Decentralised-finance platform Puffer Finance took its application and social-media channels offline late 19 Aug. after attackers seized control of its X account and related web infrastructure. Blockchain-security firms CertiK and SlowMist urged users to avoid the service, warning that any interaction could result in asset loss. Puffer said operations were fully restored in the early hours of 20 Aug., but advised customers to review recent transactions for unusual activity. The breach coincided with broader alerts for cryptocurrency holders. Apple on 23 Aug. issued emergency updates for iOS and macOS to close a zero-click flaw that security outlet Cointelegraph said could let sophisticated attackers drain digital wallets. Industry analysts recommended users force-update their iPhones, iPads and Macs immediately. Separately, CrowdStrike reported that the cybercrime group known as COOKIE SPIDER used malvertising between June and August to distribute a new variant of the Atomic macOS Stealer, dubbed SHAMOS. The campaign, which mimicked legitimate technical-support pages and bypassed Apple’s Gatekeeper protections, targeted more than 300 organisations worldwide and was engineered to lift browser credentials, Keychain passwords and cryptocurrency wallets. The trio of incidents underscores escalating attempts to compromise devices and platforms popular with digital-asset investors, prompting security researchers to urge strict patch management and caution when interacting with unsolicited links or applications.