sati

According to a notice from Transit Finance, a security incident recently occurred in the project due to historical vulnerabilities in an old version of the smart contract deployed on TRON, which was deprecated in 2022, affecting a small number of users after being exploited.The team stated that after discovering the issue, they urgently completed investigation, isolation, and repair, and on May 12, further auditing and rectification were carried out. The currently used contract version has not been affected, has been running safely for over four years, and continues to undergo security audits and monitoring.Transit stated that affected users will receive full compensation, and specific plans will be announced through official channels. They also reminded users to be wary of counterfeit official messages and not to disclose private keys or mnemonic phrases.

CoW DAO announced that its domain registrar was subjected to a social engineering attack on April 14, during which the attacker briefly controlled the official domain for about 4.5 hours and directed users to a phishing website, thereby inducing them to sign malicious transactions. The project team emphasized that the CoW Protocol itself was not compromised, but some user assets were affected during that time window.In response to this incident, the CoW DAO community governance proposal CIP-86 has been approved, establishing a discretionary compensation fund to reimburse affected users for their losses. The official reminder states that eligible users must submit their claims by May 14, including affected wallet addresses, asset information, transaction hashes, and names, and apply via email at help@cow.fi, with the email subject clearly stating "Discretionary Grant Claim for".

The AI infrastructure platform B.AI has released a history of Credits consumption record optimization and compensation explanation. With the continuous upgrade of the Credits billing system and display dimensions, the platform has recently conducted a comprehensive review of historical consumption records. During this process, it was found that for certain requests made between May 1, 2026, 00:00 and May 3, 2026, 03:00 (SGT), the consumption details displayed on the front end did not fully present all cost components. This was mainly due to the underlying cache-related fees not being displayed on the page, causing users to typically only see input/output token consumption, leading to a misunderstanding of the overall Credits consumption.To address the above issues, the platform has now completed data corrections and realigned with historical records. Additionally, based on more cautious and user-friendly rules, Credits compensation will be automatically issued to affected accounts (valid for 30 days from the date of receipt) without any action required from users. Please pay attention to account balance updates. In the future, B.AI will continue to upgrade the Credits display system to further enhance long-term transparency and user experience.

Syndicate stated on platform X that regarding the latest developments of the Syndicate bridge security incident, all affected SYND holders on the Commons Chain have received full compensation, along with an additional 15% of the total losses as compensation.The relevant amounts have been directly sent to the affected users' Base chain wallets, with the Gas fees covered by Syndicate Labs. The total compensation amounts to 12.901 million SYND, and no action is required through any claim page.

Wasabi Protocol released a security incident update, stating that attackers exploited a configuration vulnerability in the Spring Boot Actuator within its AWS infrastructure to steal the private keys controlling EVM smart contracts, resulting in the theft of approximately $4.8 million in user funds and $900,000 in protocol treasury funds, with total losses amounting to about $5.7 million.The attack chain began with a public server used for analysis, whose Actuator heap dump was not properly password protected, allowing attackers to obtain credentials for another server and ultimately gain control of the smart contract private keys. This incident only affected EVM deployments, including certain treasuries on Ethereum, Base, Blast, and Berachain, while Solana deployments and Prop AMM were not affected.There has not yet been a final update on the user compensation plan, but "ensuring all affected users are compensated" remains the team's top priority, and updates on the investigation progress will be released in the Discord community in the future.

Kelp DAO announced that it will migrate its re-staked token rsETH to Chainlink CCIP, stating that this move is to enhance security.Previously, the cross-chain bridge built by Kelp DAO based on LayerZero was attacked on April 18, resulting in hackers stealing approximately 116,500 rsETH, involving an amount of about $292 million, and using the related assets as collateral to borrow WETH on Aave v3. Regarding the cause of the vulnerability, LayerZero previously stated that the issue stemmed from Kelp DAO using a single DVN verification path configuration instead of multiple independent verifications. Kelp DAO responded that this configuration was the default setting and that LayerZero had confirmed its security without indicating any related risks. LayerZero CEO Bryan Pellegrino subsequently denied this claim, stating that Kelp DAO had actively modified the default multi-DVN configuration. Both parties are currently still in ongoing disputes over the attribution of responsibility.

According to Cointelegraph, the U.S. law firm Gerstein Harrow LLP has applied to the court for an injunction to prevent Arbitrum DAO from transferring frozen Ethereum assets related to the Kelp attack.The law firm claims that its clients have obtained default judgments in three cases against North Korea, totaling approximately $877 million (including punitive damages and interest), and assert a right to claim the related assets.Previously, Kelp DAO was attacked on April 18, resulting in losses of about $292 million, which is believed to be related to the North Korean hacker group Lazarus Group. Subsequently, the Arbitrum security committee urgently froze approximately 30,766 Ether (about $73 million).The incident has sparked controversy. Some community members believe that if the injunction takes effect, it will delay the return of funds to the victimized users and shift the North Korean-related debts onto secondary victims. Previously, Aave Labs had proposed to unfreeze the funds and inject them into a compensation fund to restore the damaged assets.It is worth noting that Gerstein Harrow has previously filed claims regarding assets stolen by North Korean-related hackers and frozen by cryptocurrency platforms, including the 2023 Heco Bridge incident. Industry analysts believe that this case may have a demonstrative impact on the disposal of DAO assets and the definition of cross-jurisdictional claims.

According to official news, a recent agreement was attacked due to a lack of verification mechanisms, resulting in approximately 11 BTC being stolen, mainly involving altcoin trading. The attackers exploited a negative miner fee vulnerability to transfer funds to their own accounts through multi-signature transactions.Currently, Bisq is discussing compensation plans, and victims can choose compensation in Bitcoin or BSQ tokens, but it must be implemented after a DAO vote, which is expected to be determined after the DAO cycle ends on May 25.Bisq stated that the vulnerability has been fixed and plans to release a patch update while strengthening the security review of the codebase, focusing on preventing vulnerabilities that may affect wallets. In addition, Bisq reminds users to temporarily reduce the amount of BTC stored in their wallets. The officials believe that although this incident is serious, it is controllable, and they hope to provide a security warning for other projects.

According to Cointelegraph, Nominis analysis indicates that some of the "Iran-related" crypto wallets recently seized and frozen by the U.S. OFAC may not exhibit on-chain behavior characteristics consistent with the past operational patterns of the Islamic Revolutionary Guard Corps (IRGC), suggesting the involvement of other state-level actors.Previously, the U.S. Treasury stated that over $340 million, totaling nearly $500 million in Iran-related crypto assets, had been frozen in the "Operation Economic Fury." Nominis CEO Snir Levi noted that historically, IRGC-related wallets typically spread funds across multiple addresses, maintain low balances in single wallets, avoid long-term holdings, and employ complex operations to reduce the risk of being frozen; however, the wallets that were seized this time show significant differences in their funding structure and behavior patterns.He believes this raises a critical question: how much of the frozen $340 million in assets is directly controlled by the IRGC, and how much involves broader infrastructures that may even overlap with financial networks of other countries.Levi also pointed out that organizations, including the IRGC and potential state-level actors from China, are continuously upgrading their use of blockchain infrastructure, and traditional static risk control labels are no longer sufficient; behavioral analysis and address clustering are becoming increasingly critical.

According to official news, Syndicate Labs disclosed that its cross-chain bridge contract was maliciously upgraded on two chains due to a private key leak. The attacker transferred and sold approximately 18.5 million SYND (about $330,000) and around $50,000 worth of user tokens. The incident only affected specific chains, while others were not impacted.Syndicate Labs stated that this attack involved multi-stage reconnaissance, infrastructure mapping, and careful execution, demonstrating a high level of technical complexity, and ruled out the involvement of internal personnel. The root cause was that the private key was stored in a password management tool without an additional layer of encryption, and the upgrade process did not utilize multi-signature or hardware signature mechanisms, nor did it have early warning and circuit breaker measures for contract upgrades.Syndicate Labs announced that it will fully compensate all affected users, including returning 18.5 million SYND and providing additional compensation, while also fully compensating affected application chain clients. The company has initiated security upgrade measures, including strengthening private key encryption, tightening access permissions, and plans to introduce hardware or multi-signature mechanisms and upgrade path monitoring to prevent similar incidents from occurring again.

The Sui liquid staking protocol Aftermath Finance's social media stated that it expects users to receive full compensation within the next 48 to 72 hours.Previously, it was reported that the Sui Foundation and Mysten Labs will ensure the Aftermath protocol continues to operate and recover user funds.

At the "Crypto 2026: From Cryptocurrency to Smart Economy" themed forum held in Hong Kong, guests including KiteAI's Asia Pacific head Laughing, Sentient's Asia Pacific head Anita, Brevis content director Nic Tang, Mentis product head Jerry, and Predict.fun's Asia Pacific BD head Ah Huang Ricardo engaged in a roundtable discussion on the theme "AI × Crypto --- The Foundation of the Next Generation Digital Economy."Regarding whether the outbreak of open-source AI Agents (such as "raising lobsters") is a short-term sentiment or a long-term trend, Laughing believes this marks a paradigm shift of AI from "conversational" to "executive," signaling the beginning of a long-term trend. However, Agents lack a physical identity, making it difficult for merchants to trust their trading behavior, and issues of data leakage and uncontrollability remain obstacles that must be overcome for scaling. Jerry pointed out, based on his own usage experience, that current Agents face security risks such as memory fuzziness, token consumption in dead loops, and accidental file deletion. Although newly emerged Agents have improvements, they still have shortcomings. Ah Huang Ricardo stated that behind the short-term sentiment is real user demand, but truly reproducible profitable trading Agents are still very rare, and there is a long way to go.Addressing core bottlenecks such as trust, security, and verifiability, Nic Tang emphasized that the current execution process of Agents is like a black box, where users cannot verify whether their decisions are executed as promised. Zero-knowledge proof technology can mathematically prove the source of an Agent's output and compliance with behavior, while not exposing privacy. Anita added that Sentient is committed to building an open and collaborative AI agent network, promoting the deep integration of AI and blockchain in identity, data, and incentive layers, providing foundational support for the next generation digital economy.Regarding the application scenarios that are likely to scale first, the guests generally believe that the programming field is relatively mature, and Agents in prediction markets perform better than humans in specific tracks due to their rationality and lack of emotions. In the short term, they are optimistic about API Marketplace and cross-platform consumer shopping Agents, while in the medium term, they are optimistic about content creation AI (such as AI influencers). Agent-to-Agent interaction and the Agent/Skill Marketplace are seen as important future trends.

The head of the Spark Protocol strategy, monetsupply.eth, posted on platform X stating that in January of this year, low-usage assets like rsETH were removed and collateral and functionality were continuously tightened. This move sparked strong dissatisfaction among "ETH leveraged" users at the time.Additionally, Spark has long set a high upper limit on interest rates in the ETH lending market, transferring some business and revenue to Aave over the past year (where its ETH borrowing rate once dropped to 10% or below). However, in the current market crisis environment, this strategy has proven to be more prudent. Currently, SparkLend still maintains sufficient ETH withdrawal liquidity, while Aave has experienced liquidity tightness and even "lock-up" situations in the Ethereum mainnet and multi-chain markets like Arbitrum and Base.monetsupply.eth further warned that since ETH is the core collateral asset, when market utilization reaches 100%, collateral liquidation will not be able to execute normally. The depletion of liquidity not only affects the depositor experience but may also pose systemic risks. In the current situation of insufficient liquidity in Aave, a 15%-20% drop in ETH prices could lead to significant bad debt accumulation (in addition to the potential impact of the rsETH incident).

According to official news, the NFT public chain Mint Blockchain announced that the blockchain network officially ceased operations on April 17, 2026. To ensure the safety of user assets, the project team reminds all users to transfer their on-chain assets to the Ethereum mainnet as soon as possible, including assets such as ETH, WBTC, USDC, and USDT.The announcement states that users need to complete the asset migration through the extraction channel provided by the official team, with a deadline of October 20, 2026. Before this deadline, users can still perform asset extraction operations normally to ensure the safe transfer of funds to external networks. If users do not complete the extraction before the deadline, the related assets will no longer be processed or recoverable.

The U.S. Department of Justice has announced that it has initiated a compensation program for victims of the OneCoin cryptocurrency fraud case, with over $40 million in forfeited assets available for payout.The program is aimed at investors who purchased OneCoin and incurred net losses between 2014 and 2019. U.S. prosecutors stated that this move is intended to return some of the illicit proceeds to the victims. OneCoin was initiated by Ruja Ignatova and Karl Greenwood, with the related fraud exceeding $4 billion. Ignatova has been missing since 2017, and Greenwood was sentenced to 20 years in prison in 2023.

Justin Sun previously posted accusations that the WLFI token contract has a "backdoor" and can arbitrarily freeze user assets. The WLFI official responded by denying these claims and stated that they would take legal action.The WLFI official stated that Justin Sun is using the image of a "victim" to smear and make false accusations, and such public accusations are not the first occurrence. WLFI has gathered relevant contracts and evidence and claims it will meet Justin Sun in court.

According to official news, the decentralized GPU cloud computing infrastructure platform Aethir confirmed that its Ethereum-related bridging contract was attacked. The team promptly disconnected the affected contract and worked with major exchanges to blacklist the hacker's wallet, limiting the losses to under $90,000.Previously, blockchain security company PeckShield estimated the losses to be $400,000. The attacker exploited Aethir's cross-chain smart contract AethirOFTAdapter to transfer the stolen funds from the BNB Chain to Tron.Aethir stated that its Ethereum mainnet ATH token supply was unaffected and plans to announce a detailed compensation plan and incident analysis next week, collaborating with exchanges such as Binance, Upbit, and Bithumb to freeze funds. The Web3 security platform ZeroShadow is participating in the investigation. Aethir aims to achieve revenue of $127.8 million by 2025, with over 440,000 GPU containers deployed globally.