revent

Aave has released the latest developments regarding the rsETH security incident on platform X, disclosing that operations related to rsETH reserves have been suspended on the Ethereum mainnet and networks such as Arbitrum, Base, Mantle, and Linea, in order to prevent excess aETH rsETH from being withdrawn, thereby pushing the position closer to the 95% liquidation threshold.This measure aims to preserve as much capital as possible during the asset recovery plan process and reduce systemic risk. Aave stated that further developments and disposal plans will continue to be disclosed to the community.

The privacy protocol Umbra has shut down its hosted frontend website to prevent attackers from using the protocol to transfer stolen funds from recent security incidents.Umbra stated that approximately $800,000 had been transferred through its protocol, but the protocol is only used to hide the identity of the recipient, and the related transactions can still be tracked on-chain. This measure comes after the Kelp protocol was attacked, resulting in losses exceeding $280 million. Umbra stated that it will restore frontend services once it is confirmed that asset recovery efforts are not affected, but it cannot prevent users from continuing to use the protocol through smart contracts or self-hosted frontends.

Pablo Hernandez de Cos, General Manager of the Bank for International Settlements (BIS), stated that global coordination on stablecoin regulation is crucial to prevent severe market fragmentation; otherwise, regulatory differences across jurisdictions could lead to regulatory arbitrage.He pointed out that stablecoins are typically pegged to the US dollar at a 1:1 ratio, which could undermine monetary and fiscal policy, trigger pressures in financial markets, and hinder efforts to combat illegal financing. Currently, the two major stablecoins issued by Tether and Circle account for about 85% of the global circulation of stablecoins, which is approximately $315 billion. He also mentioned that these two types of stablecoins are closer to securities rather than currencies in terms of redemption friction and operate more like ETFs.

Keone Hon from Monad Lianchuang stated: "I feel that the lending protocol for the liquidity pool should set rate limits on the supply of assets deposited as collateral. For example, if the current supply is 100 million and the supply cap is 300 million, then in the next 10 minutes, the maximum allowed increase should be to 110 million, rather than allowing a one-time deposit of the full 200 million. In reality, no one needs to complete such a large deposit all at once.This is important because when certain exotic assets are attacked, the impact depends on the scale of the exit channels for that asset. Especially in many cases where attacks belong to infinite issuance vulnerabilities, the scale of the exit that can be made essentially determines the upper limit of the attack losses. Lending protocols are often the largest exit channels. If a smart cap is introduced, where the initial cap is slightly above the current supply and is gradually adjusted to the real cap over several hours, it would have a huge effect. With such a mechanism, rsETH depositors could have avoided about 200 million dollars in losses.This also raises a point: the asset issuers themselves should support such mechanisms. If you are issuing redeemable tokens with redemption delays, you are not worried about hackers redeeming directly from you, but you need to compress the scale of external exit paths as much as possible without affecting normal users. Therefore, a high supply cap should be seen as a risk rather than a symbol of strength. For example, the Hyperbridge DOT attack did not result in a 100 million dollar loss because there were very few exit paths; the Resolv attack loss was 24 million dollars instead of 200 million dollars because the scale of the exit path limited the loss cap. This is an obvious principle, but there are still immediately actionable measures: audit the supply caps of all assets and lower the caps when unnecessary."

Anthropic has launched an authentication mechanism in some use cases of Claude to prevent abuse, enforce usage policies, and fulfill legal obligations. This process is supported by Persona, requiring users to submit a government-issued photo ID and possibly undergo real-time selfie verification.Anthropic states that the verification data is only used to confirm identity, not for model training, and will not be used for marketing or advertising. If verification fails, users can retry multiple times within the process or submit a form to request manual assistance. Accounts may be banned in cases of repeated violations of usage policies, terms of service, registration from unsupported regions, or use by individuals under 18 years of age.

According to official news, the decentralized GPU cloud computing infrastructure platform Aethir confirmed that its Ethereum-related bridging contract was attacked. The team promptly disconnected the affected contract and worked with major exchanges to blacklist the hacker's wallet, limiting the losses to under $90,000.Previously, blockchain security company PeckShield estimated the losses to be $400,000. The attacker exploited Aethir's cross-chain smart contract AethirOFTAdapter to transfer the stolen funds from the BNB Chain to Tron.Aethir stated that its Ethereum mainnet ATH token supply was unaffected and plans to announce a detailed compensation plan and incident analysis next week, collaborating with exchanges such as Binance, Upbit, and Bithumb to freeze funds. The Web3 security platform ZeroShadow is participating in the investigation. Aethir aims to achieve revenue of $127.8 million by 2025, with over 440,000 GPU containers deployed globally.

The Cybersecurity Threat and Vulnerability Information Sharing Platform (NVDB) of the Ministry of Industry and Information Technology of China has monitored and found that attackers are using exploit tools targeting Apple Inc.'s terminal products to carry out cyber attack activities, which can lead to serious harms such as information theft and system control. The affected range includes Apple terminal products such as iPhone and iPad running iOS 13 to 17.2.1.Attackers induce users to use the Safari browser to visit web pages containing malicious code through methods such as SMS, email, or web poisoning, comprehensively utilizing security vulnerabilities present in the terminal devices to implant remote control Trojans into the victim's terminal products, stealing sensitive user information, gaining maximum privileges, and taking control.It is recommended that users of Apple terminal products conduct risk assessments, and promptly fix vulnerabilities through version upgrades and patch installations (refer to the Apple Security Updates). Pay attention to system update notifications and the latest security update announcements released by Apple, upgrade to the latest secure version in a timely manner, strengthen security awareness, avoid clicking on unknown links, and prevent the risk of cyber attacks.

Richard Tice, Vice Chairman of the Reform Movement (who is also the spokesperson for business, trade, energy, and housing for the Reform Party), stated in an interview with Bloomberg that new technologies such as stablecoins can help prevent financial fraud."Fraud always exists, but we need to make it more difficult for them to commit crimes—especially with the advancement of technologies like tech, blockchain, and tokenization, tracking the flow of funds should become easier," Tice said. "Can we somehow track, intercept, or settle these funds before they leave British sovereign territory? I don't know, but I think we must have the courage to consider all these possibilities."

According to market news, the Ukrainian government plans to regulate cryptocurrency donations in political funding to prevent Russian interference.The Ukrainian National Securities and Stock Market Commission outlined relevant mechanisms in the upcoming legal framework for the crypto economy during a public discussion with legal advisors, including the implementation of the "travel rule" to identify participants in cryptocurrency transactions and requiring service providers to report information directly to tax authorities. Ukraine will also restrict access to its crypto market for participants created by Russian capital or associated with Russia. The Ukrainian securities regulator stated that these measures aim to enhance transaction transparency and reduce the risk of opaque or foreign interference in the political process.

Members of the UK's Treasury Select Committee and the All-Party Parliamentary Group on Crypto and Digital Assets (APPG) are calling for an immediate ban on donations to political parties in the form of cryptocurrency.The proposal stems from recent controversies regarding "dark money" flowing into the political system, with lawmakers believing that the anonymity of crypto assets could be used to evade existing political funding transparency requirements. The report points out that blockchain addresses are difficult to trace back to actual beneficiaries or could be used to obscure the source of funds, posing risks of foreign interference and money laundering. Some investigations have also found that certain crypto donations in the winter of 2025 can be traced back to overseas IP addresses. According to the proposal, political parties must liquidate existing crypto assets and refuse future related donations to ensure political funding returns to the traditional financial system. In response, crypto industry organizations believe that a blanket ban may be an overreaction and suggest enhancing transparency through measures such as strengthening KYC.

Aave released a recap of the Swap event stating that a user exchanged approximately $50.43 million aEth USDT for about $36,000 aEth AAVE through the CoW Swap route on the Aave front end, with a price impact of about 99.9%.Aave indicated that the transaction occurred within a third-party Swap protocol, and the core lending protocol was unaffected. The cause of the event was the user executing a large order in a market with extremely low liquidity and confirming a high-risk quote. Aave stated that it will launch the Aave Shield feature, which will by default block Swaps with a price impact exceeding 25%.

According to Jinshi reports, U.S. President Trump stated that the United States is the largest oil producer in the world, far ahead, so when oil prices rise, we make a lot of money. But for me as president, it is more important to prevent an evil empire—Iran—from acquiring nuclear weapons, to stop Iran from destroying the Middle East, and even the whole world. I will never let this happen!

The chairman of the Commodity Futures Trading Commission (CFTC), Mike Selig, stated, "Today, we are taking action to release clear guidelines for prediction markets to help trading platforms understand the CFTC's expectations for new contract listings. We are taking on the responsibility of ensuring that this asset class has transparent rules."In an interview with CNBC, Mike Selig said, "Prediction markets are a rapidly evolving field, which is why we are taking action today to release some clear guidelines to assist our trading platforms. Our trading platforms will self-certify contracts and have their own rulebooks, and they need to clearly understand the CFTC's expectations. Therefore, we will publish these guidelines in clear written form for trading platforms to follow.At the same time, we will also release a notice of proposed rulemaking later today. We intend to establish clear operating rules for this new asset class and new market. It is crucial to ensure that there is no manipulation, insider trading, or various abuses in the derivatives market. Therefore, we will take on the responsibility of ensuring that these new asset classes have clear operating rules."

Letsbonk.Fun founder Tom issued an urgent warning that the project's domain name has currently been hijacked by hackers. The hackers implanted an asset theft program (Drainer) at the domain level by controlling a team member's account. Tom advises all users not to visit or use any bonkfun-related domains until further notice to prevent asset loss.

According to CCTV News, the second plenary session of the Fourth Session of the 14th National People's Congress was held today at the Great Hall of the People in Beijing, where Zhang Jun, President of the Supreme People's Court, delivered the work report of the Supreme People's Court.The report shows that in the past five years, 9,326 cases of crimes endangering cybersecurity were concluded, involving 22,000 people, an increase of 158.5% (in terms of case numbers) compared to the previous five years. The law has been used to punish crimes such as online rumors, online pyramid schemes, and online violence, promoting comprehensive governance of cybersecurity. Two young individuals maliciously "doxxed" others, illegally obtaining and disseminating personal privacy information, and were convicted and sentenced according to the law. Strict penalties have been imposed for crimes involving money laundering and illegal foreign exchange using virtual currencies, working together to prevent illegal cross-border capital transfers. It is clarified that drivers who activate assisted driving functions after drinking should still bear criminal responsibility, and technological applications must adhere to legal boundaries.

The Cybersecurity Threat and Vulnerability Information Sharing Platform of the Ministry of Industry and Information Technology recently monitored and found that some instances of the OpenClaw (commonly known as "Lobster") open-source AI agent have a high security risk under default or improper configurations, making them susceptible to cyberattacks, information leaks, and other security issues. It is recommended that relevant units and users thoroughly check the public exposure, permission configurations, and credential management when deploying and using OpenClaw, close unnecessary public access, improve security mechanisms such as identity authentication, access control, data encryption, and security auditing, and continuously pay attention to official security announcements and hardening recommendations to prevent potential cybersecurity risks.

According to Jinshi reports, Federal Reserve's Williams stated that the ultimate goal of interest rate cuts is to prevent the policy from becoming too tight.

Ethereum co-founder Vitalik Buterin recently published a series of technical articles discussing the future roadmap of Ethereum. In the latest article, he focused on analyzing the potential centralization risks in the block building pipeline and proposed solutions such as expanding the FOCIL mechanism and introducing encrypted mempools to enhance the network's censorship resistance.According to the plan, Ethereum will launch the Glamsterdam upgrade in the first half of 2026, which will introduce the enshrined Proposer-Builder Separation (ePBS) mechanism. This mechanism allows block proposers to outsource block construction to a permissionless open market, reducing the centralization risk at the staking level. However, Buterin pointed out that while ePBS can prevent the concentration of block building rights among a few staking pools, the block construction itself may still become concentrated among a few high-tier participants due to specialization and maximizing MEV, leading to a new trend of centralization.To address this issue, Ethereum developers plan to simultaneously launch the FOCIL (Forward Obligatory Commitment to Inclusion Lists) mechanism in the Glamsterdam upgrade. The initial version will randomly select 16 witnesses and mandate that specific transactions must be included in the block; otherwise, the block will be rejected. Buterin stated that even if block construction is controlled by a single malicious entity, FOCIL can still ensure that transactions cannot be completely censored.Additionally, Buterin explored the possibility of expanding the scale of FOCIL ("big FOCIL") and introducing encrypted mempools to further mitigate the issues of information asymmetry and power concentration in the block building process. Recently, Buterin has been vocal about topics such as the quantum resistance roadmap, execution layer improvements, and block building mechanisms, indicating that the core Ethereum development team is conducting systematic design and risk assessment for the next phase of protocol upgrades.

According to Decrypt, U.S. Attorney for the District of Columbia Jeanine Pirro announced that the Fraud Center Strike Force has frozen and seized over $580 million in cryptocurrency from Southeast Asian crime networks.The task force was established in November 2025 and operates in coordination with agencies such as the U.S. Department of Justice, FBI, Secret Service, and Department of the Treasury, primarily targeting transnational crime networks operating "pig butchering" scams in Myanmar, Cambodia, and Laos. Pirro stated that her office will seek to forfeit the related funds through legal processes and return them to victims to the greatest extent possible.Deddy Lavid, CEO of blockchain analytics platform Cyvers, told Decrypt that while the $580 million in seizures is operationally significant, it represents only a small fraction of the total activity in the global crypto fraud landscape. The company has identified approximately 27,000 active criminal groups involved in about $27.5 billion in fraud exposure.Pirro linked the Southeast Asian scam networks to organized crime in China, while Lavid pointed out that these networks are becoming increasingly decentralized, involving operators from multiple countries and cross-border money laundering hubs.

The Chair of the UK's National Security Council, Matt Western, has called for an urgent temporary ban on political donations in cryptocurrency to prevent foreign interference in UK elections. Matt Western stated that such donations need to be suspended until the risks associated with cryptocurrency donations (including thorough checks on the sources of funds) are addressed.The committee also called for a review of sentencing for electoral offenses, believing that deterrence needs to be strengthened. Western has written to the Cabinet Minister responsible for election finance, Steve Reed, requesting immediate action—previously, the new election bill did not include provisions to restrict cryptocurrency donations.Earlier this year, the Reform UK party became the first to express acceptance of digital currency donations, reportedly receiving its first registrable cryptocurrency donations and establishing a dedicated crypto portal. In his letter, Western expressed concern that, given the deteriorating global security environment, the intent of foreign interference in UK political finance may intensify before the next election.