Letture associate

Nanobot User Security Practice Guide: Guarding the Last Line of Defense for AI Permissions

A comprehensive security guide for Nanobot users emphasizes the critical importance of safeguarding AI agents with system-level permissions (shell execution, file access, network requests, etc.) against threats like prompt injection, supply chain poisoning, and unauthorized operations. It advocates a balanced, multi-layered defense strategy involving three key roles: - **End Users**: The final decision-makers responsible for managing API keys (secure storage, avoiding code repository exposure), enforcing channel access controls (using allowFrom whitelists), avoiding root privileges, minimizing email channel usage due to vulnerabilities, and deploying via Docker for isolation. - **AI Agent**: Enhanced with built-in "Self-Wakeup" security skills to autonomously audit intent, intercept malicious commands (e.g., `rm -rf`, shell injection), prevent sensitive data exfiltration (e.g., config files), and validate MCP skills. - **Deterministic Scripts**: Automatically perform static code analysis, hash-based tamper checks, security baseline verification, and nightly backups to ensure integrity and enable recovery. The guide underscores that no single layer is foolproof, but together they balance usability and security. It includes a disclaimer noting that these are best-effort measures and not a substitute for professional audits, with users bearing ultimate responsibility for risk management.

marsbit16 min fa

Nanobot User Security Practice Guide: Guarding the Last Line of Defense for AI Permissions

marsbit16 min fa

Crypto Court Fight Not Over As Prosecutors Seek Retrial For Roman Storm

US prosecutors are seeking a retrial for Tornado Cash co-founder Roman Storm on charges of money laundering and sanctions violations, following a hung jury on those counts in a previous trial. Although Storm was convicted of operating an unlicensed money-transmitting business, his defense is seeking to overturn that verdict. Prosecutors have proposed an October 2026 retrial date, while Storm’s legal team has indicated unavailability until late 2026. Storm faces up to 40 years in prison if convicted on all counts. The case has drawn criticism from crypto advocates who point to prosecutorial missteps and a recent Treasury Department report acknowledging legitimate privacy applications for crypto mixers. A ruling on Storm’s acquittal motion is expected in April.

bitcoinist21 min fa

Crypto Court Fight Not Over As Prosecutors Seek Retrial For Roman Storm

bitcoinist21 min fa

Ondo, xStocks, Hyperliquid 'Three Kingdoms': Who is Building the 'Foundation' of Future Finance?

This article analyzes three distinct approaches to on-chain tokenization of traditional assets like stocks and ETFs: Ondo Finance, xStocks (by Backed Finance, now Kraken-owned), and Hyperliquid's HIP-3. Ondo Finance employs an institutional-grade, indirect tokenization model. An offshore SPV holds the underlying stocks, issuing on-chain structured notes that represent economic exposure but not legal ownership. It features atomic settlement, instant minting/redemption, and requires KYC for accredited non-US investors. xStocks targets the retail market with a multi-chain, composable model. Similar to Ondo, it uses a 1:1 backed debt instrument structure (tracking certificates) issued by a Jersey-based SPV. It emphasizes self-custody, ease of access with no specific KYC for trading, and integrates a novel "xChange" engine to bridge TradFi liquidity into DeFi. Hyperliquid's HIP-3 offers a fundamentally different, permissionless model for creating perpetual futures markets on any asset. It requires no underlying custody of assets. Instead, it provides synthetic price exposure through oracle-fed perpetual contracts, allowing high leverage and 24/7 trading. It functions as a decentralized infrastructure layer for market creators. The piece concludes that these protocols are not in direct competition but serve different purposes: Ondo and xStocks offer economic ownership and redemption, while Hyperliquid provides leveraged synthetic trading. The common thread is expanding access and composability for on-chain users.

marsbit29 min fa

Ondo, xStocks, Hyperliquid 'Three Kingdoms': Who is Building the 'Foundation' of Future Finance?

marsbit29 min fa

Arthur Hayes Urges Caution as Federal Reserve Maintains Tight Policy

Arthur Hayes, co-founder of BitMEX, advises caution regarding Bitcoin investment while the Federal Reserve maintains a tight monetary policy. In a recent podcast, he explained that restrictive policies reduce liquidity flowing into speculative markets like cryptocurrency. Hayes stated he would wait to invest, emphasizing that investors should monitor the Fed for signals of policy easing—such as interest rate cuts or increased money supply—before committing to riskier assets. He believes that only when central banks begin printing money will it be the right time to buy Bitcoin. Hayes encourages patience and close observation of macroeconomic indicators and geopolitical events, which can influence central bank policies and market liquidity.

TheNewsCrypto37 min fa

Arthur Hayes Urges Caution as Federal Reserve Maintains Tight Policy

TheNewsCrypto37 min fa

Lobster Key 11 Questions: The Most Easy-to-Understand Breakdown of OpenClaw Principles

"OpenClaw Demystified: A Beginner's Guide to AI Agent Principles" explains the popular OpenClaw AI assistant by breaking down its core functions into 11 key questions. The article first clarifies that the underlying large language model is merely a "text prediction engine" with no real understanding, memory, or senses. OpenClaw acts as a "shell" around this model, creating the illusion of memory by appending massive prompts containing its personality files (AGENTS.md, SOUL.md, USER.md) and the entire conversation history before each interaction. This mechanism is why it's "expensive"—each query processes thousands of tokens of context, not just the latest message. A core differentiator is tool use. The model itself only outputs text; OpenClaw parses this output for specific structured commands (e.g., `[Tool Call] Read("file.txt")`) and executes the corresponding action (reading the file) locally on the user's machine. This allows it to act, not just advise. For complex tasks, it can even write and run its own Python scripts, a powerful but dangerous capability. To manage limited context windows and complex tasks, OpenClaw uses sub-agents. A main agent can spawn sub-agent to handle a sub-task and return a summarized result, preventing the main context from being overloaded. Crucially, sub-agents cannot spawn their own to avoid infinite loops. Unlike standard chatbots, OpenClaw is proactive due to its heartbeat mechanism, which periodically prompts the model to check for tasks. It can also "sleep" via cron jobs to wait for long-running tasks, saving resources. The guide ends with critical security warnings. OpenClaw has extensive local access, making it a significant risk. It can malfunction (e.g., deleting emails uncontrollably) or fall victim to prompt injection attacks, where malicious input from the web is mistaken for a user's command. The strong recommendation is to run it on a dedicated, isolated "sacrificial" computer with minimal permissions and mandatory human confirmations for destructive actions.

Odaily星球日报39 min fa

Lobster Key 11 Questions: The Most Easy-to-Understand Breakdown of OpenClaw Principles

Odaily星球日报39 min fa

Trading

Spot
Futures
活动图片