquidating stolen funds, profiting from Ethereum's price surge.

The wallet shifted 4,770 ETH, worth around $16 million, using privacy tools like Tornado Cash to obfuscate transactions. This activity has reignited concerns over DeFi security and traceability in on-chain crime. The Infini breach exposed weak governance structures and renewed scrutiny on admin permission management in DeFi protocols.

1inch Router Vulnerability: A Close Call

Adding to the drama, Carbontec, a blockchain security firm, identified a critical vulnerability within the 1inch Router's rescue function. This flaw could have led to a loss of approximately $520,000. The vulnerability, stemming from inadequate transaction verification, could have allowed unauthorized fund transfers. The 1inch team swiftly implemented a patch, demonstrating their commitment to security. This incident highlights the importance of rigorous security audits and collaboration between security firms and DeFi projects.

Personal Thoughts

It's becoming increasingly clear that security in the digital space, especially within the crypto and messaging app ecosystems, requires constant vigilance and proactive measures. The TeleMessage vulnerability, coupled with the Infini hack and the 1inch Router flaw, paints a picture of an environment where threat actors are relentless and ever-evolving. For instance, the fact that the Infini hacker waited for Ethereum's price to surge before moving funds shows a strategic, patient approach. This isn't just about patching vulnerabilities; it's about fostering a culture of security awareness and continuous improvement.

The Big Picture

These events underscore the ongoing challenges in securing digital platforms. Whether it’s exploiting vulnerabilities in messaging apps or manipulating DeFi protocols, hackers are constantly seeking new opportunities. Users and developers alike must prioritize security to protect sensitive data and assets.

Wrapping Up

So, what’s the takeaway? Stay vigilant, folks! Keep your apps updated, double-check those smart contracts, and maybe think twice before storing all your crypto in one place. The digital world is a bit like the Wild West, but with better Wi-Fi. Stay safe out there, and happy surfing!

Original source:cointelegraph

Disclaimer:info@kdj.com

The information provided is not trading advice. kdj.com does not assume any responsibility for any investments made based on the information provided in this article. Cryptocurrencies are highly volatile and it is highly recommended that you invest with caution after thorough research!

If you believe that the content used on this website infringes your copyright, please contact us immediately (info@kdj.com) and we will delete it promptly.

Other articles published on Jul 06, 2026