News Heat Trend
Project Overview
CertiK, a blockchain security company founded in 2018, utilizes formal verification and AI technology in collaboration for its end-to-end blockchain security audit services. It mathematically validates the safety of smart contracts through a combination of formal and manual verification. Additionally, the company has developed "CertiK Chain", a security-focused blockchain designed to enhance the security of smart contracts.
Syndicate Loses ~$330,000 Due to Attack on Commons Cross-Chain Bridge
According to CertiK, Syndicate Protocol suffered an exploit due to a security breach in the Commons cross-chain bridge. The attacker exploited the vulnerability to acquire approximately 18.5 million SYND tokens, which were subsequently sold for roughly $330,000. The related funds have already been transferred to the Ethereum network via the cross-chain bridge. Syndicate’s official response states that it is investigating the security incident involving the Commons bridge. The team is tracking the attack and collaborating with security firms. It is also evaluating various options to compensate affected users. Syndicate holds sufficient token reserves to assist users who lost SYND.
CertiK Releases 2026 Global Digital Asset Regulation Report: AML Enforcement Intensifies, Smart Contract Audits Become Access Condition
Odaily News, Web3 security company CertiK has released its "2026 State of Digital Asset Regulation" report, systematically reviewing global regulatory trends. The report indicates that as of April 2026, regulatory frameworks in major jurisdictions such as the United States, the European Union, Hong Kong SAR, and Singapore have been largely established, and the industry is entering a phase of comprehensive compliance.The report shows that anti-money laundering (AML) enforcement has replaced securities classification as the primary regulatory risk. In the first half of 2025, global AML-related fines exceeded $900 million, making transaction monitoring capabilities a core compliance requirement. Meanwhile, smart contract security audits are evolving from industry best practices into access conditions, becoming a prerequisite for license approval and token listings. Additionally, global stablecoin regulatory frameworks are converging, with principles such as full reserve backing and licensed issuance becoming widespread, though cross-jurisdictional regulatory differences still pose compliance challenges.The report states that with regulatory convergence and strengthened enforcement, the industry has entered an "era of strong compliance." CertiK indicated that the core challenge for enterprises is shifting from "whether to comply" to "how to quickly build and implement compliance capabilities." Multi-jurisdictional licensing, AML investment, and continuous security audits are becoming fundamental entry requirements for institutional development.
France charges 88 suspects in crypto "wrench attack" cases, including over a dozen minors
the French National Organized Crime Prosecutor's Office (PNACO) issued a statement on Friday stating that France has launched judicial investigations into 12 cryptocurrency kidnapping cases orchestrated by organized crime groups, and has indicted 88 suspects, including more than 10 minors.According to statistics, since 2023, France has recorded 135 cryptocurrency-related attacks, including 18 in 2024, 67 in 2025, and 47 so far in 2026. The accused individuals face charges including kidnapping, illegal detention, extortion, and money laundering. Recently, police arrested six suspects in two operations targeting kidnapping cases, and all individuals are currently in preventive detention. CertiK blockchain intelligence analyst Jonathan Riss stated that the masterminds behind such criminal gangs are typically located outside the European Union.
CertiK Officially Announces Attendance at Consensus Miami: Driving Web3 Trust Upgrade Through Security
Odaily, According to sources, CertiK has confirmed its participation as a sponsor at Consensus Miami 2026. As the world's largest Web3 security company, CertiK plans to deeply engage in industry dialogue and ecosystem building through a series of activities.During the conference, CertiK will host and co-host two side events, inviting global founders, technical professionals, and industry representatives to discuss topics such as Web3 security, AI applications, and on-chain infrastructure. Founder and CEO Ronghui Gu will also participate in relevant roundtable forums to explore security and transparency in blockchain and financial infrastructure. Additionally, CertiK will set up a booth at the venue and conduct multiple fireside chats with partners, focusing on industry pain points including institutional adoption, risk visualization, and Web3 compliance implementation.Organized by CoinDesk, Consensus Miami 2026 will be held from May 5 to 7 in Miami, USA. It is expected to bring together over 20,000 industry participants globally, making it one of the most influential conferences in the crypto and Web3 industry.
CertiK: Phishing, Deepfakes, and Supply Chain Attacks Could Become the Biggest Crypto Security Threats in 2026
According to Natalie Newson, Senior Blockchain Investigator at CertiK, real-time deepfakes, phishing attacks, supply-chain compromises, and cross-chain vulnerabilities will be the primary drivers of cryptocurrency hacks in 2026. So far this year, the industry has lost over $600 million to hacking incidents—including the $293 million Kelp DAO exploit and the $280 million theft from Drift Protocol in April—both linked to a North Korean hacker group. Newson warns that the accelerated advancement of AI will make attack methods increasingly sophisticated, including more realistic deepfakes, autonomous attack agents, and “agent AIs” capable of automatically scanning smart contracts for vulnerabilities. However, AI can also serve as a defensive tool. CertiK advises investors to verify URL authenticity and store assets in cold wallets to mitigate risk.
France charges 88 suspects in crypto "wrench attack" cases, including over a dozen minors
the French National Organized Crime Prosecutor's Office (PNACO) issued a statement on Friday stating that France has launched judicial investigations into 12 cryptocurrency kidnapping cases orchestrated by organized crime groups, and has indicted 88 suspects, including more than 10 minors.According to statistics, since 2023, France has recorded 135 cryptocurrency-related attacks, including 18 in 2024, 67 in 2025, and 47 so far in 2026. The accused individuals face charges including kidnapping, illegal detention, extortion, and money laundering. Recently, police arrested six suspects in two operations targeting kidnapping cases, and all individuals are currently in preventive detention. CertiK blockchain intelligence analyst Jonathan Riss stated that the masterminds behind such criminal gangs are typically located outside the European Union.
Hyperbridge Gateway Contract Attacked; 1 Billion DOT Tokens Minted and Dumped on Ethereum
According to PeckShieldAlert monitoring, approximately 1 billion Polkadot (DOT) tokens have been minted and dumped on the Ethereum network. Details of the incident are still under further verification. According to CertiK monitoring, the Hyperbridge gateway contract was attacked; the attacker forged messages to tamper with the admin privileges of the Polkadot token contract on Ethereum, and profited approximately $237,000 by minting and selling 1 billion tokens.
Syndicate Loses ~$330,000 Due to Attack on Commons Cross-Chain Bridge
According to CertiK, Syndicate Protocol suffered an exploit due to a security breach in the Commons cross-chain bridge. The attacker exploited the vulnerability to acquire approximately 18.5 million SYND tokens, which were subsequently sold for roughly $330,000. The related funds have already been transferred to the Ethereum network via the cross-chain bridge. Syndicate’s official response states that it is investigating the security incident involving the Commons bridge. The team is tracking the attack and collaborating with security firms. It is also evaluating various options to compensate affected users. Syndicate holds sufficient token reserves to assist users who lost SYND.
France charges 88 suspects in crypto "wrench attack" cases, including over a dozen minors
the French National Organized Crime Prosecutor's Office (PNACO) issued a statement on Friday stating that France has launched judicial investigations into 12 cryptocurrency kidnapping cases orchestrated by organized crime groups, and has indicted 88 suspects, including more than 10 minors.According to statistics, since 2023, France has recorded 135 cryptocurrency-related attacks, including 18 in 2024, 67 in 2025, and 47 so far in 2026. The accused individuals face charges including kidnapping, illegal detention, extortion, and money laundering. Recently, police arrested six suspects in two operations targeting kidnapping cases, and all individuals are currently in preventive detention. CertiK blockchain intelligence analyst Jonathan Riss stated that the masterminds behind such criminal gangs are typically located outside the European Union.
CertiK: Phishing, Deepfakes, and Supply Chain Attacks Could Become the Biggest Crypto Security Threats in 2026
According to Natalie Newson, Senior Blockchain Investigator at CertiK, real-time deepfakes, phishing attacks, supply-chain compromises, and cross-chain vulnerabilities will be the primary drivers of cryptocurrency hacks in 2026. So far this year, the industry has lost over $600 million to hacking incidents—including the $293 million Kelp DAO exploit and the $280 million theft from Drift Protocol in April—both linked to a North Korean hacker group. Newson warns that the accelerated advancement of AI will make attack methods increasingly sophisticated, including more realistic deepfakes, autonomous attack agents, and “agent AIs” capable of automatically scanning smart contracts for vulnerabilities. However, AI can also serve as a defensive tool. CertiK advises investors to verify URL authenticity and store assets in cold wallets to mitigate risk.
North Korea’s Lazarus Group Launches macOS Malware Attack
According to CoinDesk, the North Korean hacking group Lazarus Group has launched a new macOS-targeted campaign dubbed “Mach-O Man,” aimed at executives and institutions within high-value sectors such as cryptocurrency and fintech. The attack employs a social engineering technique called “ClickFix” to trick victims into pasting commands into their Mac Terminal, thereby granting attackers access to corporate systems, SaaS platforms, and financial resources. CertiK researchers stated that “Mach-O Man” is a modular macOS malware toolkit developed by Lazarus Group, now also adopted by other cybercriminal groups. It often self-deletes before victims detect it, complicating attribution and detection. Additionally, attackers have already carried out this campaign by hijacking DeFi project domains and replacing legitimate Cloudflare messages with fake ones.
CertiK: Rhea Finance Hacked, ~$7.6M Lost
According to security firm CertiK (@CertiKAlert), the DeFi protocol Rhea Finance has been attacked. The attacker created a fake token contract and injected liquidity into a new liquidity pool, apparently aiming to mislead oracles and the verification layer, ultimately withdrawing approximately $7.6 million in assets.
Hyperbridge Gateway Contract Attacked; 1 Billion DOT Tokens Minted and Dumped on Ethereum
According to PeckShieldAlert monitoring, approximately 1 billion Polkadot (DOT) tokens have been minted and dumped on the Ethereum network. Details of the incident are still under further verification. According to CertiK monitoring, the Hyperbridge gateway contract was attacked; the attacker forged messages to tamper with the admin privileges of the Polkadot token contract on Ethereum, and profited approximately $237,000 by minting and selling 1 billion tokens.
CertiK Releases 2026 Global Digital Asset Regulation Report: AML Enforcement Intensifies, Smart Contract Audits Become Access Condition
Odaily News, Web3 security company CertiK has released its "2026 State of Digital Asset Regulation" report, systematically reviewing global regulatory trends. The report indicates that as of April 2026, regulatory frameworks in major jurisdictions such as the United States, the European Union, Hong Kong SAR, and Singapore have been largely established, and the industry is entering a phase of comprehensive compliance.The report shows that anti-money laundering (AML) enforcement has replaced securities classification as the primary regulatory risk. In the first half of 2025, global AML-related fines exceeded $900 million, making transaction monitoring capabilities a core compliance requirement. Meanwhile, smart contract security audits are evolving from industry best practices into access conditions, becoming a prerequisite for license approval and token listings. Additionally, global stablecoin regulatory frameworks are converging, with principles such as full reserve backing and licensed issuance becoming widespread, though cross-jurisdictional regulatory differences still pose compliance challenges.The report states that with regulatory convergence and strengthened enforcement, the industry has entered an "era of strong compliance." CertiK indicated that the core challenge for enterprises is shifting from "whether to comply" to "how to quickly build and implement compliance capabilities." Multi-jurisdictional licensing, AML investment, and continuous security audits are becoming fundamental entry requirements for institutional development.
France charges 88 suspects in crypto "wrench attack" cases, including over a dozen minors
the French National Organized Crime Prosecutor's Office (PNACO) issued a statement on Friday stating that France has launched judicial investigations into 12 cryptocurrency kidnapping cases orchestrated by organized crime groups, and has indicted 88 suspects, including more than 10 minors.According to statistics, since 2023, France has recorded 135 cryptocurrency-related attacks, including 18 in 2024, 67 in 2025, and 47 so far in 2026. The accused individuals face charges including kidnapping, illegal detention, extortion, and money laundering. Recently, police arrested six suspects in two operations targeting kidnapping cases, and all individuals are currently in preventive detention. CertiK blockchain intelligence analyst Jonathan Riss stated that the masterminds behind such criminal gangs are typically located outside the European Union.
CertiK Officially Announces Attendance at Consensus Miami: Driving Web3 Trust Upgrade Through Security
Odaily, According to sources, CertiK has confirmed its participation as a sponsor at Consensus Miami 2026. As the world's largest Web3 security company, CertiK plans to deeply engage in industry dialogue and ecosystem building through a series of activities.During the conference, CertiK will host and co-host two side events, inviting global founders, technical professionals, and industry representatives to discuss topics such as Web3 security, AI applications, and on-chain infrastructure. Founder and CEO Ronghui Gu will also participate in relevant roundtable forums to explore security and transparency in blockchain and financial infrastructure. Additionally, CertiK will set up a booth at the venue and conduct multiple fireside chats with partners, focusing on industry pain points including institutional adoption, risk visualization, and Web3 compliance implementation.Organized by CoinDesk, Consensus Miami 2026 will be held from May 5 to 7 in Miami, USA. It is expected to bring together over 20,000 industry participants globally, making it one of the most influential conferences in the crypto and Web3 industry.
Related news
Syndicate Loses ~$330,000 Due to Attack on Commons Cross-Chain Bridge
According to CertiK, Syndicate Protocol suffered an exploit due to a security breach in the Commons cross-chain bridge. The attacker exploited the vulnerability to acquire approximately 18.5 million SYND tokens, which were subsequently sold for roughly $330,000. The related funds have already been transferred to the Ethereum network via the cross-chain bridge. Syndicate’s official response states that it is investigating the security incident involving the Commons bridge. The team is tracking the attack and collaborating with security firms. It is also evaluating various options to compensate affected users. Syndicate holds sufficient token reserves to assist users who lost SYND.
CertiK Releases 2026 Global Digital Asset Regulation Report: AML Enforcement Intensifies, Smart Contract Audits Become Access Condition
Odaily News, Web3 security company CertiK has released its "2026 State of Digital Asset Regulation" report, systematically reviewing global regulatory trends. The report indicates that as of April 2026, regulatory frameworks in major jurisdictions such as the United States, the European Union, Hong Kong SAR, and Singapore have been largely established, and the industry is entering a phase of comprehensive compliance.The report shows that anti-money laundering (AML) enforcement has replaced securities classification as the primary regulatory risk. In the first half of 2025, global AML-related fines exceeded $900 million, making transaction monitoring capabilities a core compliance requirement. Meanwhile, smart contract security audits are evolving from industry best practices into access conditions, becoming a prerequisite for license approval and token listings. Additionally, global stablecoin regulatory frameworks are converging, with principles such as full reserve backing and licensed issuance becoming widespread, though cross-jurisdictional regulatory differences still pose compliance challenges.The report states that with regulatory convergence and strengthened enforcement, the industry has entered an "era of strong compliance." CertiK indicated that the core challenge for enterprises is shifting from "whether to comply" to "how to quickly build and implement compliance capabilities." Multi-jurisdictional licensing, AML investment, and continuous security audits are becoming fundamental entry requirements for institutional development.
France charges 88 suspects in crypto "wrench attack" cases, including over a dozen minors
the French National Organized Crime Prosecutor's Office (PNACO) issued a statement on Friday stating that France has launched judicial investigations into 12 cryptocurrency kidnapping cases orchestrated by organized crime groups, and has indicted 88 suspects, including more than 10 minors.According to statistics, since 2023, France has recorded 135 cryptocurrency-related attacks, including 18 in 2024, 67 in 2025, and 47 so far in 2026. The accused individuals face charges including kidnapping, illegal detention, extortion, and money laundering. Recently, police arrested six suspects in two operations targeting kidnapping cases, and all individuals are currently in preventive detention. CertiK blockchain intelligence analyst Jonathan Riss stated that the masterminds behind such criminal gangs are typically located outside the European Union.
CertiK Officially Announces Attendance at Consensus Miami: Driving Web3 Trust Upgrade Through Security
Odaily, According to sources, CertiK has confirmed its participation as a sponsor at Consensus Miami 2026. As the world's largest Web3 security company, CertiK plans to deeply engage in industry dialogue and ecosystem building through a series of activities.During the conference, CertiK will host and co-host two side events, inviting global founders, technical professionals, and industry representatives to discuss topics such as Web3 security, AI applications, and on-chain infrastructure. Founder and CEO Ronghui Gu will also participate in relevant roundtable forums to explore security and transparency in blockchain and financial infrastructure. Additionally, CertiK will set up a booth at the venue and conduct multiple fireside chats with partners, focusing on industry pain points including institutional adoption, risk visualization, and Web3 compliance implementation.Organized by CoinDesk, Consensus Miami 2026 will be held from May 5 to 7 in Miami, USA. It is expected to bring together over 20,000 industry participants globally, making it one of the most influential conferences in the crypto and Web3 industry.
CertiK: Phishing, Deepfakes, and Supply Chain Attacks Could Become the Biggest Crypto Security Threats in 2026
According to Natalie Newson, Senior Blockchain Investigator at CertiK, real-time deepfakes, phishing attacks, supply-chain compromises, and cross-chain vulnerabilities will be the primary drivers of cryptocurrency hacks in 2026. So far this year, the industry has lost over $600 million to hacking incidents—including the $293 million Kelp DAO exploit and the $280 million theft from Drift Protocol in April—both linked to a North Korean hacker group. Newson warns that the accelerated advancement of AI will make attack methods increasingly sophisticated, including more realistic deepfakes, autonomous attack agents, and “agent AIs” capable of automatically scanning smart contracts for vulnerabilities. However, AI can also serve as a defensive tool. CertiK advises investors to verify URL authenticity and store assets in cold wallets to mitigate risk.
North Korea’s Lazarus Group Launches macOS Malware Attack
According to CoinDesk, the North Korean hacking group Lazarus Group has launched a new macOS-targeted campaign dubbed “Mach-O Man,” aimed at executives and institutions within high-value sectors such as cryptocurrency and fintech. The attack employs a social engineering technique called “ClickFix” to trick victims into pasting commands into their Mac Terminal, thereby granting attackers access to corporate systems, SaaS platforms, and financial resources. CertiK researchers stated that “Mach-O Man” is a modular macOS malware toolkit developed by Lazarus Group, now also adopted by other cybercriminal groups. It often self-deletes before victims detect it, complicating attribution and detection. Additionally, attackers have already carried out this campaign by hijacking DeFi project domains and replacing legitimate Cloudflare messages with fake ones.