Security Incidents

The Ministry of State Security has recently warned about various scams that use the slogan “accumulating Tokens can make you rich” and said these activities endanger the country’s economic security. It also urged the public to handle illegal cryptocurrency trading with caution.

Gate News message: On April 7, 360 vulnerability-hunting intelligence agents recently discovered and reported 1 high-risk and 2 medium-risk high-value vulnerabilities targeting OpenClaw. At present, all newly discovered vulnerabilities have been officially fixed and publicly disclosed. The three newly discovered vulnerabilities directly target the core operating mechanism of the AI intelligence agents, directly affecting the core security of users’ devices, data, and accounts.

The Solana Foundation announced a suite of security initiatives on Monday, just five days after decentralized finance (DeFi) platform Drift Protocol suffered a $270 million exploit carried out by a North Korean state-affiliated group following a six-month social engineering campaign. The

The risk management team, Chaos Labs, announced it is terminating its partnership with Aave due to long-term losses and irreconcilable differences in risk management. At this time, Aave V4 has just gone live; after upgrading, Chaos needs to rebuild its risk tools, and the budget requirements are higher than what Aave is willing to accept. In addition, Aave is facing the departure of multiple core team members, raising doubts about operational stability.

NBC anchor Savannah Guthrie returned to The Today Show today, but her 84-year-old mother, Nancy, is still missing in Arizona, with the kidnappers demanding a $6 million Bitcoin ransom. After 65 days of her disappearance, there has been no major progress in the case. Savannah expressed guilt, saying she believes her mother’s kidnapping may be related to her high profile.

Deepfake AI is seriously threatening banks and KYC systems at crypto platforms, as attackers use tools that combine deepfakes and voice cloning to bypass identity verification. Financial experts recommend building a layered defense system to keep up with continuously evolving fraud tactics and protect digital identity security.

Gate News message, April 7, Arkham monitoring shows that the exploiter behind the Drift protocol has just transferred $14.8k worth of SOL to a new wallet.

Drift Protocol was breached by North Korean hackers on April Fool's Day, resulting in the theft of approximately $280 million in assets. The hackers used social engineering and vulnerabilities in development tools, then after a long period of stealth, successfully obtained administrative privileges and executed withdrawals. The incident sparked widespread discussion and legal criticism of DeFi security, with critics arguing that the development team had civil negligence, and calling for stronger security precautions.

Community platform X has introduced a mandatory verification mechanism for cryptocurrency-related content to address increasingly severe scam problems. The mechanism will lock an account the first time it mentions cryptocurrency, requiring users to complete identity verification. According to data, in 2025 cryptocurrency scams are expected to reach $17 billion, and social platforms have become an important source of scams. The new measures aim to reduce the success rate of scams that use highly trusted accounts, but scam activity is still rapidly expanding, and prevention measures face challenges.

Gate News, April 7, Monad co-founder Keone Hon posted a call urging DeFi protocol operators to immediately use dedicated signing computers to perform multisig wallet operations and stop using everyday computers. Keone Hon pointed out that everyday computers are highly susceptible to compromise; once controlled, even if a hardware wallet is connected, the signing process may still be maliciously altered, creating serious security risks. In addition, the Monad Foundation may in the future introduce incentive mechanisms to encourage the team to adopt this security solution.

The Guardian and the Organized Crime and Corruption Reporting Project (OCCRP) released the results of their four-month joint investigation, revealing that in Timor-Leste, one of the world’s poorest countries, a development project billed as the “world’s first cryptocurrency resort” appears to be linked to a scam network operated by Cambodia’s Prince Group, which is subject to U.S. sanctions. This February, the investigative reporters went to the construction site near Dili airport for on-site interviews, only to find an empty lot overgrown with weeds. A gap between promotion and reality: the luxury crypto resort is now just an empty lot AB Digital Technology Resort’s promotional materials tout luxury villas, ocean views, and a “global technology elite exchange hub,” and claim that it will use part of its proceeds for charity. However, when the reporter went to the coastal construction site shown in the promotional photos, they found that there was nothing at all on the fenced-off land—only scattered shrubs. This project is under investigation’s review

HypurrFi announced that its independently developed Hyperliquid client has successfully achieved block-hash consistency, enabling developers to independently verify the on-chain state and improving decentralization. On the same day, it discovered a domain-hijacking incident; although it did not affect users’ funds, it still urged everyone to stop interacting with suspicious domains immediately and to obtain updates through official channels. AI contributed 99.9% to this technical development.

Risk management firm Chaos Labs announced it is ending its three-year partnership with DeFi lending protocol Aave, citing a fundamental disagreement between the two parties on approaches to risk management. This exit has exposed the legal gray area in the DeFi ecosystem where regulatory safeguards are lacking—especially after a recent oracle incident that led to an erroneous liquidation of about $27 million. The separation between Chaos Labs and Aave leaves Aave facing a governance vacuum during a critical period for the V4 upgrade, further fueling concerns about accountability for decentralized risk systems.

The Ministry of State Security issued a notice warning of the risks of “token scams,” stating that hoarding tokens and off-exchange trading may involve illegal financial activities that endanger national security. It emphasizes the need to guard against risks such as data leakage, forgery, and fraud, and reminds the public to view tokens rationally while strengthening awareness of information and privacy security.

Gate News update: On April 7, the crypto wallet app Phantom experienced a temporary service interruption, causing abnormal token prices and balance displays. The Phantom team said it is actively working to fix the issue.

Block CEO Jack Dorsey confirmed that Apple has removed the decentralized communications app Bitchat in accordance with China’s requirements because it violates China’s Cybersecurity Law. Bitchat uses Bluetooth and a mesh network for communication and does not rely on the internet, which is why it has been widely used in protests. The app can still be used in other countries, and the global download count has exceeded 3 million.

Resolv Labs destroyed 36.73 million USR tokens held by the hacker via a contract upgrade. Previously, the hacker had minted 80 million USR tokens through a vulnerability and sold them off. The project team has since burned about 46 million USR tokens, and the actual loss was $34 million.

A six-month intelligence operation preceded the $270 million exploit of Drift Protocol and was carried out by a North Korean state-affiliated group, according to a detailed incident update published by the team earlier on Sunday. The attackers first made contact around fall 2025 at a major crypto c

BTQ Technologies publishes a research paper assessing the physical costs of quantum computing in Bitcoin mining, emphasizing that Bitcoin’s main risk comes from vulnerabilities in cryptographic signatures rather than quantum mining. The study proposes an open-source resource estimation model that covers key computational steps.

A decentralized perpetual contract trading platform Denaria announced that its smart contract was attacked, resulting in a loss of about $165k. The team is investigating with the auditors and has suspended the user interface while preparing a refund process. Denaria hopes to avoid legal action by inviting the attacker to contact them through a bounty program.