🚀 Resolve Attack: USDC and USR Manipulation Leads to ETH Purchase
#USDC #USR #ETH #wstUSR #USDT #CryptoAttack #TokenManipulation #BlockchainSecurity #CryptoFraud #DeFi
An analyst @ai_9684xtpa posted on X detailing a recent attack involving the manipulation of USDC and USR tokens. The attacker initiated the process by using 100,000 USDC to mint 50 million USR tokens. Subsequently, 35 million USR were converted into wstUSR. The attacker is continuously exchanging wstUSR for USDC and USDT. Additionally, USDT is being used to purchase ETH, with a total of $4.55 million worth of ETH acquired so far. The attacker's address remains active in these transactions.#USDC #USR #ETH #wstUSR #USDT #CryptoAttack #TokenManipulation #BlockchainSecurity #CryptoFraud #DeFi
🚀 Resolv Labs Warns Against Trading USR Stablecoin Amid Security Concerns
#ResolvLabs #USRStablecoin #SecurityConcerns #Stablecoin #CryptoWarning #IllicitMinting #OnChainData #AssetRecovery #CryptoTrading #BlockchainSecurity
Resolv Labs has issued a strong advisory against trading or purchasing the USR stablecoin. According to ChainCatcher, on-chain data reveals that USR coins, illegally minted by attackers, have been mixed with legitimate USR in various wallets and continue to circulate in secondary markets. The company highlighted that these illicitly minted USR coins lack collateral support and redemption rights, making any transactions potentially involve tainted assets, complicating future asset recovery and management.
Resolv Labs stated that they are in the early stages of evaluating compensation plans for affected users and cannot make any guarantees at this time. They warned that ongoing trading activities might further limit potential compensation options. The team is working closely with relevant protocol partners to develop a solution and plans to release more details in the future.#ResolvLabs #USRStablecoin #SecurityConcerns #Stablecoin #CryptoWarning #IllicitMinting #OnChainData #AssetRecovery #CryptoTrading #BlockchainSecurity
🚀 Ripple Proposes Confidential Transfers for XRP Ledger Tokens
#Ripple #XRP #XRPLedger #ConfidentialTransfers #XLS33 #CryptoPrivacy #BlockchainSecurity #TokenPrivacy #CryptoInnovation
Ripple's research team has introduced a proposal for implementing Confidential Transfers for Multi-Purpose Tokens on the XRP Ledger. According to NS3.AI, this initiative aims to enhance the XLS-33 token standard by concealing balances and transfer amounts, while maintaining issuer controls like freezing and clawbacks. This development could potentially increase privacy and security for users on the XRP Ledger.#Ripple #XRP #XRPLedger #ConfidentialTransfers #XLS33 #CryptoPrivacy #BlockchainSecurity #TokenPrivacy #CryptoInnovation
🚀 Steakhouse Financial Warns Users of Phishing Attack on Domain
#DeFi #CyberSecurity #Phishing #Crypto #SteakhouseFinancial #BlockchainSecurity
DeFi project Steakhouse Financial has alerted users to a phishing attack targeting its domain, including its application and website. According to Foresight News, the team has advised users to refrain from interacting with the application until further notice. The incident does not pose any financial risk, as the contracts remain unaffected and all deposited assets are secure. The issue may impact new users interacting with the malicious website, and the team is actively working to restore the front end.#DeFi #CyberSecurity #Phishing #Crypto #SteakhouseFinancial #BlockchainSecurity
🚀 AI TRENDS | Anthropic's Claude Code Source Map Leak Raises Security Concerns
#AI #Anthropic #ClaudeCode #Security #SourceMapLeak #Fuzzland #BlockchainSecurity #TypeScript #npm #GitHub #API #Telemetry #Encryption #InterProcessCommunication #SourceCode
Blockchain security company Fuzzland's intern researcher, Chaofan Shou, highlighted on X that the npm package of Anthropic's AI programming tool, Claude Code, contains a complete source map file (cli.js.map, approximately 60MB), which can be used to reconstruct the entire TypeScript source code. According to Odaily, the latest version v2.1.88, released today, still includes this file, containing the full code of 1,906 proprietary Claude Code source files, covering internal API design, telemetry analysis systems, encryption tools, and inter-process communication protocols.
Source maps are debugging files used in JavaScript development to map compressed code back to the original source code and should not appear in production release packages. In February 2025, an early version of Claude Code was exposed for the same issue, leading Anthropic to remove the old version from npm and delete the source map. However, the problem has resurfaced, with several public repositories on GitHub extracting and organizing the deobfuscated source code, including ghuntley/claude-code-source-code-deobfuscation, which has garnered nearly a thousand stars.
The leak involves the client implementation code of the Claude Code CLI tool and does not include model weights or user data, posing no direct security risk to ordinary users. However, the continued exposure of the complete source code means that internal architecture, security mechanisms, and telemetry logic are entirely transparent to the public.#AI #Anthropic #ClaudeCode #Security #SourceMapLeak #Fuzzland #BlockchainSecurity #TypeScript #npm #GitHub #API #Telemetry #Encryption #InterProcessCommunication #SourceCode
🚀 Drift Protocol Suffers Unauthorized Access in Complex Attack
#DriftProtocol #UnauthorizedAccess #SecurityBreach #ComplexAttack #DurableNonce #TransactionApproval #SocialEngineering #CryptoSecurity #DeFi #BlockchainSecurity #ProtocolFreeze #MultisigUpdate #CryptoTheft #DeFiAttack
Drift Protocol has reported an unauthorized access incident involving a sophisticated attack using a durable nonce, according to ChainCatcher. The attacker gained control over the Drift Security Council's management by exploiting pre-signed transactions with durable nonce accounts to delay execution. The investigation indicates that the incident was not due to vulnerabilities in Drift's program or smart contracts, and there is no evidence of mnemonic phrase theft. The attacker obtained access through unauthorized or forged transaction approvals, potentially involving social engineering.
As a result, approximately $280 million was extracted from the protocol, affecting all lending, vault deposits, and trading funds. However, DSOL assets not deposited in Drift, including those staked to Drift validators, and insurance fund assets remain unaffected and are being protected. As a precautionary measure, all remaining protocol functions have been frozen, and the multisig has been updated to remove compromised wallets.#DriftProtocol #UnauthorizedAccess #SecurityBreach #ComplexAttack #DurableNonce #TransactionApproval #SocialEngineering #CryptoSecurity #DeFi #BlockchainSecurity #ProtocolFreeze #MultisigUpdate #CryptoTheft #DeFiAttack
🚀 Ethereum Hardware Wallet Integration Advances with ZKNox
#Ethereum #HardwareWallet #ZKNox #AccountAbstraction #QuantumResistant #FalconSignature #EVM #BlockchainSecurity #ZeroKnowledgeProof #CryptoInnovation #Layer2 #DigitalIdentity
Nicolas Bacca, founder of the Ethereum Foundation-supported research institution ZKNox and former Ledger co-founder and CTO, discussed advancements in hardware wallet integration with Ethereum at the EthCC[9] conference. According to Foresight News, Bacca highlighted the challenges hardware wallets face in fully supporting advanced features brought by account abstraction due to the Ethereum Virtual Machine's (EVM) lack of native support for certain efficient cryptographic signatures and complex verification logic.
ZKNox has significantly reduced the on-chain verification cost of the quantum-resistant Falcon signature scheme from 24 million Gas to 2 million Gas, enhancing efficiency by approximately 12 times. This improvement brings the transaction cost of post-quantum secure signatures generated by hardware wallets closer to that of regular transactions. Additionally, ZKNox is developing a standardized SDK to enable seamless compatibility of hardware wallets with account abstraction features such as social recovery, multi-signature, and complex permission management. The company is also exploring the generation of zero-knowledge proofs on hardware devices to verify signature legitimacy on-chain without exposing sensitive information.
Bacca stated that ZKNox aims to establish open-source hardware security standards, positioning hardware wallets as universal quantum-resistant digital identity signers across Layer 2 and application scenarios.#Ethereum #HardwareWallet #ZKNox #AccountAbstraction #QuantumResistant #FalconSignature #EVM #BlockchainSecurity #ZeroKnowledgeProof #CryptoInnovation #Layer2 #DigitalIdentity
🚀 Ethereum Foundation Unveils Wallet Security Model at EthCC[9]
#EthereumFoundation #WalletSecurity #TrillionDollarSecurityPlan #1TS #WalletBeat #ClearSigning #SecurityMaturityModel #EthCC9 #CrossChainSecurity #DNSAttacks #EthereumSecurity #BlockchainSecurity #CryptoWallets #EthereumL1 #SecurityIncidents #CryptoLosses
Ethereum Foundation project manager Hester Bruikman presented updates on the 'Trillion Dollar Security Plan (1TS)' at the EthCC[9] conference. According to Foresight News, Bruikman detailed the WalletBeat wallet security maturity model, which evaluates wallets based on user security goals rather than a checklist of features. Wallets are categorized into four stages: Stage 0 lacks security measures; Stage 0.5 covers some features but still poses significant preventable loss risks; Stage 1 protects users from most common vulnerabilities; and Stage 2 safeguards assets in complex scenarios like cross-chain and DNS attacks.
Bruikman emphasized that the current focus of 1TS is on enhancing user experience security, particularly through advancing Clear Signing to eliminate blind signing practices. The WalletBeat grading standard is intended to pressure wallet manufacturers to upgrade their security measures. Additionally, Bruikman revealed that by the end of the first quarter of 2026, Ethereum had experienced 16 major security incidents, resulting in losses of $93 million, with historical cumulative losses exceeding $7 billion for Ethereum L1.#EthereumFoundation #WalletSecurity #TrillionDollarSecurityPlan #1TS #WalletBeat #ClearSigning #SecurityMaturityModel #EthCC9 #CrossChainSecurity #DNSAttacks #EthereumSecurity #BlockchainSecurity #CryptoWallets #EthereumL1 #SecurityIncidents #CryptoLosses
🚀 Launch of Safenet: Enhancing Transaction Security with Real-Time Cryptographic Proofs
#Safenet #TransactionSecurity #CryptographicProofs #DecentralizedProtocol #OnChainVerification #RiskPrevention #RealTimeSecurity #Safe #BlockchainSecurity
Safe has introduced Safenet, a decentralized protocol designed to enhance transaction security by verifying on-chain transactions before they are executed. According to NS3.AI, this system generates cryptographic proofs in real time, allowing it to identify and restrict potentially risky transactions. Users are required to provide explicit approval after a time delay to proceed with such transactions, thereby adding an additional layer of security.#Safenet #TransactionSecurity #CryptographicProofs #DecentralizedProtocol #OnChainVerification #RiskPrevention #RealTimeSecurity #Safe #BlockchainSecurity
🚀 Solana Foundation Chair Addresses Impact of Drift Incident
#Solana #DriftIncident #LilyLiu #BlockchainSecurity #SmartContract #EcosystemImpact #SocialEngineering #OperationalSecurity #SolanaFoundation #CyberSecurity #CryptoNews #TechUpdates #SOL
On April 2, Solana Foundation Chair Lily Liu commented on the significant impact of the Drift incident on the ecosystem. According to BlockBeats, Liu stated that the Drift team is working tirelessly to investigate and manage the situation, with the foundation providing support. She emphasized that the smart contract itself has proven resilient, noting that the real target of the attack was individuals, focusing on social engineering and operational security vulnerabilities rather than exploiting code.
Liu highlighted Solana's history of overcoming challenges through rapid iteration, improved development, mutual support, and enhanced security measures. She urged vigilance, advising users to review their security settings and continue building. Updates will be provided as new developments occur.#Solana #DriftIncident #LilyLiu #BlockchainSecurity #SmartContract #EcosystemImpact #SocialEngineering #OperationalSecurity #SolanaFoundation #CyberSecurity #CryptoNews #TechUpdates #SOL