eden

According to on-chain data monitored by Catcher Predict, significant capital movements are predicted in the market Polymarket. A large whale invested $112,000 in "Japan" during the "Japan vs. Sweden" event. Based on the current transaction price, the latest corresponding winning probability for this target is 56%.

According to on-chain data monitored by Catcher Predict, significant capital movements are predicted in the Polymarket market. A large whale invested $372,324.64 in the "Netherlands vs. Sweden" event, specifically targeting "Netherlands." Based on the current transaction price, the latest corresponding winning probability for this target is 57%.

According to on-chain data monitored by Catcher Predict, significant capital movements are predicted in the Polymarket market. A large whale invested $51,000 in "Sweden" during the "Sweden vs. Tunisia" event. Based on the current transaction price, the latest corresponding winning probability for this target is 51%.

According to Slow Fog's disclosure, a new variant of Shai-Hulud Hades has been found attacking PyPI. The malicious package drops a .pth file that executes automatically when Python starts, and checks if Bun is installed locally; if not installed, it downloads the official Bun binary from GitHub Releases, and then executes a multi-layer obfuscated JavaScript payload to steal credentials from GitHub, npm, AWS, and cloud services.Slow Fog stated that this variant uses the same RSA public key and infrastructure as previous Shai-Hulud attacks, and has capabilities such as encrypted exfiltration, persistence, CI/CD injection, and GitHub Actions injection.

According to a report by Fortune, David Trainer, CEO of research firm New Constructs, analyzed that to support a valuation of approximately $1.75 trillion, SpaceX needs to increase its annual revenue to about $1.1 trillion by 2035, which is nearly a 60-fold increase from $18.7 billion in 2025, equivalent to maintaining an average annual revenue growth rate of about 50% over the next decade.According to the prospectus previously submitted by SpaceX, the company's revenue in 2025 is projected to be $18.7 billion, with a net loss of $4.9 billion. Trainer calculated based on a discounted cash flow model that if investors want to achieve an annualized return of about 10% over the next decade, SpaceX must achieve the aforementioned growth targets.Analysis indicates that if it reaches a revenue scale of $1.1 trillion, SpaceX's revenue would account for about 2.4% of the U.S. GDP in 2035, with an economic scale exceeding the entire U.S. utility industry and approaching three-quarters of the U.S. transportation industry.Trainer stated that although the artificial intelligence market has vast potential, many competitors, including Alphabet, Microsoft, NVIDIA, and OpenAI, are competing for market share, and SpaceX lacks historical precedent to achieve such a scale of growth. He believes that SpaceX could not only become the largest IPO in history but also the most expensive in terms of valuation.

Bitcoin Treasury Capital announced the launch of Sweden's first BTC-backed preferred stock, BTC PREF, with an annual dividend of 10%, expected to start trading on July 20 on the Spotlight Stock Market.This issuance is expected to raise $2.5 million to purchase more BTC.

SlowMist has issued a security alert, detecting an active npm supply chain attack targeting @redhat-cloud-services related packages. Currently, over 31 packages have been confirmed affected, with a weekly download volume of approximately 116,000 times, and stolen credentials exist in more than 300 GitHub repositories. This attack method is highly similar to the previous "Shai-Hulud" npm attack, including credential theft, creation of malicious repositories, and automated secret leakage. New suspicious repositories continue to emerge, indicating that the attack is still ongoing, and developers are still being continuously infected.Potential harms include: theft of GitHub/npm tokens, leakage of AWS/GCP/Azure cloud credentials, collection of SSH keys and Kubernetes secrets, leakage of local environment and wallet data, creation of malicious repositories and persistence operations, and even potentially destructive actions after tokens are revoked. It is recommended to immediately remove or downgrade affected @redhat-cloud-services package versions, conduct a comprehensive audit of CI/CD workflows and dependency installations, rotate all GitHub, npm, cloud service, SSH, and wallet-related keys, retain logs, and rebuild exposed developer machines or Runners from clean images while maintaining a high level of vigilance.

AI predicts the market project NeoSoul collaborates with 0G to launch the prediction credentials on-chain identity credential campaign, with the first batch of credentials opening for minting on May 27. This campaign is aimed at NeoSoul and 0G ecosystem users, focusing on early identity verification, community participation, and on-chain interactions within 0G. Eligible users can obtain credentials minted through the 0G network as their early on-chain identity credentials.According to reports, NeoSoul has previously been conducting on-chain activities within the 0G ecosystem and has created over 100,000 Agents in total. This credentials campaign will set different levels of identity, and users can unlock corresponding credentials based on their task completion status. Specific rules can be found on the official website.It is reported that credential holders will have the opportunity to receive more ecosystem rewards and qualifications for future activities.

The Chief Information Security Officer of Slow Fog, 23pds, disclosed on platform X that node-ipc has been compromised again. The released three malicious versions of node-ipc (9.1.6, 9.2.3, 12.1) carry the same credential-stealing payload, with the package being downloaded over 10 million times per week.

According to CoinDesk, Bitcoin treasury company Strive announced that its perpetual preferred stock SATA will pay cash dividends on each trading day starting from June 16, becoming the first listed security in the history of the U.S. capital markets to achieve daily dividend payments.Strive CEO Matthew Cole described this move as "an innovation from zero to one." The annualized dividend yield of SATA is 13%, and after converting to daily payments, the effective annualized yield increases to approximately 13.88%. Currently, Strive has zero debt and holds 15,009 bitcoins, ranking ninth in global listed companies' bitcoin reserves.

According to analyst Alicharts, the estimated leverage ratio of Bitcoin on major futures exchanges has risen to about 0.26, the highest level in nearly a year, surpassing the peak in October 2025, reflecting a significant increase in traders' risk appetite.Alicharts stated that this data indicates investors are using leverage extensively and are optimistic about the continuation of Bitcoin's upward trend, showing the market's optimistic expectations for the next wave of market movements.

According to Bloomberg, Dutch market maker Optiver Holding BV has made an equity investment in the venture capital firm Eden Block, which focuses on cryptocurrency and artificial intelligence.Michael Lepa, Head of Technology Ecosystem and Innovation at Optiver, stated that this investment aims to gain exposure to early-stage AI and digital asset companies, believing that both technologies are expected to reshape the underlying infrastructure of trading and capital markets.

Orca posted on the X platform that its frontend is hosted on the cloud hosting platform Vercel. In response to the Vercel security incident, all potentially leaked keys and deployment credentials have been rotated out of caution. Orca's on-chain protocol and user funds were not affected. The official team will continue to monitor the situation and will provide updates as more information becomes available.

According to official news, OpenEden announced a partnership with BNY Investments, a subsidiary of Bank of New York Mellon, to launch the tokenized product HYBOND, which will put its global short-term high-yield bond fund on the blockchain.This product will initially be open to select institutional clients and is planned to be fully available to institutional investors by the end of April 2026. It is currently deployed on the Ethereum network and will later expand to multi-chain ecosystems such as XRP Ledger and BNB Chain.

The NFT market Magic Eden announced that its native wallet will enter export-only mode on April 1 and will completely cease operations on May 1. Users must export their private keys or mnemonic phrases before this date, or they will not be able to recover their assets. The wallet has been removed from major app stores, and new wallets cannot be downloaded or restored.Magic Eden had previously closed its Ethereum and Bitcoin markets, shifting its business focus to entertainment and the Dicey app. The ME token will still serve as the core of ecological incentives, with stakers able to earn USDC rewards, and the project team has established a ME buyback plan.

The RWA tokenization platform OpenEden announced on platform X that all team and advisor tokens will continue to be locked for 9 months, and the overall unlocking period will also be extended by the same duration. Therefore, the unlocking period for all team and advisor tokens will be postponed to January 2027.

According to Slow Fog monitoring, the Apifox desktop client has encountered a supply chain attack, with front-end script files hosted on its official CDN being injected with highly obfuscated malicious JavaScript code.Affected users may face risks such as credential theft, sensitive data leakage, and remote command execution, with the malicious code executing automatically and being highly concealed. Slow Fog recommends that users immediately revoke all Tokens, reset passwords, log out and log back in to invalidate sessions, block the *.apifox.it.com domain, clear local storage, and review API logs and abnormal activities.

The Chief Information Security Officer of Slow Fog, 23pds (Shan Ge), posted on the X platform stating that there are reports that the LiteLLM vulnerability attackers have stolen approximately 300GB of data and compromised about 500,000 credentials. He advises all cryptocurrency developers to immediately verify and quickly rotate relevant keys and credentials, check logs, access records, and the exposure of sensitive data to avoid losses similar to the Trust Wallet incident.Previously, it was reported that LiteLLM, which has a monthly download volume of 97 million, suffered a supply chain attack, allowing the simple installation to steal all sensitive credentials, including SSH keys.

Andrej Karpathy posted on the X platform that litellm has encountered a PyPI supply chain attack, where executing pip install litellm can steal SSH keys, AWS/GCP/Azure credentials, Kubernetes configurations, git credentials, environment variables, encrypted wallets, SSL private keys, CI/CD keys, and database passwords.litellm has a monthly download volume of 97 million, and the risk can spread to all projects that depend on litellm, such as dspy. The version with the malicious code was online for less than about 1 hour, and it was discovered due to a flaw in the attack code that caused Callum McMahon's machine to run out of memory and crash. Andrej Karpathy stated that supply chain attacks are the most threatening issue in modern software, as each installation of dependencies can introduce tampered packages deep within the dependency tree, leading him to increasingly prefer reducing dependencies and using LLM to directly implement simple functions.

The multi-chain trading platform Magic Eden announced that it will increase the core revenue ratio used for ME token buybacks and staker dividends from the previous 15% to 30% in the third quarter.