# Hack Related Articles

HTX News Center provides the latest articles and in-depth analysis on "Hack", covering market trends, project updates, tech developments, and regulatory policies in the crypto industry.

Top Audit Expert Warns: All DeFi is Unsafe, Withdraw Now!

A leading DeFi security expert has issued a stark warning: all DeFi is now unsafe. Manuel Aráoz, founder of major security audit firm OpenZeppelin, stated on X that he is advising friends and family to withdraw funds from major protocols like Aave, MakerDAO, and Compound. The core reason for this drastic shift is the rise of AI. Aráoz argues that AI-powered coding agents can now identify and exploit smart contract vulnerabilities at an exponentially faster rate. This turns DeFi's transparency into a liability, providing a vast training dataset for attackers. The fundamental asymmetry of security—where defenders must patch every flaw, but attackers need only find one—is being catastrophically unbalanced by AI. Recent months provide chilling evidence. April saw massive exploits, including a $280 million loss at Drift Protocol and a $292 million theft from Kelp DAO. The trend continued into May with multiple high-value attacks on protocols like THORChain, Verus, Echo Protocol, and StakeDAO, demonstrating vulnerabilities across both on-chain code and off-chain management. AI acts as a force multiplier for hackers, enabling near-instantaneous vulnerability scanning, automated exploit script generation, and sophisticated social engineering. The recent development of ultra-powerful AI models like Anthropic's Mythos—so advanced its public release was delayed over security fears—signals even greater threats ahead. The article concludes that the risk-reward calculus for DeFi participants has fundamentally broken. With yields on many "blue-chip" protocols now in the single digits, users are essentially risking 100% of their principal for minimal returns, with no recourse in case of attack. In this environment, withdrawing funds may be the most rational risk management decision.

marsbit05/28 04:09

Top Audit Expert Warns: All DeFi is Unsafe, Withdraw Now!

marsbit05/28 04:09

Top Audit Guru Alerts: All DeFi is Unsafe, Withdraw Now!

Leading DeFi security auditor and OpenZeppelin founder Manuel Aráoz has issued a stark warning, declaring all DeFi protocols unsafe and advising the withdrawal of funds, even from established platforms like Aave and MakerDAO. This warning stems from the rapidly growing threat posed by AI-powered hacking tools. Aráoz highlights that AI agents can now identify and exploit smart contract vulnerabilities in minutes, a task that previously took expert teams weeks. This creates a critical asymmetry: defenders must patch every flaw, while attackers need only find one. Recent months have seen a surge in high-profile exploits, with billions lost in April and May alone across protocols like Drift Protocol, Kelp DAO, and THORChain. The acceleration is attributed to AI's ability to perform rapid code scanning, generate automated attack scripts, and even orchestrate social engineering and infrastructure attacks faster than human defenders can respond. The article cites Anthropic's powerful new AI model, Mythos, which demonstrated such proficiency in finding zero-day vulnerabilities that its public release was delayed over security concerns. This evolution fundamentally disrupts DeFi's risk-reward calculus. With yields on reliable protocols falling to single digits, users now face the potential of 100% capital loss for minimal returns. Aráoz's conclusion is that for most users, withdrawing funds to secure wallets is the most rational risk-management choice in the current landscape.

Odaily星球日报05/28 03:57

Top Audit Guru Alerts: All DeFi is Unsafe, Withdraw Now!

Odaily星球日报05/28 03:57

Morning Post | Hyperliquid Launches Off-chain Event Prediction Market Contract; Strategy Completes $1.5 Billion Debt Buyback; Kelp DAO Announces rsETH Fully Restored

Crypto Market Digest (May 27, 2026) Ondo Finance's founder Nathan Allman has passed away, with President Ian De Bode taking over as CEO. In regulatory news, Hong Kong authorities concluded a consultation on virtual asset service provider licensing, aiming to align rules with traditional finance. Kelp DAO announced its rsETH token has fully recovered five weeks after a $293 million hack by Lazarus Group, though the incident caused significant damage to DeFi lending protocols like Aave. Key industry developments include Hyperliquid launching off-chain event prediction market contracts, and the CME introducing futures for Avalanche and Sui. A report highlights the rise of AI Agent payments, with over $73 million settled on-chain in a year, predominantly using USDC. Meanwhile, blockchain detective ZachXBT exposed market manipulation involving several BSC tokens. In investment news, a firm referred to as "Strategy" completed a $1.5 billion debt buyback. Political contributions from the crypto sector for the 2026 U.S. elections have surpassed $500 million, heavily favoring Republican candidates. BitMEX founder Arthur Hayes revealed Zcash is his second-largest holding, citing the growing necessity for monetary privacy. The digest concludes with trending memecoins on Ethereum, Solana, and Base networks, and highlights in-depth articles covering the impending SpaceX IPO, Polymarket's regulatory challenges, and an analysis of the on-chain treasury landscape.

链捕手05/27 01:32

Morning Post | Hyperliquid Launches Off-chain Event Prediction Market Contract; Strategy Completes $1.5 Billion Debt Buyback; Kelp DAO Announces rsETH Fully Restored

链捕手05/27 01:32

IOSG: DeFi at Its Most Critical Moment, The Real Vulnerability Lies Not in the Code

In April 2026, a series of major DeFi exploits—targeting Drift Protocol ($285M), KelpDAO ($292M via bridge), and Wasabi Protocol ($4.5M)—revealed a fundamental security crisis. None involved smart contract code vulnerabilities. Instead, losses stemmed from compromised operational foundations: social engineering of multi-signature signers, a single-point-of-failure bridge validator, and stolen admin private keys. This month, where over $625M was stolen across ~30 incidents, marked the collapse of DeFi's core security premise: that rigorous code audits alone ensure safety. The real vulnerabilities lay in trusted operational components—admin keys, governance councils, and bridge configurations—areas audits typically ignore. The KelpDAO incident triggered an asymmetric domino effect: its $2.92B unsupported token mint caused ~$8.5B in outflows from Aave and a $13.2B total DeFi TVL drop in 48 hours, showcasing how one protocol's operational failure can cascade through composable systems. The article argues that most so-called "DeFi" is actually "OpenFi": permissionless and transparent on-chain, but critically reliant on trusted third parties for key operations. This inherent trade-off between decentralization and operational feasibility is often obscured by marketing. The industry's path forward requires honest disclosure of trust assumptions (like L2Beat's framework), treating operational security as a first-class discipline alongside code audits, and designing systems whose risks can be clearly assessed and insured. The April events were not a code security failure but a breakdown in the mental model surrounding it.

marsbit05/26 03:08

IOSG: DeFi at Its Most Critical Moment, The Real Vulnerability Lies Not in the Code

marsbit05/26 03:08

DeFi Has Reached Its Most Dangerous Moment: The Real Vulnerabilities Are Not in the Code

DeFi in Peril: The Real Vulnerability Isn't in the Code April 2026 marked a paradigm shift in DeFi security, with over $625 million lost across 30 incidents—the worst month in crypto history by event count. Crucially, none of the major exploits (Drift Protocol: $285M, KelpDAO: $292M, Wasabi Protocol: $4.5M) resulted from smart contract vulnerabilities. Instead, failures occurred in the operational "plumbing": social engineering to compromise multi-signature councils, a single-point-of-failure 1-of-1 bridge validator, and stolen admin private keys. These events expose a fundamental misalignment: the industry's security model has long focused on code audits, while the actual attack surface has shifted to privileged access points and off-chain infrastructure. The article introduces the term "OpenFi" to describe this reality: permissionless, on-chain, yet operationally dependent on trusted third parties (admins, validators, oracles) at key junctures. The KelpDAO exploit vividly demonstrated asymmetric "contagion risk." A configuration error in a smaller protocol triggered a panic, causing approximately $13.2 billion in outflows from larger, unaffected protocols like Aave within 48 hours, as users fled uncertain collateral. The core dilemma is the double-edged sword of centralization. Operational levers like emergency councils (e.g., Arbitrum freezing stolen funds post-KelpDAO) enable crisis response but also create catastrophic attack surfaces if compromised (e.g., Drift). The path forward demands radical honesty: protocols must clearly disclose their trust assumptions, operational levers, and failure modes. The industry must treat operational security (key management, configurations, incident response) with the same rigor as code security. Survival depends on building systems whose risks can be understood, priced, and insured, moving beyond the outdated "code is law" mantra to a mature model of disclosed and managed trust.

链捕手05/25 15:17

DeFi Has Reached Its Most Dangerous Moment: The Real Vulnerabilities Are Not in the Code

链捕手05/25 15:17

Morning Report | xAI Launches Skills; Duan Yongping Takes First Position in Circle in Q1 2026; Polymarket Partners with Nasdaq to Launch Prediction Market

**Title:** Daily Brief: Musk's xAI Launches "Skills"; Duan Yongping's First Circle Investment; Polymarket Partners with Nasdaq **Key Highlights:** * **AI Developments:** Elon Musk's xAI released "Skills," enabling its Grok AI to retain memory across conversations. OpenAI co-founder Andrej Karpathy joined rival Anthropic. * **Crypto & DeFi:** May saw 14 crypto hack incidents, including 3 major DeFi attacks in 5 days (Echo Protocol, THORChain, Verus). The Ethereum Foundation faces another exodus with two core members departing. * **Corporate Moves:** Investor Duan Yongping disclosed a new $19M position in Circle. Analog Devices is in talks to acquire AI chip firm Empower Semiconductor for ~$1.5B. * **Financials & Partnerships:** Canaan reported Q1 2026 revenue of $62.7M and record-high crypto reserves. Prediction market Polymarket partnered with Nasdaq to launch markets for private companies. * **Market Data:** VanEck predicts digital credit markets could reach $2.5T in a decade, with Bitcoin potentially hitting $1M. Top trending meme tokens on ETH, Solana, and Base networks are listed. **Featured Articles:** Three analysis pieces explore: 1) potential regulatory pressures on DEXs like Hyperliquid, 2) challenges to Solana's "internet capital market" narrative, and 3) the future emergence of a dedicated capital market for autonomous AI agents (Agents).

链捕手05/20 01:57

Morning Report | xAI Launches Skills; Duan Yongping Takes First Position in Circle in Q1 2026; Polymarket Partners with Nasdaq to Launch Prediction Market

链捕手05/20 01:57

When Hyperliquid Steals Solana's 'Internet Capital Market' Script

The article "When Hyperliquid Steals Solana's 'Internet Capital Markets' Playbook" discusses Solana's struggles to maintain its "internet capital markets" narrative by 2026. Despite its initial success as a high-performance "Ethereum killer," SOL's price has underperformed, dropping significantly compared to other major cryptocurrencies. Solana's vision of a global, on-chain trading network for all assets is being challenged not primarily by Ethereum, but by Hyperliquid. Hyperliquid, evolving from a perpetual contracts platform into a dedicated financial infrastructure Layer 1, has become a major beneficiary of the shift of derivatives trading from centralized exchanges to on-chain. The article argues that for high-frequency financial trading, a specialized, performance-focused chain like Hyperliquid may be more suitable than a general-purpose ecosystem like Solana. Further compounding Solana's issues was a major $200+ million exploit on its key perpetual protocol, Drift, in April, which damaged market confidence. In response, Solana founder Anatoly Yakovenko heavily promoted the protocol Phoenix as a replacement, boosting its visibility but not its trading volume, which remains far behind leading platforms. Solana supporters have launched a public critique of Hyperliquid's decentralization, pointing to its limited validators and closed-source code. Critics, however, note Solana's own declining validator count and centralization metrics. This strategy has also caused internal friction, with developers of other Solana protocols expressing discontent over the foundation's perceived favoritism towards Phoenix. The conclusion is that Hyperliquid's rise represents a challenge to the "general-purpose blockchain" narrative, proving that the core of a capital market might be a specialized trading engine rather than a broad ecosystem. If Solana cannot regain dominance in derivatives, it risks remaining a "meme coin paradise" while its grand "internet capital markets" ambition slips away.

marsbit05/19 15:07

When Hyperliquid Steals Solana's 'Internet Capital Market' Script

marsbit05/19 15:07

Following the KelpDAO Hack: $40 Billion in Assets Flee LayerZero, Chainlink Emerges as the Primary 'Beneficiary'

Following a major security breach in April where KelpDAO's bridge using LayerZero was attacked for approximately $292 million, a significant shift is underway in the cross-chain infrastructure landscape. An estimated $40 billion in assets is in the process of migrating or has already migrated from LayerZero to Chainlink's Cross-Chain Interoperability Protocol (CCIP). The attack exploited a single-point-of-failure vulnerability due to KelpDAO's 1-of-1 validator configuration within the LayerZero network. Attackers corrupted RPC nodes and used DDoS attacks to force the system to rely on compromised nodes, allowing fraudulent messages. While LayerZero acknowledged a serious error in allowing its validator network to service high-value transactions with such a configuration, the incident highlighted critical security risks. This triggered a rapid migration wave. Starting with KelpDAO on May 6th, several major protocols—including Solv Protocol, Re, Tydro, Kraken, and Lombard—announced switching their cross-chain infrastructure exclusively to Chainlink CCIP. The combined value of these migrations is estimated to be around $40 billion. This movement followed earlier major adoptions by Coinbase (in late 2025) and Circle (in early 2024). Market sentiment reflected this shift, with LINK's price showing relative stability while ZRO (LayerZero's token) declined significantly. Data indicates a net outflow of approximately $20.1 billion from the LayerZero network over 30 days. The migration is largely driven by perceived security differences. Chainlink CCIP employs a decentralized oracle network as its default consensus layer, featuring multiple independent node operators, a separate Risk Management Network, and built-in safeguards like rate limits. In contrast, LayerZero's highly modular architecture offers flexibility but places more responsibility on application developers to configure security settings, a risk underscored by the KelpDAO incident. LayerZero has since apologized for its communication handling post-attack and stated the protocol itself was not compromised, but rather its Labs DVN's internal RPC was poisoned. An official post-mortem report with external security partners is forthcoming.

marsbit05/19 08:10

Following the KelpDAO Hack: $40 Billion in Assets Flee LayerZero, Chainlink Emerges as the Primary 'Beneficiary'

marsbit05/19 08:10

活动图片