#security News & Analysis

Google research suggests Bitcoin encryption easier to crack than thought

US signals military escalation against Iran if diplomacy stalls

Crypto Hacks in 2026: $450M Lost Across 45 Protocols in Two Weeks

A fake Ledger app on the Apple App Store drained $9.5 million in crypto

A fraudulent Ledger Live application was discovered on Apple's App Store, successfully impersonating the legitimate cryptocurrency wallet and draining approximately $9.5 million from dozens of users across multiple blockchains during a week-long phishing campaign before removal.

Why North Korea keeps stealing billions in crypto — out in the open

North Korea's cryptocurrency theft operations have evolved into a sophisticated, state-sponsored threat that operates with relative impunity despite international scrutiny. Security experts warn that the regime's unique position as a nation-state with fewer geopolitical constraints makes it fundamentally different from other cybercriminals, posing an escalating risk to crypto ecosystem security and stability.

Drift says $270 million exploit was a six-month North Korean intelligence operation

Drift exchange suffered a $270 million exploit orchestrated by North Korean intelligence operatives who conducted a sophisticated six-month social engineering campaign. The attackers posed as a legitimate trading firm, met Drift team members in person across multiple countries, and deposited $1 million of their own funds to establish credibility before executing the massive drain.

How a Solana feature designed for convenience let attackers drain more than $270 million from Drift

Google Quantum Paper Boosts Odds of Bitcoin ‘Q-Day’ by 2032, Researchers Warn

Companies are now on the front lines of war. They need to act like it

Iran threatens to attack tourist sites across the world as Israel and U.S. kill top leaders

XRP Wins Major Regulatory Clarity As Commodity Status Emerges

XRP Officially Recognized as Non-Security in New SEC Guidance

Whitehat hacker accuses Injective of ghosting after $500M bug disclosure

A pseudonymous security researcher has publicly accused Injective Protocol of offering an inadequate bounty payment and subsequently ghosting them after they disclosed a critical vulnerability that put $500 million at risk. The dispute highlights ongoing tensions between white hat hackers and DeFi protocols over appropriate bug bounty compensation.

Aave and CoW Swap publish dueling post-mortems after $50 million DeFi swap disaster

Aave and CoW Swap have released competing post-mortem reports following a $50 million DeFi swap disaster. CoW Swap's analysis reveals that a transaction initially submitted through a private RPC endpoint was leaked to the public mempool, contributing to the incident.

U.S. to send 2,500 Marines and an amphibious assault ship to Mideast, pulling them from waters near Taiwan

SEC and CFTC Reach Historic Settlement: Pro-Ripple Chairman Pham Reacts With Six-Point Plan to Make US World's Crypto Capital

AWS Middle East disrupted after ‘objects struck datacenter’ amid Iran war

AWS Middle East data center operations were disrupted after objects reportedly struck the facility amid ongoing tensions related to the Iran conflict. The incident highlights infrastructure vulnerabilities for cloud services in geopolitically sensitive regions.

CRITICAL UPDATE Re: DAO Vulnerability

The DAO, a major Ethereum-based decentralized autonomous organization, is under attack through a recursive calling vulnerability that allows an attacker to drain ether into a child DAO. This represents a critical security breach affecting one of the most significant early DeFi experiments.

Provably Secure Agent Guardrail

Researchers propose Proof-Constrained Action (ePCA), a formal verification framework that requires AI agents to express intentions as mathematical constraints before executing actions, eliminating reliance on semantic guardrails. The approach achieves zero attack success rates in testing and addresses critical security gaps as LLMs evolve from text generators into autonomous agents with real-world execution capabilities.

HARP: Measuring Harm Amplification in Multi-Agent LLM Systems

Researchers introduce HARP, a methodology for measuring how harm propagates across multi-agent LLM systems when one component is compromised. Testing on a finance-oriented seven-agent system reveals that single-agent compromise creates the strongest amplification effects, while existing defenses struggle to balance security with utility costs.

The Attentional White Bear Effect in Transformer Language Models

Researchers discovered that instruction-based suppression in transformer language models fails to eliminate prohibited concepts from internal representations, despite successfully preventing their explicit expression. The study reveals that suppressed content remains recoverable from hidden layers and continues influencing model behavior, exposing a critical gap between behavioral safety and true representational alignment.

Glassnode Warns Nearly 30% Of Bitcoin Supply Could Face Future Quantum Risks

Glassnode analysis reveals that approximately 30% of Bitcoin's supply (6.04 million BTC) could face theoretical quantum computing risks in the future, with 4.12 million BTC at heightened risk due to address reuse and outdated custody practices. Simultaneously, Bitcoin spot trading volumes have collapsed 81% since October 2025, falling to levels comparable with the 2023 bear market, though analysts suggest this could signal the exhaustion of selling pressure.

BitGo tests quantum-safe MPC wallet signing with Silence Labs

BitGo and Silence Labs are jointly testing post-quantum cryptographic MPC (multi-party computation) wallet signing to secure institutional cryptocurrency custody against future quantum computing threats. This collaboration reflects growing industry recognition that quantum computers could eventually compromise current encryption standards, prompting proactive security measures across the finance sector.

XRP Ledger Enters Next Phase With Incoming XRPL Update

The XRP Ledger is advancing with a new protocol update that prioritizes enhanced security measures. This development represents a significant infrastructure upgrade aimed at strengthening the network's resilience and protecting user assets.

Polymarket Under Attack? Analyzing Potential Exploit Discovery

Polymarket, a prominent prediction market platform built on Polygon, reportedly suffered a security exploit resulting in approximately $520,000 in drained assets. The incident highlights persistent vulnerabilities in decentralized finance infrastructure and raises questions about the platform's security protocols.