Monero - Tool

Threat entity extracted from intelligence sources

Frequency
10
occurrences
First Seen
February 3, 2026
Last Seen
July 17, 2026

Monero is a tool tracked across 7 threat clusters and 10 intelligence report mentions on ThreatCluster. First observed February 3, 2026; most recent activity July 17, 2026.

Related Threat Clusters

  • Tether Freezes 134 ISIS-K Wallets Amid OFAC Sanctions Update

    On July 1, 2026, the U.S. Treasury's OFAC sanctioned 134 cryptocurrency addresses linked to ISIS-K, including 131 TRON wallets. Tether responded by freezing all balances on these wallets, which had received over $1.4…

    5 articles · Updated July 1, 2026
  • macOS Malware Hijacks Telegram Sessions to Steal Crypto Wallet Data

    Security researchers have identified a new macOS malware that targets cryptocurrency users by hijacking Telegram Desktop sessions. This malware extracts sensitive information from local files, including passwords,…

    3 articles · Updated July 17, 2026
  • Litecoin Faces 13-Block Reorganization Due to Zero-Day Vulnerability Exploitation

    On April 25, 2026, Litecoin experienced a significant 13-block chain reorganization after attackers exploited a zero-day vulnerability in its MimbleWimble Extension Block (MWEB) protocol. The vulnerability allowed…

    27 articles · Updated April 25, 2026
  • RetoSwap Hack Exploits Haveno Protocol Vulnerability

    On May 20, 2026, RetoSwap, a P2P decentralized exchange, was hacked, resulting in the theft of approximately 7,000 XMR (around $2.7 million). The attacker exploited a critical vulnerability in the Haveno trading…

    2 articles · Updated May 25, 2026
  • RetoSwap Monero DEX Hack Results in $2.7 Million Theft

    RetoSwap, a decentralized exchange on the Monero blockchain, was exploited, leading to the theft of approximately 7,000 XMR, valued at around $2.7 million. The breach was first identified by PeckShield, which reported a…

    2 articles · Updated May 21, 2026
  • Rise of AI-Driven Scams Targeting UK SMEs

    UK small and medium-sized enterprises (SMEs) are increasingly vulnerable to sophisticated AI-driven scams, as highlighted by recent reports. The emergence of 'AI scams 2.0' combines traditional social engineering…

    704 articles · Updated March 12, 2026
  • Emergence of Vect RaaS Operation Targeting Organizations in Brazil and South Africa

    The newly identified Vect ransomware-as-a-service (RaaS) operation has compromised organizations in Brazil and South Africa. Launched in December 2025, Vect employs C++-based malware utilizing the ChaCha20-Poly1305 AEAD…

    2 articles · Updated February 5, 2026

Recent Intelligence Reports

  • macOS malware can bypass Telegram's... — Chaincatcher · July 17, 2026
  • Tether freezes 134 ISIS terror wallets as stablecoins now sit inside the sanctions machine — Cryptoslate · July 2, 2026
  • OFAC Sanctions 100+ ISIS-K Crypto Addresses — Chainalysis · July 1, 2026
  • OFAC Sanctions 134 ISKP Cryptocurrency Addresses Tied to USD 2 Million in Terrorist Financing — Trmlabs · July 1, 2026
  • Explained: The RetoSwap Hack (May 2026) — Halborn · May 25, 2026
  • RetoSwap Monero DEX Exploited: $2.7 Million in XMR Stolen — Cryptonews · May 21, 2026
  • Litecoin Shares Update on Zero Day Exploit: What Happened? — U.Today · April 26, 2026
  • Litecoin Confirms Zero-Day Bug Caused 13-Block Reorg, Network Patched and Stable — Mexc · April 25, 2026

CVSS v3.1 Breakdown