xpos

According to CoinDesk, while quantum computers cannot disrupt the Bitcoin mining mechanism or the blockchain ledger, they may potentially crack the elliptic curve encryption system that protects wallet ownership through Shor's algorithm. Currently, about 6.9 million BTC (approximately one-third of the total supply) face potential risks due to public keys being visible on-chain, including around 1 million early holdings by Satoshi Nakamoto; transactions generated after the Taproot upgrade in 2021 are also affected due to public key exposure.Ethereum has established a formal quantum resistance migration plan since 2018, with 4 full-time teams and over 10 independent development groups, and has launched a dedicated progress website at pq.ethereum.org. In contrast, Bitcoin currently lacks a unified response roadmap, and the existing BIP-360 proposal and BitMEX Research detection scheme have not received widespread support from core developers. Notable Bitcoin advocate Nic Carter pointed out that Bitcoin's response is "the worst," while Blockstream CEO Adam Back believes that current quantum systems are still in the laboratory stage, but he also agrees that optional upgrade solutions should be deployed in advance.Analysts point out that Bitcoin's anti-centralization governance culture makes coordinating large-scale security upgrades extremely difficult, and how to handle historical legacy issues such as Satoshi Nakamoto's holdings is particularly challenging. A related paper from Google warns that once quantum attacks become a reality, the window for response may have already closed.

According to The Information, Anthropic and OpenAI have both experienced security incidents, raising market concerns about the safety of AI models themselves.Currently, Anthropic is investigating potential unauthorized access to its Claude Mythos model by users. Almost simultaneously, OpenAI was also reported to have accidentally exposed several unreleased models in its Codex application. Industry opinions indicate that these vulnerability incidents have intensified scrutiny on the security governance capabilities of AI companies and reflect that the security systems of current AI technology still need improvement as it rapidly develops. Analysts believe that even AI model providers that focus on cybersecurity capabilities face significant security challenges themselves. As AI is gradually used to defend against cyberattacks, issues related to platform security and access control have also become critical risk points.

Lido has released the latest developments regarding the Kelp security incident, stating that its Earn series vaults are working with the management to address the issues, which involve two major risk points: the rsETH exposure and the liquidity tension in the lending market. Lido emphasizes that the core staking protocol has not been affected, and both stETH and wstETH remain safe and stable.Currently, only the EarnETH vault has an approximately 9% TVL exposure to rsETH, and related deposits and withdrawals have been suspended by the management, awaiting a solution. Approximately $70 million in ETH has been recovered from the previous attack, and the subsequent asset recovery and loss distribution are still in progress. In response to liquidity pressure, the management has reduced leverage and optimized the position structure, significantly decreasing the wETH debt exposure. If losses ultimately occur, EarnETH will activate a $3 million "first loss protection mechanism" (funded by the DAO). As for other vaults, DVV and EarnUSD have not been affected and are operating normally; the GGV sub-vault is currently experiencing negative returns due to the combination of circular staking strategies and rising lending rates, but adjustments are ongoing. Withdrawal requests submitted by users will be processed based on valuations prior to the incident.

According to Slow Fog CISO @im23pads's post on the X platform, Claude Desktop has been reported to secretly write a backdoor file into browsers. When users install the Claude Desktop application, it writes a special file to all Chromium-based browsers on the computer without the user's knowledge.This file acts as a pre-authorized backdoor, which, when used in conjunction with specific browser extensions, can gain complete control over the user's browser.

Lido stated on platform X that its EarnETH treasury was affected by the theft of 116,500 rsETH (approximately $29.2 million) from the Kelp DAO cross-chain bridge on April 18.EarnETH holds approximately $21.6 million in rsETH risk exposure through leveraged positions in rsETH/ETH on Aave, accounting for about 9% of the total assets in the treasury. The EarnETH team is currently actively deleveraging to reduce risk, and the outcome depends on the final decisions made by Kelp, LayerZero, and Aave regarding loss sharing and bad debt handling.Lido further stated that EarnETH has a $3 million "first loss protection mechanism" funded by the Lido DAO treasury, which will be used to cover losses if necessary. The treasury has currently suspended redemption processing to assess the losses. This incident does not affect stETH and wstETH, and the core staking protocol of Lido is not involved.

etherFi posted on platform X that its Liquid treasury is temporarily not directly exposed to the Kelp rsETH event risk, but as a precautionary measure, it has suspended the LayerZero cross-chain bridging functionality for weETH and eETH until the root cause of the Kelp rs ETH event is clarified. Meanwhile, for Liquid (ETH, BTC, USD), sETHFI, and eBTC products, the relevant Teller contracts have been suspended to block the LayerZero OFT bridging path, and the deposit and withdrawal functions for the related assets have also been suspended. They are currently working closely with security partners and will provide timely updates once more details are confirmed.

Michael Egorov, the founder of Curve Finance, posted on the X platform expressing hope that Aave can address the relevant issues. He pointed out that non-isolated lending has good scalability but carries higher risks, with the key being risk management, an area where Aave has historically performed well.He stated that the market can adopt a fully isolated model like that of Curve Finance or a hybrid model, although the latter is very complex, it is feasible. However, the market has yet to understand its advantages. Michael Egorov also mentioned that Aave v4's hub and spoke model might be a step towards a semi-isolated and safer direction.

Euler Labs announced on the X platform that as a precaution, the LayerZero OFT cross-chain bridge for EUL is temporarily suspended during the investigation into the cause of the rsETH incident, and emphasized that EUL has no exposure to this rsETH incident. An update will be released after the cross-chain functionality is restored.

Venus Protocol posted on platform X regarding the Kelp incident, stating that the platform has zero exposure to rsETH, has not incurred any bad debts, and user funds are safe.As a precaution, based on the recommendations of the risk management party Allezlabs, the platform has temporarily adjusted the collateral factors for the following six types of assets to 0: USDe, sUSDe, SolvBTC, xSolvBTC, USD1, XAUM. Users can still directly repay and withdraw the above assets through the Venus UI, and updates will be released once the collateral rates return to normal.

The security agency Innora released a report stating that the financial protocol Saturn on Ethereum has two serious vulnerabilities. These include:Withdrawal freeze vulnerability: Under normal business operations, all user funds could be locked, with a minimum of 30 days and, in extreme cases, indefinitely frozen. No hacker is needed; the protocol can trigger this itself.Privileged addresses in the protocol can legally intercept up to 33.33% of the funds per operation. According to current data, a single operation can intercept up to approximately $157,000, with a theoretical total risk of up to $4.26 million.Innora stated that over 90% of Saturn's assets are managed by privileged addresses, and users are completely reliant on trust. As of the report's release, this vulnerability has not yet been fixed.

Slow Fog has once again issued a security reminder stating to pay attention to checking for malicious versions of axios and the exposure risk of OpenClaw npm global installation history. axios@1.14.1 and axios@0.3.4 have been confirmed as malicious versions, both of which have injected the dependency plain-crypto-js@4.2.1, delivering cross-platform malicious payloads through the postinstall script.The impact of OpenClaw is assessed based on scenarios: source code builds are not affected, as the locked versions in the lock file are 1.13.5/1.13.6; however, users who installed via npm install -g openclaw@2026.3.28 face historical exposure risks due to the presence of optionalDependencies.axios@^1.7.4 in the dependency chain, which may resolve to axios@1.14.1 during the time window when the malicious version is still online. Currently, npm has reverted the resolution to axios@1.14.0, but environments that were installed during the attack window are still advised to be checked. Slow Fog has provided inspection commands and IoC paths for various platforms; if the plain-crypto-js directory is found, even if the package.json has been cleaned, it should still be regarded as high-risk execution traces. It is recommended that affected hosts immediately rotate credentials and conduct host-side inspections. Previously, Slow Fog founder Yu Xian reminded that OpenClaw version 3.28 may introduce a toxic version of axios, and users need to urgently check.

According to BBX data, yesterday global listed companies disclosed several key data points regarding the "geopolitical competition" and "scalable positioning" of crypto reserves:15,000 holdings disclosed: Trump Media (NASDAQ: $DJT) confirmed in a strategic briefing yesterday that its treasury's holding of 15,000 BTC has completed its transformation into a "long-term strategic reserve." The company stated that this asset serves as a financial anchor for building decentralized social and payment infrastructure, with a current market value exceeding $1 billion.Vision for 100,000 coins: Metaplanet (TSE: 3350) confirmed yesterday at its Tokyo headquarters that its holding target by the end of 2026 is 100,000 BTC. As one of the largest corporate holders in Asia, the company plans to fill the current reserve gap through a new round of $250 million equity financing, aiming to achieve a top three global holding position within the year.30,000 reserve milestone: Bitcoin Standard Treasury (NASDAQ: $BSTR) disclosed yesterday that its total holdings have officially surpassed 30,000 BTC. As a representative of "standard-based" financial companies, its BPS (Bitcoin per share) grew by 8.4% month-over-month in March.23.8% annual yield: Semler Scientific (NASDAQ: $SMLR) released its latest treasury efficiency report yesterday, showing that its "Bitcoin Yield" achieved through ATM financing tools since 2026 has risen to 23.8%, far exceeding the spot price increase of BTC during the same period.1,717 holdings confirmed: Nexon (TSE: 3659) confirmed yesterday in its weekly report that its holding of 1,717 BTC remains in a "retail out" state. The company reiterated that it will showcase how it utilizes this reserve to support the economic model of next-generation blockchain games at the developer conference in April.

According to Bnp Paribas, BNP Paribas announced the expansion of its trading product range and will launch 6 cryptocurrency exchange-traded notes (ETNs) linked to Bitcoin and Ethereum for retail clients in France. This product allows investors to gain indirect exposure to cryptocurrencies through their securities accounts without the need to directly hold BTC or ETH, and will operate under the MIFID2 regulatory framework.The related ETN products are scheduled to officially launch on March 30, 2026, with the potential for further expansion to a broader wealth management client base in the future.

Elon Musk stated that the planned "increase the exposure weight of creators based on their region" will be paused and further consideration will be given.Previously, X product head Nikita Bier revealed that starting this Thursday (March 26), the X platform will adjust the revenue-sharing incentive mechanism for creators, focusing on increasing the weight of exposure from the creators' regions. This adjustment aims to encourage content that resonates with users in their own country, neighboring countries, and those who speak the same language, while reducing the motivation for creators to specifically optimize traffic for U.S. or Japanese accounts, in order to promote a more diverse content ecosystem on the platform.

X product leader Nikita Bier posted on the X platform that starting Thursday, the X platform will update its revenue-sharing incentive mechanism, increasing the weight of exposure based on the creator's region to encourage content that resonates with users in their own country, neighboring countries, and those who speak the same language.This move aims to reduce the behavior of competing for traffic through attention-seeking tactics and promote diverse dialogue on the platform. The X platform invites creators to start building local audiences.

On-chain detective ZachXBT disclosed today that a collaborative network consisting of at least 10 accounts is generating traffic on social platform X by creating panic-inducing content related to wars and ultimately directing it to cryptocurrency scam projects.This network acquires accounts with an existing follower base, frequently posts sensational "apocalyptic" content, and amplifies dissemination by having multiple secondary accounts retweet each other, quickly gaining millions of views and significant interactions. Investigations show that these accounts also utilize AI to generate fake personas, such as fabricating an "Asian version of Mario Nawfal" to enhance credibility. After gaining traffic, the relevant accounts promote fake airdrop events or cryptocurrency project scams, including a concentrated promotion of a pump-and-dump project named ORAMAMA on February 22, 2026, which is then no longer mentioned.On-chain data indicates that this operation has brought six-figure profits to the team behind it. Meanwhile, many genuine large accounts inadvertently engage in interactions through comments and retweets, further amplifying the content dissemination effect. ZachXBT warns that this combination model of "traffic farms + AI content + cryptocurrency scams" has become highly mature and is easily replicable. If similar mechanisms are exploited by higher-level organizations, their potential impact will far exceed the realm of financial fraud and may even evolve into a tool for public opinion manipulation.ZachXBT calls for platforms to strengthen regulation, implementing bans and legal accountability for such manipulative behaviors. He also advises users to carefully verify account histories and information sources before engaging in interactions to combat the increasingly rampant phenomenon of false content and "interaction bait."

Regarding the rumors that the Resolv Labs stablecoin security incident has a significant impact on Morpho, Morpho co-founder Paul Frambot clarified in a post on X that this incident has indeed affected USR and related assets (such as RPL), and has impacted the lending market that uses them as collateral. However, among the approximately 500 Morpho Vaults with deposits exceeding $10,000, only about 15 vaults have significant exposure to the related market (over $10,000). The affected vaults are primarily positioned as high-risk strategies, using long-tail collateral assets, while other vaults that do not have related exposure (including low-risk Prime Vaults) have not been affected.Paul Frambot advised users to continue to pay attention to communications and updates from Resolv Labs and related Curators to get the latest developments on specific vault risk exposures.

Aave founder Stani.eth confirmed in a post on the X platform that their protocol has no exposure to Resolv Labs' stablecoin USR. Resolv only acts as a liquidity provider supplying its supported assets to the Aave protocol. The related assets are currently safe, and the supporting assets themselves have not been affected. Resolv can exit smoothly and has begun repaying its debts. At the same time, this incident has no adverse impact on Aave liquidity providers (LPs) and does not affect the protocol itself.

According to reports from CCTV News, based on insider revelations, journalists quickly found a business called GEO by searching multiple online platforms. Service providers engaged in this business on these platforms claim that users only need to pay the corresponding fees to have their products listed among the major mainstream AI large models; allowing their product advertisements to become the "standard answers" provided by the AI models.The popularity of the GEO business has led to the emergence of many companies and platforms specializing in press release services. They have long undertaken various press release tasks to ensure that AI large models reference and capture them, becoming an important part of hunting AI large models and conducting data "poisoning."

Agent Garrett Jin of "1011 Insider Whale" stated that the closure of the Strait of Hormuz has entered its 16th day, and since February 27, oil prices have risen by about 45%. The price of Brent crude oil has risen above $103, and there are still no signs of a ceasefire. The Strategic Petroleum Reserve (SPR) may only be able to cover about 12% to 15% of the supply gap. The recommended trading strategy in the near term is to be bullish on oil and reduce equity exposure, especially in the assets of net energy-importing economies such as Japan, South Korea, and Europe. Meanwhile, in an environment where interest rates, the dollar, and oil prices are all rising, overall market liquidity is tightening. Investors should maintain cash positions, shorten duration, and remain vigilant.