The CATFI case is small in dollars but precedent-setting: prosecutors built a criminal price-manipulation charge around an on-chain rug pull, not a securities violation.
When the lead author of the contracts the space audits itself against tells you to leave Aave, MakerDAO, and Compound too, the warning is structural — not protocol-specific.
Decentralized finance's total value locked has shed roughly 14% since the KelpDAO exploit rattled the restaking sector…
Socket's TrapDoor disclosure named 34+ malicious packages across npm, PyPI and Crates.io targeting developer machines, CI/CD credentials and AI coding files — the control plane a smart-contract audit…
A third-party multisig module — not Squid's own contracts — was the attack surface, and the $6M raise from Ripple's $3M slot becomes a painful backdrop rather than a marquee win.
The 1-of-3 multisig meant a single compromised key was enough to mint millions in unbacked tokens — the structural flaw MiCA was supposed to price out of the market just did.
The loss number is modest, but the attack vector — paid Google Search ads spoofing a top DEX's domain — has become the default phishing lane for crypto users and is widening.
The HYPE flip is the headline; the privacy-token slide is the story — ZEC and XMR gave back the loudest share of recent gains as US-Iran strikes lifted oil and the dollar.
Telegram founder Pavel Durov has publicly stated that the platform has "never disclosed a single byte" of private…
The pain isn't the headline number — it's the contrast: the same wallet that banked $100M shorting BTC has torched $200M+ on ETH longs, and is still deploying capital into Hyperliquid and a $38M ZEC…
The sell converted 43% of circulating supply into roughly $13.65M in BNB in just four hours — classic distribution-to-exit shape, and the price followed.
Cross-chain liquidity router Squid has moved to distance itself from a $3.2 million exploit tied to a third-party…
Security researchers have flagged an active malware campaign dubbed TrapDoor, targeting developer environments across…
The 10-month-old bag — bought before the cycle peak, held through the drawdown, and finally handed to Binance — is the kind of forced selling that turns into a sentiment data point for every DeFi…
Backed by Tether and Kraken, StablR had no structural defense against a 1-of-3 multisig compromise — the attacker minted unbacked EURR and USDR and drained liquidity into ETH before anyone could…
The danger is no longer a hypothetical "someday" — AI is compressing quantum timelines while also weaponising code auditing, forcing blockchain networks to treat post-quantum migration as a…
41 kidnappings so far this year — roughly one every 2.5 days — point to France as the epicenter of physical-extortion crime against crypto holders, driven by centralized KYC data leaks.
On-chain investigator ZachXBT has flagged an active exploit targeting StablR-linked stablecoin contracts, with losses…
Thirty machines on a clandestine grid line pulled 45 kW — about $6,400 a month in avoided electricity costs — turning territorial control and free power into portable digital value for Comando…
Web3 Antivirus has built a wallet risk scanner that lets users paste any Ethereum address, contract, or ENS name and…
WuBlockchain
TheBlock
CryptoSlate
Crypto News
CoinDesk
CoinTelegraph
Lookonchain