security

The Chief Information Security Officer of Slow Fog, 23pds, posted on the X platform that curl recently fixed 18 security vulnerabilities, involving issues such as authentication bypass, memory safety, and host verification, among which one libcurl vulnerability has existed for about 25 years. The risks are not limited to the curl command line but also widely affect applications, SDKs, containers, firmware, gateways, and CI/CD environments that rely on libcurl. It is recommended to upgrade curl/libcurl as soon as possible and check for the use of old versions of libcurl, especially paying attention to mTLS, proxy authentication, and connection reuse scenarios.

Etherlink posted on platform X that the Etherlink EVM Bridge has become a target of a security attack. As a precaution, all transfers have been suspended to protect user funds while the issue is being investigated. No funds have been lost.The team is working closely with LayerZero, Asymmetric Research, and Zeeve to investigate the issue and ensure that the attack attempts are fully mitigated. A timeline for restoring services has not yet been determined.

Fidelity Digital Assets recently released a research report that positively addresses concerns about the long-term impact of Bitcoin halving on network security. The report's author, Fidelity research analyst Daniel Gray, pointed out that Bitcoin network security relies not only on block rewards but also on transaction fees, market incentives, and other economic forces that continuously motivate miners to maintain network security, making the cost of sustained attacks prohibitively high.On the data front, Gray noted that despite the ongoing reduction in block subsidies, the rise in Bitcoin prices has significantly offset this impact. The average daily income of miners has increased from about $26,300 during the first halving cycle to over $40,200 today. He wrote, "Despite the decrease in issuance, miner incentives and the resulting network security have historically strengthened alongside the rise in Bitcoin prices."Since the fourth halving in April 2024, the block subsidy for miners has decreased from 6.25 to 3.125 Bitcoins per block. However, the optimistic conclusions of the report starkly contrast with the current realities faced by publicly traded mining companies. Several industry analysts describe the current environment as one of the most challenging for mining on record, due to the simultaneous decline in block rewards, rising operational costs, and increased competition.In response, several mining companies have begun to transition to the AI and high-performance computing sectors, leveraging existing power infrastructure to meet AI computing demands. VanEck estimates that publicly listed mining companies may need to raise up to $50 billion in additional funds to fully transition to AI infrastructure, but the requirements for AI data centers regarding facility standards, cooling, power redundancy, and networking are far higher than those of traditional Bitcoin mining operations, making the transition challenges significant.

The Ethereum Layer2 project Taiko has released the latest developments on the security incident, stating that this incident will not result in any loss of user funds. Currently, the bridged assets are in a state of insufficient collateral, and all additional collateral will be completed before the bridge reopens, ensuring that each user's balance receives 1:1 support, consistent with the situation before the incident occurred.Since the occurrence of this security incident, cautious measures have been taken, including controlling the scope of impact, determining the cause of the incident, and collaborating with the board to develop a plan to protect user assets. In addition, the CEO of Taiko has submitted a formal report to the relevant authorities in Singapore, and the team will fully cooperate in tracing the responsible parties. Users currently do not need to take any action; at this stage, the completed repair plan is being tested, and the chain and bridging services will be reopened as soon as safety is ensured. Users are also reminded to be vigilant against scams; the Taiko team will not proactively message users, and there are no websites for claiming or refunds. Any links provided for such purposes are scams.

The password management tool LastPass announced that its third-party market intelligence platform Klue experienced a security incident, where hackers stole multiple OAuth tokens held by Klue for various clients (including LastPass) and used these tokens to access LastPass's Salesforce CRM system, potentially leading to the leakage of business contact information and CRM data, including some customers' names, phone numbers, email addresses, home addresses, and support cases.The official reminder: LastPass's products, services, infrastructure, and customer vaults have not been affected, and Gong system data has not been accessed. LastPass has immediately taken measures, including stopping employee access to Klue, rotating exposed API tokens, conducting a detailed investigation, and collaborating with Klue, Salesforce, and law enforcement, while also sharing threat intelligence with the security community through the TIME team and strengthening future protections. Users should remain vigilant against potential phishing emails, calls, or social engineering attacks that may exploit the leaked information, and remember that LastPass will never ask for the master password; all official communications are sent through trusted channels.

According to the Associated Press, Anthropic's Mythos model has discovered vulnerabilities in the U.S. government's classified systems.

On Monday, U.S. President Trump signed two executive orders aimed at accelerating the development of U.S. quantum computing capabilities and advancing the government's transition to post-quantum cryptography. Although the executive orders did not directly mention Bitcoin, industry insiders believe this could benefit the blockchain's post-quantum security research and development.The two executive orders focus on defending against advanced cryptographic attacks and promoting cutting-edge quantum innovation. They include a clear timeline: to advance the construction of quantum sensors by September 2028 and require federal high-value assets and high-impact systems to complete the transition to post-quantum cryptography by the end of 2031. Project Eleven CEO Alex Pruden stated that this means the U.S. government will invest time and resources to achieve post-quantum security goals and may extend related requirements to the entire federal contractor system, not just limited to government agencies, thereby accelerating the implementation of post-quantum cryptographic technology.At the time of this policy announcement, the blockchain industry’s concern about quantum threats continues to rise. Organizations like the Ethereum Foundation and the Solana Foundation have begun advancing post-quantum security research and development, while the Bitcoin community is also discussing potential risks. Some publicly exposed Bitcoin addresses are believed to face the risk of private keys being derived once powerful quantum computers emerge in the future. Pruden pointed out that this executive order clearly sets the deadline for adopting post-quantum cryptography as 2031, which is more binding than the previous guidance from the U.S. government that proposed phasing out traditional cryptographic systems by 2035. For Bitcoin and the broader cryptocurrency industry, government investment in post-quantum security may accelerate the maturity of related tools, standards, and migration paths.

SecondFi posted on platform X that the team discovered security issues with a small number of Cardano wallets on the platform. The issue has been contained and affected features have been suspended, while the engineering team is actively working to restore all platform functionalities. To protect users, SecondFi has temporarily entered maintenance mode, and all front-end interactions have been suspended.

Taiko officially stated on X: "We have identified the root cause of this attack and are currently developing a fix to restore the blockchain's online operation as soon as possible. At the same time, we are working closely with major exchanges and security partners to track and freeze the hacker's assets. The remaining funds in the cross-chain bridge are currently safe, and we will announce the next steps in our upcoming updates. To focus on fixing the vulnerabilities and protecting user assets, we will pause updates for a few hours."Previously, it was reported that the Taiko cross-chain bridge was attacked, with losses potentially reaching up to $1.7 million.

OpenAI announced a comprehensive expansion of its cybersecurity program Daybreak, aimed at leveraging artificial intelligence to accelerate the discovery and automatic remediation of software vulnerabilities. The core of this expansion is the full version dedicated model GPT-5.5-Cyber launched for trusted defenders. It is reported that this model has set the highest score records in multiple cybersecurity benchmark tests, surpassing GPT-5.5's 81.8% and competitor Mythos 5's 83.8%, significantly improving the accuracy of vulnerability scanning and patch generation. At the same time, the synchronously updated Codex Security plugin has been deeply integrated into the developer workflow, supporting fully automated codebase scanning, threat modeling, and patch generation.In terms of ecosystem development, OpenAI has launched an exclusive partner program, allowing compliant security service providers to integrate GPT-5.5 with specific permissions into their commercial products; and has initiated the "Patch the Planet" program in collaboration with organizations like Trail of Bits to assist over 30 foundational open-source projects such as Python and Go in implementing vulnerability fixes. In addition, OpenAI revealed that it is currently engaged in deep cooperation with governments and institutions from multiple countries, including the United States, the United Kingdom, France, and Japan, to jointly enhance the cybersecurity capabilities of global critical infrastructure.

According to Jinshi, IBM's stock rose 2% after hours, after the company announced a collaboration with OpenAI to launch artificial intelligence products related to enterprise network security defense.

According to Jinshi News, Nvidia has released "Halos for Robotics," which is the industry's first full-stack safety system for physical artificial intelligence.

Taiko released a security incident update on platform X, stating that the incident has been brought under control, the cross-chain bridge and vault have been suspended, and funds can no longer be withdrawn. The cross-chain bridge is offline in both directions, and pending transactions are in a suspended state rather than lost. More information will be announced soon.

Blockchain security company Blockaid stated that its detection system found signs of a front-end attack on the Gitcoin subdomain files[.]gitcoin[.]co, with suspected malicious code named "Eleven drainer" included in the website, used for wallet asset theft. Blockaid warns users not to interact with the website at this time, and the related issues are under investigation and repair.

The cross-chain protocol Axelar Network released a statement regarding the recent security incident related to Secret Network, stating that there is a misunderstanding within the community about the event. Both Axelar and the Inter-Blockchain Communication Protocol (IBC) were not attacked or compromised. The affected token smart contracts were neither developed, deployed, nor maintained by Axelar, and Axelar's firewall mechanism also prevented the impact from spreading to other chains.It is reported that the exploited contract is a forked version based on CW20-ICS20, but the developers removed two core security checks, resulting in an "infinite minting" vulnerability. By deleting the verification mechanisms originally used to prevent such issues, this fork altered the original trust model of the contract and did not undergo a new security audit.Axelar Network explained that anyone can deploy contracts for cross-chain asset wrapping through IBC, and similar contracts have also been used to wrap tokens from other chains into Secret Network. However, the Secret side fork version in this incident has vulnerabilities due to the removal of key security checks. This incident is not a unique logical flaw, nor is it an issue with the IBC protocol itself, but rather a security risk introduced by modifications to third-party contracts.

The Zodiac team released a security incident analysis report regarding the impact on the Zodiac Roles Modifier, disclosing that the root cause of the vulnerability lies in a flaw in the ERC-1271 transaction signature verification logic: the system only determines the validity of the signature based on the returned "magic value" without verifying whether the call itself was successful, which may disguise a failed verification as a valid signature, bypassing the module authentication mechanism.

The Algorand Foundation officially released a roadmap for quantum resistance upgrades, planning to launch a series of protocol transformations in 2026, and achieve overall "quantum security" capabilities for the network by the end of 2027 to 2028, in response to the potential threats posed by future quantum computing to existing cryptographic systems.The roadmap indicates that the first phase will introduce post-quantum account systems, multi-signature wallets, and staking support, followed by a gradual upgrade of core protocol components to achieve a comprehensive encryption migration from the wallet layer to the infrastructure. It is reported that several public chain ecosystems, including the Ethereum Foundation and Solana, have also initiated similar research and migration plans for quantum-resistant cryptography.