ios

Ethereum co-founder Vitalik Buterin recommended the Interfold project, stating, "More people should learn about Interfold, which is a general implementation of the MACI (Minimal Anti-Collusion Infrastructure) concept that I have been advocating for nearly a decade. This project is essentially a privacy protocol optimized for scenarios such as voting and secret auctions, allowing more people to pay attention to and understand this technological advancement."Vitalik also mentioned that the core mechanisms of Interfold include generating threshold encryption keys, users submitting votes on-chain with ZKP (Zero-Knowledge Proof) credentials, and threshold decryption after arbitrary computation in Fully Homomorphic Encryption (FHE), which can achieve unconditional voter anonymity, Ethereum-level censorship resistance, and ZK over FHE ensuring result correctness, among other strong security guarantees. The current main limitation is the high cost of complex computations (such as multiplication), with only addition-based voting being mature, and optimizations like slashing-based approaches are being advanced, with a long-term goal of implementing obfuscation techniques to eliminate M-of-N committee dependency.

Jocy@IOSGVC, founding partner of IOSG Ventures, posted on platform X stating that rumors regarding IOSG Ventures depositing UNI and COMP to Binance are false. The related wallet is not an IOSG address, and the Arkham platform has marked the tags "IOSG Ventures" and "Binance Deposit Change Address" with question marks, indicating they are unverified.IOSG has not held or sold any UNI or COMP positions recently.

According to Onchain Lens monitoring, a wallet suspected to be related to IOSG Ventures (@IOSGVC) deposited 2.7 million UNI (worth $9.23 million) and 114,000 COMP (worth $2.3 million) into Binance. The wallet has realized a loss of $33.08 million on UNI and a loss of $6.68 million on COMP.Ten months ago, the wallet withdrew 5.41 million UNI (worth $5.153 million) and 228,000 COMP (worth $1.129 million) from Binance. Currently, the wallet still holds 2.7 million UNI (worth $9.23 million) and 114,000 COMP (worth $2.29 million).

According to the latest report from BlockBeats, as the demand for trading traditional financial assets increases among crypto users, Gate is accelerating the evolution of its crypto trading platform into a multi-asset comprehensive financial platform through the "Unified Account" system. Users can trade and allocate five major types of assets within the Gate App, including CFD contracts, perpetual contracts, spot tokens, Pre-IPOs, and crypto assets, further reducing the barriers to cross-platform capital allocation and trading.The report points out that Gate has currently built a unified margin system around TradFi and on-chain assets. Users can conduct cross-product trading through a single USDT account, enhancing capital efficiency. As of May 2026, Gate has launched over 440 CFD targets, covering asset classes such as foreign exchange, metals, global stock indices, popular stocks, and commodities, while maintaining a high frequency of new listings. Additionally, Gate has partnered with platforms like Ondo and xStocks to launch over 75 tokenized stock targets, supporting 24-hour trading of on-chain metal assets such as gold and silver, continuously expanding its layout in the tokenized stock and RWA market.Furthermore, Gate recently launched the SpaceX Pre-IPO project SPCX, with applications for purchasing shares exceeding $353 million within 24 hours, reflecting the rapidly growing market demand for on-chain Pre-IPO asset allocation. In the future, Gate will continue to promote the layout of the next-generation comprehensive financial platform around the unified account, on-chain infrastructure, and global liquidity network.

According to Jinshi reports, Federal Reserve Chairman Powell stated that the market beginning to consider scenarios where interest rates remain unchanged or rise is "healthy."

The slow fog余弦 social media stated that the high-risk iOS attack framework DarkSword has been publicly leaked on channels such as GitHub and is being used for large-scale espionage attacks targeting cryptocurrency wallet holders.This attack program targets devices running iOS versions 18.4 to 18.7, utilizing vulnerabilities in the Safari browser through malicious web pages to achieve remote code execution, thereby stealing users' sensitive data. Attackers launch attacks using bait web pages that impersonate pornographic live streams, Tron energy stations, refund processes, and more.iPhone users running older versions of iOS, once they access such web pages using the Safari browser (even if they do not close the page), may have sensitive information such as plaintext private keys and mnemonic phrases stolen by malicious JavaScript code when unlocking the wallet app, which is then transmitted in real-time through channels like Telegram bots.

According to the official announcement, Gate Live has officially launched the "Private Mode Live Room" feature, providing a higher level of access control and content security for live streaming scenarios. This feature is now available on the web and is also supported in App version v8.18.0, currently open to all streamers. Streamers can flexibly set keys according to their needs, ensuring that only specific user groups (such as core fans, VIP users, or paying users) can watch live broadcasts, previews, and replay content after entering the key.This feature also brings more flexible marketing scenarios, allowing streamers to conduct various operational attempts such as lotteries, internal sharing sessions, or exclusive events through targeted key distribution, achieving more precise reach and higher conversion efficiency. For users, entering the live room with a key allows them to access higher quality and more targeted content.The Private Mode Live Room not only effectively prevents content from being accessed by non-target users but also makes live interaction more focused, helping to improve overall communication quality and participation experience. This mode can also enhance fans' sense of identity and participation, contributing to increased loyalty and stickiness. The launch of the Private Mode Live Room is an important step for Gate in continuously optimizing the content ecosystem and user experience. In the future, Gate will continue to expand more functional capabilities around live streaming scenarios, helping creators and users establish higher quality and more valuable connections.

Aave officially stated that there may be two types of bad debts arising from the rsETH theft incident, depending on the different handling of rsETH. If the stolen losses are deducted from all circulating rsETH, it is expected to generate $123.7 million in bad debts, which is concentrated in the Ethereum mainnet in absolute terms, and is most severe in proportion on Mantle.If the value of the mainnet rsETH is guaranteed, and all losses are accounted for in the mapped version of rsETH on Layer 2, it is expected to generate $230.1 million in bad debts, all of which will be on Layer 2. Mantle will face a 71.45% WETH shortfall, and Arbitrum will face a 26.67% shortfall; the Ethereum mainnet will not be affected. Aave added that which situation ultimately occurs depends on decisions that Aave cannot control, mainly the accounting method for rsETH and the exchange rate update method of the LRT Oracle.

According to market news, Circle has launched a new solution for high-frequency USDC payments across blockchains. Developers can use the Cross-Chain Transfer Protocol (CCTP) to have local fulfillers make advance payments on the recipient's designated chain, with the platform later completing cross-chain settlement.This model can reduce the operational burden caused by individual cross-chain transfers and is suitable for platforms that handle a large number of payments daily. Compared to the traditional CCTP process of destroying and minting USDC one by one, the new solution supports batch settlement, reduces the number of destructions on the source chain, and eliminates the need for signature infrastructure on the target chain. Circle also demonstrated the process based on the Arc Testnet and Ethereum Sepolia.

According to official news, Gate US has officially launched the Gift Card feature, allowing users to create and send cryptocurrency gift cards directly within the app. This feature supports sending to users who have completed KYC verification via phone number, email, or UID.The recipient can instantly receive the gift card, and the funds will be credited directly. This feature also supports flexible currency combinations, allowing users to pay with one cryptocurrency and gift another asset. All transactions are processed through a KYC-based account system, aimed at promoting security, traceability, and compliance with applicable regulatory requirements.This feature further connects cryptocurrency assets with everyday social scenarios, expanding the practical application value of digital assets beyond transactions. Currently, Gate US holds a total of 35 licenses, with compliant operations covering 46 jurisdictions in the United States. Based on this, Gate US continues to expand the real-world application scenarios of cryptocurrency assets on its platform.

The Cybersecurity Threat and Vulnerability Information Sharing Platform (NVDB) of the Ministry of Industry and Information Technology of China has monitored and found that attackers are using exploit tools targeting Apple Inc.'s terminal products to carry out cyber attack activities, which can lead to serious harms such as information theft and system control. The affected range includes Apple terminal products such as iPhone and iPad running iOS 13 to 17.2.1.Attackers induce users to use the Safari browser to visit web pages containing malicious code through methods such as SMS, email, or web poisoning, comprehensively utilizing security vulnerabilities present in the terminal devices to implant remote control Trojans into the victim's terminal products, stealing sensitive user information, gaining maximum privileges, and taking control.It is recommended that users of Apple terminal products conduct risk assessments, and promptly fix vulnerabilities through version upgrades and patch installations (refer to the Apple Security Updates). Pay attention to system update notifications and the latest security update announcements released by Apple, upgrade to the latest secure version in a timely manner, strengthen security awareness, avoid clicking on unknown links, and prevent the risk of cyber attacks.

The attacker stole the npm access token of the chief maintainer of Axios, the most popular HTTP client library for JavaScript, and used that token to publish two malicious versions containing cross-platform remote access trojans (RATs) (axios@1.14.1 and axios@0.3.4), targeting macOS, Windows, and Linux systems. The malicious packages were removed from the npm registry about 3 hours after being published.According to data from security company Wiz, Axios is downloaded over 100 million times weekly and exists in about 80% of cloud and code environments. Security company Huntress detected the first infections just 89 seconds after the malicious packages went live and confirmed that at least 135 systems were compromised during the exposure window. Notably, the Axios project had previously deployed modern security measures such as OIDC trusted publishing mechanisms and SLSA provenance proofs, but the attacker completely bypassed these defenses. Investigations revealed that while configuring OIDC, the project retained the traditional long-lived NPM_TOKEN, and npm defaults to using the traditional token when both coexist, allowing the attacker to publish without breaching OIDC.

Slow Fog has once again issued a security reminder stating to pay attention to checking for malicious versions of axios and the exposure risk of OpenClaw npm global installation history. axios@1.14.1 and axios@0.3.4 have been confirmed as malicious versions, both of which have injected the dependency plain-crypto-js@4.2.1, delivering cross-platform malicious payloads through the postinstall script.The impact of OpenClaw is assessed based on scenarios: source code builds are not affected, as the locked versions in the lock file are 1.13.5/1.13.6; however, users who installed via npm install -g openclaw@2026.3.28 face historical exposure risks due to the presence of optionalDependencies.axios@^1.7.4 in the dependency chain, which may resolve to axios@1.14.1 during the time window when the malicious version is still online. Currently, npm has reverted the resolution to axios@1.14.0, but environments that were installed during the attack window are still advised to be checked. Slow Fog has provided inspection commands and IoC paths for various platforms; if the plain-crypto-js directory is found, even if the package.json has been cleaned, it should still be regarded as high-risk execution traces. It is recommended that affected hosts immediately rotate credentials and conduct host-side inspections. Previously, Slow Fog founder Yu Xian reminded that OpenClaw version 3.28 may introduce a toxic version of axios, and users need to urgently check.

Slow Fog founder Yu Xian issued a security reminder stating: We are fairly certain that if the user's OpenClaw is the latest version 3.28, it may introduce a poisoned axios, please be cautious in your checks.In addition, related Skills may also rely on axios, leading to indirect poisoning. Due to the widespread use of axios, a comprehensive check can be conducted under certain conditions.

According to market news, Socket has detected that version 1.14.1 of the npm core package axios is experiencing an active supply chain attack. The attacker injected a malicious dependency package to implant malicious code into axios. Developers using axios are advised to immediately pin the version and review the project's lock files.

Artelo Biosciences, a company listed on NASDAQ, announced the private sale of a total of 3,188,407 shares of common stock at a price of $3.45 per share, raising a total of $11 million. Additionally, the company disclosed that it will sell up to 6,376,814 warrants for common stock at a price of $3.20 per share. If the warrants are fully exercised in cash, the total funds raised will be approximately $20.4 million, with the transaction expected to be completed around March 30.According to market news, the latest data from the Strategic Solana Reserve shows that Artelo currently holds 45,883 SOL.

Tether announced that its gold token Tether Gold (XAU₮) has launched on the BNB Chain, bringing this leading tokenized gold asset into a broader crypto ecosystem.XAU₮ corresponds to 1 ounce of physical gold (London Good Delivery standard), stored in Swiss vaults, and backed by a 1:1 reserve through independent audits. Data shows that gold prices are expected to rise by about 64% in 2025, marking the largest annual increase in 40 years, driving up market demand for safe-haven assets. During the same period, the market size of gold-backed stablecoins grew from about $1.3 billion to over $4 billion, with XAU₮ accounting for about 60% of the share.This deployment allows users to gain direct exposure to physical gold within the BNB Chain ecosystem without the need for traditional custody, premiums, and settlement processes. At the same time, Tether achieves liquidity interoperability for XAU₮ across more than 12 blockchains through the USDt0 cross-chain network, enhancing the efficiency of issuance, transfer, and settlement.Tether CEO Paolo Ardoino stated that this move aims to integrate gold assets into the modern digital financial system, enabling instant settlement and global circulation capabilities. The BNB Chain side noted that this integration will further strengthen its ecological layout in the realm of real-world assets (RWA).