⬢ GM Security — 2026-06-21: $14.9M across 28 incidents

Daily crypto security briefing

2026-06-21 13:04 UTC · last 72h · 28 items · $14.9M reported losses · 49 sources

📊 Trend tracker

• 1 new today · 27 developing
• 7-day: 111 incidents, $210.1M stolen
• 30-day: 111 incidents, $210.1M stolen
• 7-day vectors: smart-contract bug (23), private-key compromise (8), phishing / wallet drainer (8)
• Repeat targets (30d): bitcoin (5), thetanuts (5), uxlink (4), certik (3), steam (3)

Last 24 hours

• [OTHER · DEVELOPING · day 2] Bitcoin price holds $64K as LAB and AERO lead altcoin gains: Weekend crypto watch (crypto.news)
• [EXPLOIT · DEVELOPING · day 2] @PeckShieldAlert: #PeckShieldAlert Specter has reported that #MEV bot #JaredFromSubway appears to have been drained of ~$7.5M in crypto,… — ~$7.5M (@PeckShieldAlert)
  also: CoinDesk · crypto.news
• [ENFORCEMENT · DEVELOPING · day 2] Brothers face 20 years after $8m crypto kidnapping plea — ~$8.0M (crypto.news)
• [EXPLOIT · NEW] @GoPlusSecurity: 🚨 Security Alert: — ~$4.7M (@GoPlusSecurity)
  also: @GoPlusSecurity · crypto.news
• [ADVISORY · DEVELOPING · day 2] @PeckShieldAlert: #PeckShieldAlert ethereum:0x890a5122aa1da30fec4286de7904ff808f0bd74a has plummeted 70%. — ~$18.0M (@PeckShieldAlert)
  also: @PeckShieldAlert
• [EXPLOIT · DEVELOPING · day 2] @GoPlusSecurity: 🚨GoPlus Security Alert: — ~$305K (@GoPlusSecurity)
  also: @GoPlusSecurity
• [ADVISORY · DEVELOPING · day 2] @MistTrack_io: ✨MistTrack Quarterly Update: Risk Decay Model, Connection Path Analysis, and Developer Plan (@MistTrack_io)
• [OTHER · DEVELOPING · day 2] @spreekaway: indeed, no one else does it like Main Street https://t.co/kMWamDladg (@spreekaway)

Earlier · 24–72h

• [EXPLOIT · DEVELOPING · day 2] @PeckShieldAlert: #PeckShieldAlert An OLPC/LABUBU pool on PancakeSwap on #BNBChain has been exploited, resulting in a loss of ~$1.1M. — ~$1.1M (@PeckShieldAlert)
  also: DeFiLlama Hacks DB
• [ADVISORY · DEVELOPING · day 2] Michael Saylor fires back as STRC crash sparks fraud claims (crypto.news)
• [ADVISORY · DEVELOPING · day 2] CZ proposes freezing Satoshi Bitcoin stash to stop quantum theft (crypto.news)
• [ENFORCEMENT · DEVELOPING · day 2] Garcia brothers admit $8M crypto heist after family kidnapping — ~$8.0M (crypto.news)
• [ADVISORY · DEVELOPING · day 2] EU targets privacy coins while leaving Bitcoin transfers untouched (crypto.news)
• [SCAM · DEVELOPING · day 2] @zachxbt: A short story about Indian scammers who called the cops on themselves: — ~$475K (@zachxbt)
• [SCAM · DEVELOPING · day 2] Anime Girls Could Steal Your Crypto as Wallpaper Malware Targets Steam Gamers (Decrypt)
• [EXPLOIT · DEVELOPING · day 2] Namada Shielded Pools — exploit — $600K (SlowMist Hacked DB)
• [ADVISORY · DEVELOPING · day 2] @CertiK: "Auditing the code is necessary, but no longer sufficient." (CertiK)
• [EXPLOIT · DEVELOPING · day 2] @PeckShieldAlert: #PeckShieldAlert The @Humanityprot exploiter-labeled address has bridged 130 $ETH ($220.6K) from #Ethereum to #BNBChain… — ~$221K (@PeckShieldAlert)
• [OTHER · DEVELOPING · day 2] Morgan Stanley files amendments for ETH and SOL ETFs, revealing lowest fees in market (The Block)
• [ADVISORY · DEVELOPING · day 2] @Quantstamp: As social engineering attacks rise, OPSEC matters more than ever. (@Quantstamp)
• [ADVISORY · DEVELOPING · day 2] @HalbornSecurity: Securing blockchain infrastructure for institutional adoption means auditing at every layer, not just the smart contrac… (@HalbornSecurity)
• [OTHER · DEVELOPING · day 2] @pcaversaccio: dude, so many people obsessing over fucking tx speed & scale are the same people who deposit into a cex, wait 30 mi… (pcaversaccio)
• [ADVISORY · DEVELOPING · day 2] @CertiKAlert: #CertiKInsight 🚨 (@CertiKAlert)
• [ADVISORY · DEVELOPING · day 2] @HalbornSecurity: Quantum computing is an approaching threat to blockchain security. 🔐 (@HalbornSecurity)
• [OTHER · DEVELOPING · day 4] @spreekaway: https://t.co/MzmtARehtY (@spreekaway)
• [ADVISORY · DEVELOPING · day 4] @spreekaway: That's right: ZERO. https://t.co/yex0V1k3wi (@spreekaway)

🧠 Deep reads

• Microsoft found malware that hijacks crypto wallets and spreads through USB sticks (CoinDesk)
• Ex-Celsius CEO Mashinsky gets U.S. CFTC ban in final resolution with regulator (CoinDesk)

💡 Security thought-spark

Today’s $7.5M JaredFromSubway drain proves that even seasoned MEV bots are vulnerable to wallet-drainer phishing; immediately audit all privileged bot signers and enforce hardware-backed, session-tied approvals.

Full data: https://gmsecurity.net/briefing.json. Feedback or a source to add? [email protected]. George Donnelly offers Web3 development & security consulting.