security

According to The Information, Anthropic and OpenAI have both experienced security incidents, raising market concerns about the safety of AI models themselves.Currently, Anthropic is investigating potential unauthorized access to its Claude Mythos model by users. Almost simultaneously, OpenAI was also reported to have accidentally exposed several unreleased models in its Codex application. Industry opinions indicate that these vulnerability incidents have intensified scrutiny on the security governance capabilities of AI companies and reflect that the security systems of current AI technology still need improvement as it rapidly develops. Analysts believe that even AI model providers that focus on cybersecurity capabilities face significant security challenges themselves. As AI is gradually used to defend against cyberattacks, issues related to platform security and access control have also become critical risk points.

Lido has released the latest developments regarding the Kelp security incident, stating that its Earn series vaults are working with the management to address the issues, which involve two major risk points: the rsETH exposure and the liquidity tension in the lending market. Lido emphasizes that the core staking protocol has not been affected, and both stETH and wstETH remain safe and stable.Currently, only the EarnETH vault has an approximately 9% TVL exposure to rsETH, and related deposits and withdrawals have been suspended by the management, awaiting a solution. Approximately $70 million in ETH has been recovered from the previous attack, and the subsequent asset recovery and loss distribution are still in progress. In response to liquidity pressure, the management has reduced leverage and optimized the position structure, significantly decreasing the wETH debt exposure. If losses ultimately occur, EarnETH will activate a $3 million "first loss protection mechanism" (funded by the DAO). As for other vaults, DVV and EarnUSD have not been affected and are operating normally; the GGV sub-vault is currently experiencing negative returns due to the combination of circular staking strategies and rising lending rates, but adjustments are ongoing. Withdrawal requests submitted by users will be processed based on valuations prior to the incident.

According to CertiK senior blockchain investigator Natalie Newson, real-time deepfakes, phishing, supply chain attacks, and cross-chain vulnerabilities will be the main sources of crypto hacking attacks.To date, the industry has lost over $600 million due to hacking attacks, including the $293 million vulnerability incident at Kelp DAO and the $280 million theft incident at Drift Protocol, both of which are related to North Korean hacker groups. Newson warned that the accelerated development of AI will make attack methods more complex, including more realistic deepfakes, autonomous attack agents, and "agent AI" that can automatically scan for vulnerabilities in smart contracts, but AI can also serve as a defense tool. CertiK advises investors to verify the authenticity of URLs and use cold wallets to store assets to reduce risk.

Vercel's CEO Guillermo Rauch tweeted that the team has completed an in-depth security investigation, analyzing nearly 1 PB of complete Vercel network and API logs, far exceeding the initial Context.ai account breach incident.The investigation revealed that the attackers' activities extended beyond Context.ai and have distributed malware on a broader scale, targeting account keys from platforms like Vercel. Once the keys are obtained, the attackers quickly and comprehensively enumerate non-sensitive environment variables. Current measures include deepening collaboration with industry partners such as Microsoft, AWS, and Wiz to jointly protect the broader internet ecosystem; other suspected victims have been notified and advised to immediately rotate credentials and strengthen security best practices.

According to Decrypt, Admiral Samuel Paparo, the commander of the U.S. Pacific Command, stated during a hearing before the U.S. House Armed Services Committee that the U.S. government is currently running a Bitcoin node for cybersecurity-related testing, but is not engaged in mining.Paparo indicated that the U.S. military's interest in Bitcoin primarily focuses on its value as a computer science tool, including cryptography, blockchain, and reusable proof-of-work mechanisms, with the aim of using the Bitcoin protocol to strengthen cybersecurity and enhance military capabilities, which is still in the experimental stage. He also mentioned that maintaining the global dominance of the U.S. dollar aligns with U.S. military interests and gave a positive evaluation of the stablecoin legalization bill, the GENIUS Act, signed by Trump last summer, believing that the bill helps to solidify the global position of the dollar.

According to BeInCrypto, Mastercard has joined the Blockchain Security Standards Committee (BSSC) as a charter-level member, collaborating with members such as Coinbase, Fireblocks, Anchorage Digital, and BitGo to develop a security framework for blockchain networks and tokenized assets.Mastercard will also join a working group focused on security and privacy guidelines, with Claire Le Gal from the security solutions department, responsible for fraud prevention, cyber resilience, disputes, and threat intelligence, representing Mastercard on the BSSC board. The executive director of BSSC stated that Mastercard's payment experience is of significant value in establishing robust blockchain security rules. Mastercard has launched multi-token networks and crypto credential products aimed at embedding trust in blockchain and tokenized infrastructure.

The "Quantum Computing and Blockchain Independent Advisory Committee" established by Coinbase has released its first position paper. The core conclusion of this position paper is that the core infrastructure of Bitcoin is fundamentally secure. Quantum computing does not pose a substantial threat to Bitcoin mining, hash functions, and the historical records of the blockchain. The real vulnerability lies at the wallet level, and Ethereum has laid out a clear roadmap to address this issue in the near future.Previously, Coinbase announced the establishment of the Quantum Computing and Blockchain Independent Advisory Committee in January this year, with committee members including researchers from Stanford University, the University of Texas at Austin, and the Ethereum Foundation.

SuiLend posted on platform X stating that all functions of the platform are currently operating normally, including deposits, loans, withdrawals, and repayments, and user funds are secure.At the same time, the team is closely monitoring the progress of the previous Volo Protocol security incident and will continue to release subsequent updates.

Ethena officially announced that the LayerZero cross-chain bridge functionality for sUSDe and USDe has been relaunched on all chains. To enhance security, Ethena has upgraded the decentralized verification network (DVN) configuration on each chain from 2/2 to 4/4, while maintaining the existing rate limit of $10 million per hour. The official statement indicated that further updates will be provided as necessary.

According to Cointelegraph, Admiral Samuel Paparo of the U.S. Navy stated at a Senate Armed Services Committee hearing that Bitcoin is a "valuable computer science tool," and its proof-of-work technology has significant applications in cybersecurity, increasing the cost of attacks for adversaries and can be used to protect data, information, and command signals, helping to support U.S. national security interests.Paparo noted, "Beyond the economic aspect, it has very important computer science application value in cybersecurity." Previously, Jason Lowery, a member of the U.S. Space Force, also made similar points in 2023.

Jefferies, a Wall Street investment bank, pointed out that the approximately $293 million attack incident on Kelp DAO exposed critical infrastructure risks, which may prompt traditional financial institutions to reassess the pace of blockchain and tokenization advancement.Jefferies believes that the attackers triggered market sell-offs and liquidity strains by minting uncollateralized tokens and engaging in cross-platform lending. This incident is thought to be related to the Lazarus Group and also highlights the single point of failure issues in the verification mechanisms of cross-chain bridges. As institutions accelerate the tokenization of assets (such as funds, bonds, and deposits), the associated risks may cause some banks and asset management institutions to delay deployment and prioritize examining system security. Especially in scenarios that rely on cross-chain infrastructure, security vulnerabilities could lead to market fragmentation, undermining the practical utility of tokenized assets.Despite short-term confidence being shaken, Jefferies still emphasizes that the long-term trend remains unchanged. Under the backdrop of regulatory advancements and continuous improvements in infrastructure, applications such as stablecoins still have growth potential. However, the industry as a whole is still in the early stages of development and requires time to enhance system robustness.

The Coinbase Quantum Computing and Blockchain Independent Advisory Committee has released its first position paper stating that sufficiently powerful quantum computers may be able to crack the encryption mechanisms used by mainstream blockchains to protect digital assets in the future. However, such devices do not currently exist, and encrypted assets remain secure for now. The industry should begin preparing for quantum resistance upgrades starting now.The document points out that there are currently no substantial risks associated with Bitcoin mining, hash functions, and on-chain historical records; the main vulnerability lies in the digital signatures at the wallet layer. Ethereum has proposed a clearer migration roadmap, and Solana, Algorand, and Aptos have also begun to provide or plan quantum resistance solutions.

Market news: Security personnel disclosed a critical vulnerability in Cosmos CometBFT 0-day, which may cause block synchronization phase stagnation affecting over $8 billion in assets.

According to Reuters, the Greek maritime risk management company MARISKS warned that some shipping companies stranded west of the Strait of Hormuz received messages impersonating Iranian authorities, demanding payment of a "toll fee" in Bitcoin or Tether (USDT). This information is a scam and not officially released by Iran.MARISKS stated that the scam messages claimed that documents must be submitted and evaluated by the "Iranian security department" before determining the cryptocurrency fees. Currently, approximately hundreds of vessels and about 20,000 seafarers are stranded in the Gulf. During a brief opening of the strait on April 18, at least two vessels (including one tanker) were forced to turn back after being fired upon by Iranian ships.

ChainCatcher reported live that Justin Sun, the founder of TRON, shared a keynote speech titled "From TRON to B.AI: Infrastructure as the Game-Changer in the AI Era" at this year's 2026 Hong Kong Web3 Carnival.He introduced that TRON currently supports about 86.4 billion USDT, with other stablecoins bringing the total close to 90 billion dollars, and the global account number has reached 376 million, making it one of the largest stablecoin settlement networks in the world. He emphasized that the most important aspects of financial services are stability and security, rather than being cheap.He pointed out that the existing payment systems are not compatible with AI, as bank accounts require human identity for opening, and each payment needs manual authorization, which cannot support high-frequency decision-making by AI. B.AI is building the underlying financial infrastructure for AI agents, allowing each AI to operate without becoming human, managing keys and on-chain wallets through cryptography to complete payments, and can anonymously call the world's most

The Arbitrum Security Committee announcement has taken emergency action to rescue 30,766 ETH stored at the Arbitrum One address, which is related to the KelpDAO vulnerability. With the assistance of law enforcement, the Security Committee identified the attacker and has always ensured that the safety and integrity of the Arbitrum community are maintained without affecting any Arbitrum users or applications.After extensive technical investigation and review, the Security Committee identified and executed a technical solution to transfer the funds to a secure location without impacting the state of any other chains or Arbitrum users. As of 11:26 PM Eastern Time on April 20, the funds have been successfully transferred to an intermediate frozen wallet. The address that originally held the funds can no longer access them, and only the Arbitrum governance body can take further action to transfer these funds, which will be coordinated with the relevant parties.

Curve founder Michael Egorov stated that the recent large number of avoidable security incidents in DeFi stem from centralized single points of failure, which are harming the entire industry. He cited the Aave and rsETH incidents as examples, indicating that related issues should be prevented before accidents occur, rather than remedied afterward.He called for the industry to collaboratively establish DeFi security standards to reduce single points of failure and to share best practices among project teams, auditing agencies, and risk assessment teams; he also suggested that the Ethereum Foundation and Solana Foundation could coordinate ecological participants to develop security principles and rules.

In response to the security incident and supply chain security risks of the front-end platform Vercel, the Binance security team has promptly initiated an emergency response, completed a comprehensive risk assessment of the front-end of products within the Binance system, and directly contacted Vercel to verify and confirm each issue.Binance stated that its platform and user assets are not affected by this incident.