Trade
Basic
Futures
Futures
Hundreds of contracts settled in USDT or BTC
Options
HOT
Trade European-style vanilla options
Unified Account
Maximize your capital efficiency
Demo Trading
Futures Kickoff
Get prepared for your futures trading
Futures Events
Participate in events to win generous rewards
Demo Trading
Use virtual funds to experience risk-free trading
Earn
Launch
CandyDrop
Collect candies to earn airdrops
Launchpool
Quick staking, earn potential new tokens
HODLer Airdrop
Hold GT and get massive airdrops for free
Launchpad
Be early to the next big token project
Alpha Points
NEW
Trade on-chain assets and enjoy airdrop rewards!
Futures Points
NEW
Earn futures points and claim airdrop rewards
Investment
Simple Earn
Earn interests with idle tokens
Auto-Invest
Auto-invest on a regular basis
Dual Investment
Buy low and sell high to take profits from price fluctuations
Soft Staking
Earn rewards with flexible staking
Crypto Loan
0 Fees
Pledge one crypto to borrow another
Lending Center
One-stop lending hub
VIP Wealth Hub
Customized wealth management empowers your assets growth
Private Wealth Management
Customized asset management to grow your digital assets
Quant Fund
Top asset management team helps you profit without hassle
Staking
Stake cryptos to earn in PoS products
Smart Leverage
NEW
No forced liquidation before maturity, worry-free leveraged gains
GUSD Minting
Use USDT/USDC to mint GUSD for treasury-level yields
More
Trending Topics
View More9.37K Popularity
33.06K Popularity
7.19K Popularity
5.95K Popularity
90.6K Popularity
Hot Gate Fun
View More- MC:$3.66KHolders:20.95%
- MC:$3.51KHolders:10.00%
- MC:$3.53KHolders:20.00%
- MC:$3.58KHolders:20.00%
- MC:$3.55KHolders:20.00%
Pin
Gate Square New & Returning Creator Rewards are ongoing!
Your ideas may be more valuable than you think!
Make your first post or come back post to share a $20,000 monthly prize pool!
Post with #MyFirstPostOnSquare to receive a $50 Position Voucher each
Monthly Top Posters and Top Engagers will each earn an extra $50 reward
Your crypto insights could inspire many—start creating today!
👉 https://www.gate.com/postGate Square “Creator Certification Incentive Program” — Recruiting Outstanding Creators!
Join now, share quality content, and compete for over $10,000 in monthly rewards.
How to Apply:
1️⃣ Open the App → Tap [Square] at the bottom → Click your [avatar] in the top right.
2️⃣ Tap [Get Certified], submit your application, and wait for approval.
Apply Now: https://www.gate.com/questionnaire/7159
Token rewards, exclusive Gate merch, and traffic exposure await you!
Details: https://www.gate.com/announcements/article/47889Your First Words Matter!
Share your first post on and split $10,000 in New Year rewards.
Post with #My2026FirstPost to share your New Year wish
2026U Position Voucher, Gate New Year boxes, F1 Red Bull merch await you!
Ends on Jan 15, 2026, 16:00 UTC
2026 starts with this post!Gate 2025 Year-End Gala Square TOP50 List Announced!
The final ranking phase is now live.
Earn Votes by watching live streams and posting.
30 Votes = 1 chance — support your favorite creators now!
👉 https://www.gate.com/activities/community-vote-2025
iPhone 17 Pro Max, JD gift cards, Mi Band, Gate merch await you!
Creators are welcome to rally fans to climb the rankings and win rewards!
Voting ends: Jan 20, 02:00 UTC
Details: https://www.gate.com/announcements/article/48693
Malicious Bitcoin npm packages spread NodeCordRAT malware before takedown
Source: CryptoNewsNet Original Title: Malicious Bitcoin npm packages spread NodeCordRAT malware before takedown Original Link: Researchers at Zscaler ThreatLabz have found three malicious Bitcoin npm packages that are meant to implant malware named NodeCordRAT. Reports say that they all got more than 3,400 downloads before they were taken down from the npm registry.
The packages, which include bitcoin-main-lib, bitcoin-lib-js, and bip40, had amassed 2,300, 193, and 970 downloads. By copying names and details from real Bitcoin components, the attacker made these lookalike modules appear harmless at a glance.
“The bitcoin-main-lib and bitcoin-lib-js packages execute a postinstall.cjs script during installation, which installs bip40, the package that contains the malicious payload,” Zscaler ThreatLabz researchers Satyam Singh and Lakhan Parashar said. “This final payload, named NodeCordRAT by ThreatLabz, is a remote access trojan (RAT) with capabilities to steal sensitive data.”
NodeCordRAT is equipped to steal Google Chrome credentials, API codes kept in .env files, and MetaMask wallet data like private keys and seed phrases.
Zscaler ThreatLabz analysts identified the trio in November while scanning the npm registry for suspicious packages and strange download patterns. NodeCordRAT represents a new malware family that leverages Discord servers for command-and-control (C2) communication.
The person who posted all three malicious packages used the email address supertalented730@gmail.com.
Attack Chain
The attack chain begins when developers unknowingly install bitcoin-main-lib or bitcoin-lib-js from npm. Then it identifies the path of the bip40 package and starts it in detached mode using PM2.
The malware generates a unique identifier for compromised machines using the format platform-uuid, such as win32-c5a3f1b4. It achieves this by extracting system UUIDs through commands like wmic csproduct get UUID on Windows or reading /etc/machine-id on Linux systems.
Historical Context: Malicious Node Packages in Crypto
Trust Wallet reported that the theft of almost $8.5 million was connected to an attack on the npm ecosystem supply chain by “Sha1-Hulud NPM.” More than 2,500 wallets were affected.
Hackers used compromised npm packages as NodeCordRAT-style trojans and supply chain malware, incorporating them into client-side code that stole money from customers when they accessed their wallets.
Other 2025 examples that resemble the NodeCordRAT-style threat include the Force Bridge exploit, which occurred between May and June 2025. Attackers stole either the software or the private keys that validator nodes used to authorize cross-chain withdrawals. This turned nodes into malicious actors that could approve fraudulent transactions.
This breach resulted in an estimated $3.6 million in stolen assets, including ETH, USDC, USDT, and other tokens. It also forced the bridge to stop operations and conduct audits.
In September, the Shibarium Bridge exploit unfolded, and attackers were able to take control of most of the validator power for a short time. This let them serve as bad validator nodes, sign off on illegal withdrawals, and take around $2.8 million in SHIB, ETH, and BONE tokens.