Trezor and Ledger users targeted by scammers, fake official letters used to conduct seed phrase phishing

Fantasy.top founder denies "soft Rug Pull" allegations, states investor funds were not used

Fantasy.top faces accusations from angel investors, claiming the team went silent and refused to refund $50,000, sparking "soft Rug Pull" allegations. Founder Travis Bickle countered that the company operates based on product revenue and has not used investors' funds. Several well-known investors also reported experiencing similar situations.

Indian police arrest suspect involved in GainBitcoin Ponzi scheme at Mumbai airport

Gate News Report, March 11 — India's Central Investigation Bureau (CBI) announced the arrest of Darwin Labs co-founder and CTO Ayush Varshney at Mumbai Airport on suspicion of involvement in the GainBitcoin Ponzi scheme. It is reported that Varshney was attempting to leave India at the time. Investigations revealed that the scheme was operated by Variabletech Pte. Ltd., which attracted investors by promising high returns on crypto investments. Law enforcement officials accused Darwin Labs of developing and deploying critical technological infrastructure for the scheme, including the MCAP cryptocurrency token and ERC-20 smart contracts. Additionally, Darwin also provided technology for GBMiners.com Bitcoin mining platform, BitCoin Payment Gat

Ledger Security Team Discovers MediaTek Processor Vulnerability That Could Lead to Wallet Mnemonic Theft

The team behind the crypto wallet Ledger has discovered a vulnerability in the secure boot chain of MediaTek processors. Attackers can extract encryption keys through physical access, affecting approximately 25% of Android phones. The vulnerability can be fixed with a patch, but it highlights the risks of storing keys on insecure devices. Users are advised to update promptly.

AI code failure: Stop idolizing AI; Claude's coding caused a DeFi platform to lose $1.78 million

Moonwell Lending Protocol experienced a security incident on-chain due to an oracle configuration error, leading to a severe underestimation of cbETH asset prices. This event was caused by a logic error in AI-generated code, which was exploited by liquidation bots for profit. Although no traditional hacking was involved, users suffered a loss of $1.78 million. The incident highlights the oversight in AI programming review processes and emphasizes the importance of human oversight in the context of technological automation.

The Ministry of Industry and Information Technology releases OpenClaw intelligent agent security risk prevention recommendations, proposing four response strategies for financial transaction scenarios.

On March 11, the Ministry of Industry and Information Technology issued recommendations on preventing security risks associated with the open-source intelligent agent OpenClaw, emphasizing its potential risks in financial transactions. The "Six Musts and Six Don'ts" response strategy was proposed, such as implementing network isolation, secondary confirmation, and strengthening supply chain audits to prevent erroneous transactions and account hijacking.

Aave experiences $27 million in abnormal liquidations, with 34 accounts being liquidated; the official promises full compensation

Aave experienced an abnormal liquidation on March 11th, with approximately $27 million in lending positions liquidated due to an internal security module CAPO parameter misconfiguration, resulting in a 2.85% underestimation of wstETH valuation. The liquidation affected 34 accounts, with about 10,938 wstETH forcibly closed. Chaos Labs has committed to fully compensate affected users and emphasized the need to improve risk management mechanisms. This incident highlights the risks posed by internal configuration errors within decentralized finance systems.