News linked to this event type.
According to on-chain analyst PeckShield (@PeckShieldAlert), the address labeled as the UXLINK attacker has swapped approximately 14.6 million DAI for 8,298.6 ETH. Subsequently, this address deposited 8,340 ETH into Tornado Cash and bridged 2.64 ETH (approximately $4,630) from Ethereum to a Bitcoin address.
According to Lookonchain monitoring, over the past 30 minutes, the UXLINK attacker spent 6.5 million DAI to buy 3,686 ETH at an average price of $1,764, and laundered the funds through Tornado Cash.
the U.S. Department of Justice has seized approximately $9 million in funds linked to a scam network, with the seized assets being the stablecoin Tether (USDT). Law enforcement officials stated that the case is related to long-term romance and investment scams commonly known as "pig butchering." The criminal organization gradually gained victims' trust by establishing fake romantic or social relationships, luring them into depositing funds on fraudulent crypto investment platforms before disappearing with the money.Investigations revealed that the network has affected over 70 victims within the United States, with illegally transferred funds totaling millions of dollars. The U.S. Department of Justice stated that this asset freeze and enforcement action aims to cut off the flow of scam funds and strengthen the ability to track and combat cross-border crypto scams. (Bloomberg)
SlowMist announced that over 140 Mastra-related npm packages were compromised via a supply-chain attack. Affected versions introduce the malicious dependency `[email protected]`, which triggers attacker-controlled code execution during installation.
RetoSwap, a Monero ecosystem P2P trading platform, announced that its Haveno trading protocol has been exploited by attackers. The team has urgently suspended trading by raising the minimum required client version to 2.0.0 and blocking the attackers’ Onion addresses. RetoSwap emphasized that its own infrastructure was not compromised; this incident stems from a vulnerability in the Haveno protocol. In May this year, RetoSwap disclosed a prior attack in which attackers exploited a protocol vulnerability to steal approximately 7,000 XMR—valued at roughly $2.7 million at the time.
Humanity has announced the $H incident recovery plan: The legacy version of H on Ethereum, BNB Smart Chain, and Humanity Mainnet has been deprecated. A new Ethereum ERC-20 version of H will be airdropped 1:1 to eligible holders based on a pre-attack snapshot. Attackers and associated addresses have been excluded.
According to an official announcement, Pyra stated that, after evaluating all viable options, the company has decided to wind down its operations. The official statement noted that the Drift vulnerability exploit severely impacted its business and users; although the company had continuously sought ways to remain operational over the past several months, it ultimately failed to identify a sustainable path forward.
Syscoin has released a security incident report detailing the UTXO-to-NEVM bridge vulnerability. According to the report, this incident resulted in the unauthorized release of approximately 5 billion SYS tokens on the UTXO side. The affected funds have since been returned to the official recovery address and permanently destroyed using the standard OP_RETURN mechanism, rendering them unusable by the protocol. As a result, the on-chain SYS supply has reverted to its expected value. The bridge functionality remains suspended while the team completes its final review and remediation efforts.
DeFi structured protocol Thetanuts Finance issued a statement responding to a security incident involving one of its Vaults. According to preliminary findings, the affected Vault was an outdated contract version deprecated and fully migrated years ago, and bears no relation to any currently active contracts or products. Further investigation into the details is ongoing, and a comprehensive post-mortem report will be published once additional information becomes available. Earlier reports indicated that Thetanuts Finance may have suffered a hack, with estimated losses totaling approximately $2.1 million.
法国南锡一名 32 岁男子因参与冒充警察的加密货币抢劫案被起诉,袭击者试图窃取价值 2 万美元的加密资产。
SlowMist released a technical analysis stating that the deprecated Aztec Connect RollupProcessor contract was attacked due to a settlement boundary bypass vulnerability, resulting in approximately $2.19 million worth of assets being stolen from the protocol.
According to PeckShield monitoring, structured products protocol ThetanutsFi has been attacked, resulting in a loss of approximately $2.1 million. Of this, roughly $2 million in option tokens have been recovered by a white hat address. The attacker has exchanged $105,000 USDC for approximately 60 ETH, and still holds USDC option tokens worth around $34,000.
Anthropic will meet with Trump administration officials today regarding the "Mythos" model. (Jin Shi)
the G7 Central Bank Quantum Technology Working Group has released its first public report, warning that quantum computing could have a profound impact on the global financial system, with traditional encryption systems facing significant security challenges. Established in 2025 and led by the central banks of France and Canada, the working group brings together several major global central banks. The report notes that a quantum computer capable of breaking encryption codes will likely emerge within the next decade, and a "harvest now, decrypt later" attack model could threaten the security of existing financial data. The report recommends that financial institutions catalog their encrypted assets, gradually transition to post-quantum cryptography, and enhance multi-party collaboration. At the same time, quantum technology can also empower areas such as risk modeling, asset allocation, and economic forecasting. This report marks the formal inclusion of quantum technology in financial stability considerations by the G7 central banks, potentially driving a long-term upgrade of global financial infrastructure. (Crowdfundinsider)
prediction market platform Kalshi is internally deploying an AI agent system named "Harrison" to optimize its prediction market contract designs and stress-test betting outcomes, aiming to reduce the risk of errors and ambiguities in large-scale trading. According to co-founder Luana Lopes Lara, the AI tool is being used to handle critical internal processes for the platform's millions of daily transactions, focusing on resolving complexities in the wording and rules of event contracts covering areas such as political elections, sports events, and award outcomes.Kalshi stated that "Harrison" is helping the team identify potential vulnerabilities in contract designs in advance, reducing disputes caused by unclear definitions, thereby enhancing market operational stability and execution efficiency. As the scale of prediction market trading expands, this AI system is seen as a significant upgrade to the infrastructure layer, contributing to improved contract standardization and automated governance capabilities. (Bloomberg)
in response to a suspected attack on the Aztec Router contract on the Ethereum chain, Aztec Labs has formally launched an investigation. At the same time, it clarified that Aztec Connect was deprecated three years ago, and that Aztec Labs does not hold any admin keys or control over the system, and cannot currently pause or upgrade it. Therefore, the community is advised to be wary of fake "support" accounts and direct messages.
According to Cointelegraph, cybersecurity leaders led by former Facebook Chief Security Officer Alex Stamos jointly penned a letter urging the Trump administration to lift restrictions on the use of Anthropic’s Mythos model. They argue that these restrictions harm defenders far more than attackers, hindering the overall development of the cybersecurity ecosystem.
According to analysis by BlockSec Phalcon (@Phalcon_xyz), Aztec Network's RollupProcessorV3 contract was attacked, resulting in losses exceeding $2.15 million. The root cause is that `numRealTxs` was not effectively bound to the transaction set enforced by the ZK proof, causing a deviation between the proof verification path and the L1 settlement logic's interpretation of the transaction list.The attacker exploited this vulnerability to move real deposits to slots not processed by the settlement logic, bypassing the `decreasePendingDepositBalance()` function. By creating unbacked private balances out of thin air, they were able to withdraw funds through the normal settlement process. A total of seven assets were involved.
According to monitoring by Odaily Seer Prophecy Channel, in the Polymarket prediction event for "2026 World Cup Group F Round 1: Sweden vs. Tunisia," a smart money address (0x8cb4ca5af7d9361322340bb307a828d288c91057) that has accumulated over $1 million in profit purchased more than $1.1 million on Sweden defeating Tunisia, with an average entry price of 51.7¢ and a position of 2,139,999.7 shares.The match between Sweden and Tunisia began today at 10:00. Sweden holds an advantage in overall strength and attacking power. The first half has concluded with Sweden leading Tunisia 2:1.Odaily Seer Prophecy Channel continues to monitor the prediction market, spotting changes before prices are set.
According to on-chain analyst Yu Jin (@EmberCN), the attacker responsible for the March THE liquidation event on the Venus platform sold 1,912 ETH for $3.26 million one hour ago to repay part of their loan on Aave. That loan was originally taken out by collateralizing ETH and was used to manipulate the Venus liquidations. The attacker’s address still has $6.78 million in USDT outstanding on Aave.