Chrome Gets Patched, iOS Gets Sworded: Ledger & Binance Tell Crypto Users to Update ASAP

In the last 24 hours, the crypto world received two security alerts so urgent they feel like your wallet just yelled “I’M BEING ROBBED” from inside your pocket while you were scrolling NFTs. Ledger’s CTO Charles Guillemet dropped a tweet that read like a crypto horror movie trailer: Chrome just patched 26 vulnerabilities—4 critical, 22 high—each one a tiny door left unlocked by a developer who probably thought “nobody’ll ever click that link.” These aren’t your grandpa’s phishing scams; we’re talking use-after-free, heap overflows, and out-of-bounds access—the kind of bugs that let a malicious webpage turn your browser into a digital pickpocket. “A good reminder,” Guillemet quipped, “that your browser is less secure than a meme coin with no liquidity.” Translation: if you’re storing seed phrases in Notion because “it’s encrypted,” congrats, you just volunteered for the next crypto heist.

Meanwhile, Binance pivoted from “Buy the Dip” to “Buy the Update” after Apple quietly unleashed a stealthy iOS exploit called “DarkSword”—because apparently, Apple’s security team got tired of just saying “your phone is safe” and decided to name their patch after a medieval dagger that kills without a sound. This flaw, lurking in iOS 18.4 through 18.7, doesn’t need you to click anything. Just open Safari. That’s it. Your wallet data gets slurped up, the malware ghosts itself like a Bored Ape that vanished after the rug pull, and you’re left wondering why your ETH balance is now “sponsored by regret.” Binance’s advice? Update. Now. Before your private keys get turned into a TikTok trend: “How I lost my life savings by not hitting ‘Update’.”

Bottom line: if you’re still running Chrome from 2022 or iOS 18.5 because “it’s working fine,” congratulations—you’re the human equivalent of a crypto wallet that still uses “password123.” Keep your browser and OS updated, or politely hand your private keys to some guy in a Discord DM who’s selling a “free NFT airdrop” that’s really just a phishing page with better lighting.