News

Humanity Protocol suffered a $36 million bridge attack after multisig keys were reportedly backed up to a compromised laptop during setup, according to co-founder Terence Kwok. The breach exposed a critical operational security failure in the project's key management process. No recovery details or remediation timeline were disclosed in the report.

Humanity Protocol suffered a $36 million exploit linked to a compromised laptop that hosted a multisig wallet, according to CoinDesk. The breach exposed a critical security vulnerability in the project's key management infrastructure. No details on fund recovery or suspect identification were provided in the report.

The Humanity Protocol's native token has dropped approximately 85% after a private key compromise affecting a Humanity Foundation member resulted in the theft of at least $30 million worth of tokens. The exploit is attributed to unauthorized access to private keys rather than a smart contract vulnerability. No major centralized exchange-listed tickers are explicitly mentioned in the article.

South Korean police raided the offices of crypto exchange Bithumb as part of a probe into alleged nepotism involving lawmaker Kim Byung-gi, whose son reportedly received preferential hiring at crypto firms. The investigation centers on favoritism rather than Bithumb's core business operations. No charges have been confirmed at this stage.

Onchain investigator ZachXBT alleged that EdgeX insiders controlled nearly the entire token supply, leaving only a thin float available to the public, which he claims caused the token's crash. EdgeX attributed the price collapse to an "external party" rather than insider activity. The conflicting accounts have drawn scrutiny to the decentralized exchange's token distribution practices.

Nearly 1,000 UAW workers at a Michigan supplier plant that manufactures parts for General Motors pickup trucks walked off the job Monday after failing to reach a new contract agreement. The strike threatens production of GM's truck lineup, which is a key revenue driver for the automaker. No timeline for resumed negotiations has been reported.

The hacker behind the Kelp DAO exploit has laundered approximately $220 million in stolen funds in an effort to make them untraceable. A separate $71 million was frozen by Arbitrum's Security Council and remains unrecovered. Recovery prospects for the laundered portion are now considered largely diminished.

Gnosis Pay is experiencing an active exploit targeting its delay module, exposing user funds to potential loss. Co-founder Martin Köppelmann initially urged users to withdraw funds before walking back the warning. The team has pledged to refund affected users.

Circle has frozen $12.6 million in USDC linked to privacy protocol Zama. According to onchain investigator ZachXBT, the freeze is likely connected to an ongoing civil court case unrelated to Zama itself. No further details on the underlying legal matter have been disclosed.

The CFTC is seeking to reverse a previously settled complaint against Gemini, the cryptocurrency exchange. The regulator alleges the original settlement, filed under the Biden administration, was based heavily on a whistleblower's claims that Gemini artificially inflated trading activity to misrepresent user demand. The move signals renewed regulatory scrutiny of Gemini's historical trading practices.

The US Justice Department and CFTC have charged Google software engineer Michele Spagnuolo with insider trading, alleging he used non-public information accessed through his work to place bets on prediction market platform Polymarket, netting approximately $1.2 million in profits. The charges involve both criminal and civil actions targeting an individual employee, not Google itself. Polymarket, a decentralized prediction market, is implicated as the venue for the alleged trades.

The U.S. Commodity Futures Trading Commission (CFTC) has filed a request to vacate a prior settlement with Gemini, stating it no longer considers the agreement fair. The move signals a shift in the regulator's stance toward the crypto exchange and could reopen legal proceedings. No new penalty terms have been disclosed at this stage.

Federal authorities have alleged that a Google engineer engaged in insider trading by using non-public information about Google search results to trade on the prediction market platform Polymarket. The case involves an employee allegedly exploiting privileged access to company data for personal financial gain. The charges represent a novel intersection of corporate insider trading law and decentralized prediction markets.

A security exploit on StakeDAO allowed an attacker to mint 5.4 trillion vsdCRV tokens, but the attacker was only able to extract approximately $91,000 in value, bridging 43.7 ETH to Ethereum. Blockchain security firm PeckShield and analyst EmberCN noted that the vast majority of minted tokens could not be sold due to insufficient liquidity. The incident highlights a smart contract vulnerability in StakeDAO's vsdCRV token mechanism.

Singapore authorities have charged Zhu Juntao, former CEO of crypto lender Hodlnaut, in connection with claims related to the Terra ecosystem collapse. The charges mark a significant legal development in the ongoing fallout from the 2022 Terra/LUNA implosion, which caused widespread losses across the crypto industry. Hodlnaut suspended withdrawals and filed for judicial management in 2022 after suffering heavy exposure to the Terra ecosystem.

South Korean prosecutors have charged a group of operators behind the CATFI memecoin in what is reported to be the country's first decentralized exchange (DEX) rug-pull case prosecuted under crypto law. The charges relate to an alleged rug pull, where operators are accused of fraudulently draining investor funds. No major publicly traded company tickers are directly implicated in the report.

StablR, a stablecoin issuer, froze its USDR and EURR tokens after an attacker exploited a vulnerability to mint approximately $13.5 million in unbacked tokens. The company halted operations on both stablecoins to contain the breach and prevent further unauthorized issuance. The incident raises questions about the integrity of StablR's smart contract infrastructure and the backing of its circulating supply.

Singapore police have charged former Hodlnaut CEO Zhu Juntao with six counts of fraud by false representation. The charges relate to allegedly misleading statements made about Hodlnaut's exposure to the Terra/UST ecosystem collapse. Hodlnaut, a crypto lending platform, suspended withdrawals and faced financial difficulties following the Terra/LUNA crash.

A blockchain analyst has flagged phishing ads on Google Search impersonating Uniswap, with attackers reportedly stealing at least $400,000 from victims. The fraudulent advertisements mimic the Uniswap decentralized exchange to lure users into connecting their wallets or entering credentials. The incident highlights ongoing risks of search-engine-based crypto phishing campaigns.

Squid and Safe Labs disclosed a $3.2 million exploit attributed to a vulnerable third-party module integrated with Safe wallets. Squid stated its core systems were not compromised, with the breach isolated to the external module. Approximately $3 million was drained from affected Safe wallets as a result of the incident.

The Wall Street Journal published a report alleging $850 million in Iran-linked transactions flowed through Binance to the Islamic Revolutionary Guard Corps (IRGC). Binance CEO Richard Teng publicly denied the allegations. The report raises potential sanctions-compliance concerns for the crypto exchange, which has previously faced regulatory scrutiny.

A U.S. Special Forces sergeant, Gannon Ken Van Dyke, has been released after being indicted for allegedly placing bets on prediction markets—including Polymarket—tied to the U.S. raid to capture Venezuelan President Nicolás Maduro, in which he was involved in planning. Kalshi stated it had blocked the individual, distancing itself from the alleged insider-trading-style activity. The case raises regulatory scrutiny over prediction market platforms and insider participation in political event contracts.