Pay with

USD

Supports Visa, Mastercard, SEPA & more

Flexible trading, zero fees

Use your crypto for payments worldwide

Basic

Trade crypto freely

Magnify your profit with leverage

Convert & Auto-Invest

Trade any size with no fees and no slippage

Get exposure to leveraged positions simply

Pre-Market Trading

Trade new tokens before listing

Advanced

Trade on-chain with Gate Wallet

Smart access to new on-chain tokens

Smart strategies with automated trading

Follow expert trading strategies

CrossEx Trading

One margin balance, shared across platforms

Access hundreds of perpetual contracts

One platform for global traditional assets

Trade European-style vanilla options

Unified Account

Maximize your capital efficiency

Introduction to Futures Trading

Learn the basics of futures trading

Join events to earn rewards

Use virtual funds to practice risk-free trading

Launch

Collect candies to earn airdrops

Quick staking, earn potential new tokens

Hold GT and get massive airdrops for free

Unlock full access to global stock IPOs

Trade on-chain assets and earn airdrops

Earn futures points and claim airdrop rewards

Investment

Earn interest with idle tokens

Auto-invest on a regular basis

Dual Investment

Profit from market volatility

Earn rewards with flexible staking

Pledge one crypto to borrow another

One-stop lending hub

Premium wealth growth plans

Private Wealth Management

Premium asset allocation

Top-tier quant strategies

Stake cryptos to earn in PoS products

No-liquidation leverage

Mint GUSD for RWA returns

Post, share, and explore crypto trends

Live crypto market analysis

Chat with crypto traders

What is happening in crypto

More

Promotions

Activity Center

Participate in activities to earn rewards

Invite friends to earn referral rewards

Affiliate Program

Earn exclusive commission rewards

Grow influence and earn airdrops

Real-time platform updates

Crypto industry articles

Huge fee discounts

Asset Management

One‑stop asset management solution

Enterprise digital asset solutions

OTC Bank Transfer

Deposit and withdraw fiat

Generous API rebate mechanisms

AI

Your all-in-one conversational AI partner

Use Gate AI directly in your social App

Gate Blue Lobster, ready to go

Gate for AI Agent

AI infrastructure, Gate MCP, Skills, and CLI

Gate Skills Hub

From office tasks to trading, the all-in-one skill hub makes AI even more useful.

Smartly choose from 40+ AI models, with 0% extra fees

Others

Find FAQs and help guides

Learn about crypto investing

Grow with the champions

Proof of Reserves

Gate promises 100% proof of reserves

Keep your assets secure

SlowMist Detects 'Mini Shai-Hulud' npm Worm Stealing CI/CD Keys and Crypto Wallet Data

GateNews

Security Incidents

2026-05-12 07:33:43

According to blockchain security firm SlowMist, its threat monitoring system MistEye detected a sophisticated npm worm named ‘Mini Shai-Hulud’ spreading through developer projects including TanStack, UiPath, and DraftLab. The malware uses compromised GitHub credentials to publish packages disguised as legitimate updates, injecting a hidden script called router_init.js that runs silently in CI/CD environments like GitHub Actions. The worm targets CI/CD keys, cloud infrastructure credentials, and cryptocurrency wallet information, exfiltrating data via GitHub infrastructure. SlowMist advised affected projects to immediately scan CI/CD pipelines for router_init.js, rotate all exposed GitHub and cloud credentials, and monitor development environments for suspicious background activity.

Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to Disclaimer.

Related News

Attackers Hijack TanStack, OpenSearch, Mistral Official Pipelines, Push 84 Malicious Versions on May 12

Two Private Key Leaks Expose $238K in 36 Hours, GoPlus Warns

India Issues Trust Wallet Drainer Advisory as New Scam Domain Hits BNB Users on May 3

SlowMist Discovers Malicious Chrome MV3 Extension Targeting TRON Wallet Users on May 11

Microsoft Discovers macOS Phishing Campaign Targeting Exodus, Ledger, and Trezor Wallets Since Late 2025

In-Depth Analysis

Google reveals the first AI-generated zero-day vulnerability: hackers aim to bypass 2FA for large-scale exploitation

ChainNewsAbmedia05-12 04:18

TanStack npm supply chain attacked by Mini Shai-Hulud, version 84 injected with credentials to steal code

Market Whisper05-12 01:39

SlowMist Warns of Fake TronLink Chrome Extension Phishing Attack

Crypto Frontier05-11 18:51

Comment

0/400

FenerliBaba

· 05-12 07:48

2026 GOGOGO 👊

Reply0