News linked to both this project and an event.
Coinbase has released a post-mortem report on the large-scale service outage that occurred on May 7, 2026. The disruption lasted approximately 8 hours, with full recovery taking about 12 hours. During this period, trading, deposits, withdrawals, and most core services were either unavailable or severely degraded.Coinbase stated that the outage was triggered by the simultaneous failure of multiple chillers in the cooling system of a data center within an Availability Zone (use1-az4) of the AWS us-east-1 region. This led to thermal shutdown protection for server racks, causing EC2 instances and EBS volumes to go offline, and impacting multiple internet services.During the recovery process, Coinbase's trading matching engine lost quorum after its cluster architecture, deployed within a single AWS data center, lost the majority of its nodes. Emergency code adjustments and the formation of new node groups were required to restore operations, with market trading being gradually restarted throughout the recovery.Additionally, the AWS Managed Streaming for Kafka (MSK) service experienced a control plane failure, preventing automatic re-election of partition leaders. This further blocked order books, fee calculations, and parts of the settlement and data streaming systems, expanding the overall impact. After Coinbase and the AWS engineering teams collaborated on manual partition migrations, the system gradually returned to normal.Coinbase indicated that this incident exposed deficiencies in its cross-Availability Zone automatic failover capabilities and the disaster recovery of managed middleware. The company will upgrade its cross-region hot standby architecture, strengthen regular disaster recovery drills, migrate its Kafka systems from a dual-AZ to a triple-AZ deployment, and work jointly with AWS to address root causes and implement improvements.
According to on-chain analyst PeckShield (@PeckShieldAlert), SlowMist’s threat intelligence system MistEye has detected a cross-registry supply chain attack targeting developers. Malicious packages have spread across three major registries—npm, PyPI, and Crates.io—comprising over 34 malicious packages and more than 384 related versions. The attack targets developer communities in cryptocurrency, DeFi, Solana, Sui/Move, and AI. It may lead to the theft of cryptocurrency wallets, SSH keys, cloud credentials, GitHub/AWS tokens, browser data, and other sensitive developer information. Some malicious payloads also attempt persistence via mechanisms including `.cursorrules`, `CLAUDE.md`, Git hooks, cron, systemd, and SSH. SlowMist recommends immediately removing affected packages, isolating compromised systems, rotating exposed credentials, rebuilding CI environments and developer machines from clean images, and conducting comprehensive reviews of GitHub, cloud, SSH, and wallet-related activities.
According to The Block, Amazon Web Services (AWS) has partnered with Coinbase and Stripe to launch Amazon Bedrock AgentCore Payments, enabling AI agents to conduct transactions using stablecoins. Coinbase stated that developers can build “agent-based payment” solutions using the x402 protocol, allowing AI agents to make micro-payments in USDC. This feature enables AI agents to instantly pay for web content, APIs, MCP servers, and other agents. AWS noted that developers can choose between Coinbase and Stripe wallets and fund those wallets using either stablecoins or fiat currency.
PrimePiper has launched an enterprise-grade prime broker platform for AI agents, designed to address challenges including fragmented account management, inadequate risk control, inability to reconcile across venues, and insufficient compliance auditing in AI-driven automated trading. According to the company, its infrastructure supports unified connectivity to multiple trading venues—including Hyperliquid, OKX, Tiger Brokers, and Interactive Brokers (IBKR). For risk control, PrimePiper offers enterprise-grade API key management, spending limits, and circuit-breaker mechanisms to constrain AI agent trading behavior. At the execution layer, it enables automated strategy execution via SDK or the Model Context Protocol (MCP). For compliance and auditing, it provides audit-grade reporting capabilities tailored for funds and traders. PrimePiper has been selected for the latest cohort of Founders Inc’s accelerator program; its product is currently in the Alpha stage. Team members hail from Galois Capital, Kraken, DRW, and AWS.