Hyperbridge reported that exploit losses linked to Polkadot and other chains increased to $2.5 million after a forensic review. The April 13 attack involved Ethereum, BNB Chain, Arbitrum, and others, with attackers stealing 245 ETH and minting 1 billion bridged DOT. The bridge remains paused until a security patch is released.
In 2024, 68% of cloud breaches were caused by compromised service accounts and forgotten API keys, not phishing or weak passwords. Unmanaged non-human identities, such as API tokens and OAuth grants, often go unnoticed. For each employee, there are 40 to 50 automated credentials, highlighting the need for better identity management to prevent data exposure.
Grinex, a Kyrgyzstan-based exchange sanctioned by the U.K. and U.S. last year, has suspended operations after a $13.74 million hack. The exchange attributed the attack to foreign intelligence agencies, claiming it was a large-scale cyber attack. The incident resulted in the theft of over $13.7 million, prompting the exchange to shut down amid ongoing security concerns.
XRP surged toward $1.51 on April 14, driven by easing geopolitical tensions and broader crypto market recovery. Market expert Sam Daodu highlights three key dates in the next two weeks that could influence XRP's future: the April 22 Iran–US ceasefire expiry, which could trigger a market decline if tensions escalate, and late April Senate markup of the CLARITY Act, crucial for XRP’s long-term outlook.
Threat actors are exploiting CVE-2024-3721, a medium-severity vulnerability, to hijack TBK DVRs and TP-Link Wi-Fi routers, creating a Mirai variant called Nexcorium. This attack, reported by Fortinet FortiGuard Labs and Palo Alto Networks, aims to build a DDoS botnet. The vulnerability affects end-of-life devices, highlighting ongoing security risks in outdated hardware.
Circle is facing a lawsuit following the Drift Protocol exploit, with claims that it failed to freeze stolen USDC. This case could set a precedent for how courts view the responsibilities of crypto infrastructure providers during hacks. The outcome may influence legal standards for stablecoin and bridge operators in similar situations.
Sam Altman’s World released a major protocol upgrade, introducing the World ID app. The upgrade aims to improve digital identity security by verifying human authenticity in AI environments. This development could enhance trust and security in online interactions, especially in decentralized applications and Web3 platforms, marking a significant step in digital identity solutions.
