News linked to both this project and an event.
Syscoin has released a security incident report detailing the UTXO-to-NEVM bridge vulnerability. According to the report, this incident resulted in the unauthorized release of approximately 5 billion SYS tokens on the UTXO side. The affected funds have since been returned to the official recovery address and permanently destroyed using the standard OP_RETURN mechanism, rendering them unusable by the protocol. As a result, the on-chain SYS supply has reverted to its expected value. The bridge functionality remains suspended while the team completes its final review and remediation efforts.
Humanity announced the independent investigation results from Quantstamp, stating that the security incident—exceeding $31 million—originated from a phishing attack that led to the leakage of private keys. The attackers subsequently gained control of the smart contract and dumped tokens; the tools and tactics employed exhibit characteristics commonly associated with North Korean hacker groups.
Humility Protocol released a security incident update on the X platform, stating that its H token suffered a coordinated attack on the Ethereum and BSC chains yesterday, with confirmed losses exceeding $36 million in stolen and dumped assets.Preliminary investigations indicate the incident originated from a compromised employee computer, which led to the leakage of private keys for the multi-signature wallet controlling the Hyperlane Bridge ProxyAdmin. Specifically, the attacker obtained 3 out of 6 private keys of the Gnosis Safe wallet on the Ethereum chain, transferred ownership of the ProxyAdmin to a wallet under their control, upgraded the bridge contract to a malicious implementation, and subsequently transferred approximately 141.2 million H tokens in a single transaction.Simultaneously, the attacker also gained control of 3 out of 5 private keys of the Safe wallet on the BSC chain, took over the ProxyAdmin using the same method, deployed a malicious contract with unlimited minting functionality, and minted 200 million H tokens in two separate transactions to their own wallet.Humility stated that it has suspended all deposit and withdrawal operations on the affected bridge services and is collaborating with partners such as exchanges to mitigate losses. Meanwhile, it is cooperating with the police investigation and attempting to recover part of the stolen funds.
Cryptocurrency exchange Backpack announced the launch of Backpack Securities, enabling investors to buy, hold, and sell real stocks backed by regulated U.S. securities infrastructure—entitling them to dividends, corporate actions, and rights under systems such as ACATS and DTCC. Additionally, positions can be converted into tokenized securities freely transferable and tradable 24/7 on public blockchains like Solana. Orders are routed directly into U.S. equity market liquidity pools, with execution prices reflecting real-time market prices.
The Cosmos ecosystem’s cross-chain bridge Gravity Bridge was reportedly attacked due to a leaked signature key, resulting in approximately $5.4 million in stolen assets. The official team has confirmed the security incident and has urgently suspended bridging services to conduct an investigation. Validators have also been instructed to halt their validator nodes and coordinators. It is reported that the bridge’s contract keys may have been compromised.
According to the South China Morning Post, Hong Kong’s Financial Secretary and Secretary for Financial Services and the Treasury, Christopher Hui, stated that gold can serve as a potential bridge between traditional finance and new finance. He emphasized that Hong Kong needs to provide more development opportunities for the digital asset market to support its sustainable growth. He also noted that, given the “convergence” trend between traditional and innovative finance, Hong Kong has opted not to establish a separate digital asset regulatory authority. Hui pointed out that both gold ETFs and blockchain-based tokenized gold products are already available in the market. Earlier, HSBC and Hang Seng Investment launched Hong Kong’s first tokenized, non-listed Hang Seng Gold ETF product on HashKey Exchange in April.
Sky (formerly MakerDAO) announced on X that the cross-chain bridging of USDS OFT on the Solana network, which was suspended due to the security review of the rsETH vulnerability incident, has resumed operation.Sky emphasized that during the review, its USDS-related contracts and the protocol itself were not affected. USDS has always maintained a fully overcollateralized state as designed, which can be verified in real-time on-chain. The suspension was a precautionary security measure. Currently, the bridging function on the Solana side has been reopened, while the Avalanche-related bridging will resume after further review is completed.
According to CertiK, Syndicate Protocol suffered an exploit due to a security breach in the Commons cross-chain bridge. The attacker exploited the vulnerability to acquire approximately 18.5 million SYND tokens, which were subsequently sold for roughly $330,000. The related funds have already been transferred to the Ethereum network via the cross-chain bridge. Syndicate’s official response states that it is investigating the security incident involving the Commons bridge. The team is tracking the attack and collaborating with security firms. It is also evaluating various options to compensate affected users. Syndicate holds sufficient token reserves to assist users who lost SYND.
According to CoinDesk, Kelp DAO’s LayerZero-based cross-chain bridge was attacked, with the attacker withdrawing 116,500 rsETH—worth approximately $292 million at current prices, or roughly 18% of its circulating supply. This incident has become the largest DeFi attack of 2026 to date. In response, Aave, SparkLend, and Fluid have frozen rsETH-related markets, and Lido Finance has suspended new deposits into its earnETH product. Kelp DAO stated it is jointly investigating the incident with LayerZero, auditing firms, and external security experts.
Decentralized GPU cloud computing infrastructure platform Aethir confirmed that its Ethereum-related bridge contract was attacked. The team promptly disconnected the affected contract and, in collaboration with major exchanges, blacklisted the hacker’s wallet, limiting losses to under $90,000. Earlier, blockchain security firm PeckShield estimated losses at $400,000. The attacker exploited Aethir’s cross-chain smart contract, AethirOFTAdapter, to transfer stolen funds from BNB Chain to Tron. Aethir stated that its Ethereum mainnet ATH token supply remains unaffected. It plans to release a detailed compensation plan and incident analysis next week and will collaborate with exchanges including Binance, Upbit, and Bithumb to freeze funds. Web3 security platform ZeroShadow is assisting with the investigation. In 2025, Aethir achieved $127.8 million in revenue and deployed over 440,000 GPU containers globally.
According to Cointelegraph, blockchain analytics firm Chainalysis released a report stating that stablecoin-adjusted transaction volume is projected to reach $719 trillion by 2035—marking a substantial increase from $28 trillion in 2025. If two major macro catalysts align, this figure could double further to $15 trillion, surpassing the current annual global cross-border payment volume of approximately $10 trillion. The two catalysts are: (1) the transfer of over $100 trillion in wealth from the Baby Boomer generation to younger, crypto-native generations; and (2) stablecoins fully replacing traditional payment rails as the default payment infrastructure. Rachael Lucas, an analyst at Australian crypto exchange BTC Markets, noted that strategic moves—including Stripe’s acquisition of Bridge and Mastercard’s partnership with BVNK—are concrete steps forward. Coupled with regulatory clarity provided by the GENIUS Act, institutional participation is expected to expand significantly.