hodler

16 May 2026, 00:55

BlackRock Moves $140M in Bitcoin Off Coinbase, Signaling Long-Term Hold

BitcoinWorld BlackRock Moves $140M in Bitcoin Off Coinbase, Signaling Long-Term Hold Asset management giant BlackRock has withdrawn 1,768 Bitcoin, valued at approximately $140.3 million, from the Coinbase exchange, according to data from on-chain analytics platform Onchain Lens. The transaction, executed roughly five hours ago, is the latest significant movement of digital assets by the world’s largest asset manager. On-Chain Signal: From Exchange to Custody Large withdrawals from centralized exchanges are widely interpreted by market analysts as a signal of long-term holding intent. When assets are moved to private wallets or custody solutions, they are typically removed from the liquid supply available for trading, reducing immediate sell pressure. This particular transaction aligns with BlackRock’s established pattern of moving Bitcoin acquired for its spot ETF (IBIT) into secure, institutional-grade custody, likely with Coinbase Custody or a similar qualified custodian. The timing of the move is notable. It follows a period of relative price consolidation for Bitcoin and occurs as institutional interest in digital assets continues to mature. BlackRock’s spot Bitcoin ETF, which launched in January 2024, has accumulated over $20 billion in assets under management, making it one of the most successful ETF launches in history. Market Implications and Context While a single withdrawal of this size does not guarantee a market-moving event, it reinforces a broader trend: major financial institutions are not merely speculating on Bitcoin’s price but are building long-term positions. By moving coins off exchanges, these entities reduce the available supply that can be quickly sold, a factor that some analysts argue supports price stability over the long term. What This Means for Retail Investors For individual investors, this transaction serves as a data point in understanding institutional behavior. It suggests that BlackRock’s conviction in Bitcoin as an asset class remains strong, even amid regulatory uncertainty and market volatility. However, it is important to note that on-chain data, while transparent, does not reveal the specific custody arrangement or the ultimate beneficiary of the funds. Conclusion BlackRock’s $140.3 million Bitcoin withdrawal from Coinbase is a routine but significant operational move that aligns with a long-term holding strategy. It underscores the growing institutionalization of Bitcoin and provides on-chain evidence that major players are accumulating rather than distributing. For readers, this event reinforces the importance of tracking exchange flows as a key metric for gauging market sentiment and supply dynamics. FAQs Q1: Why is a Bitcoin withdrawal from an exchange considered bullish? When Bitcoin is moved from an exchange to a private wallet, it is generally assumed the holder intends to keep it for the long term, reducing the available supply for immediate sale. This is often interpreted as a signal of confidence in the asset’s future value. Q2: Does this mean BlackRock is buying more Bitcoin? Not necessarily. The withdrawal could be a routine rebalancing of custody, moving existing holdings from a trading account to a long-term storage solution. However, it does indicate that BlackRock is not selling its current position. Q3: How can I track large Bitcoin movements like this? On-chain analytics platforms such as Onchain Lens, Whale Alert, Glassnode, and CoinMetrics provide real-time alerts and dashboards for tracking large transactions (commonly called ‘whale movements’) across the Bitcoin blockchain. This post BlackRock Moves $140M in Bitcoin Off Coinbase, Signaling Long-Term Hold first appeared on BitcoinWorld .

16 May 2026, 00:52

Node-ipc supply chain attack targets crypto devs

Three poisoned versions of node-ipc went live on the npm registry on May 14, according to SlowMist. Attackers hijacked a dormant maintainer account and pushed code designed to siphon developer credentials, private keys, exchange API secrets, the works, straight out of .env files. node-ipc is a popular Node.js package that lets different programs talk to each other on the same machine, or sometimes across a network. SlowMist catches the breach Blockchain security firm, SlowMist, spotted the breach through their MistEye threat intel system. Versions 9.1.6, 9.2.3, and 12.0.1 MistEye found three malicious versions including: Version 9.1.6. Version 9.2.3. Version 12.0.1. All of the above verions carried the same obfuscated 80 KB payload. Node-ipc handles inter-process communication in Node.js. It basically helps Node.js programs send messages back and forth. Over 822,000 people download it each week. Node-ipc is used all over the crypto space. It’s used in the tools developers use to build dApps , in the systems that automatically test and deploy code (CI/CD), and in everyday developer tools. Each infected version had the same hidden malicious code bolted onto it. The moment any program loaded node-ipc, the code ran automatically. Screenshot from MistyEye showing malicious node-ipc packages. Source: SlowMist via X. Researchers at StepSecurity figured out how the attack happened. The original developer of node-ipc had an email address tied to the domain atlantis-software[.]net. However, the domain expired on January 10, 2025. On May 7, 2026, the attacker bought the same domain through Namecheap, which gave them control of the developer’s old email. From there, they just hit “forgot password” on npm, reset it, and walked right in with full permission to publish new versions of node-ipc. The real developer had no clue any of this was happening. The malicious versions stayed live for about two hours before removal. The stealer looks for 90+ credential types The embedded payload hunts for over 90 types of developer and cloud credentials. AWS tokens, Google Cloud and Azure secrets, SSH keys, Kubernetes configs, GitHub CLI tokens, all on the list. For crypto devs , the malware specifically raids .env files. Those usually hold private keys, RPC node credentials, and exchange API secrets. To sneak the stolen data out, the payload uses DNS tunneling. It basically hides the files inside normal-looking internet lookup requests. Most network security tools don’t catch that. Security teams are saying any project that ran npm install or had auto-updated dependencies during that two hour window should assume compromise. Immediate steps, per guidance from SlowMist: Check lock files for node-ipc versions 9.1.6, 9.2.3, or 12.0.1. Roll back to the last version you know is safe. Change every credential that might have leaked. Supply chain attacks on npm have become a regular thing in 2026. Crypto projects get hit harder than most because stolen logins can be turned into stolen money fast. If you're reading this, you’re already ahead. Stay there with our newsletter .

16 May 2026, 00:00

Ethereum whale rotates $50 mln into BNB: Strategic positioning?

Whale accumulation may be early signal of relative strength shift for BNB/ETH this Q2.

15 May 2026, 23:35

Grayscale Files Second Amendment for Spot BNB ETF with SEC

BitcoinWorld Grayscale Files Second Amendment for Spot BNB ETF with SEC Grayscale Investments has submitted a second amendment to its S-1 registration statement for a spot BNB exchange-traded fund (ETF) to the U.S. Securities and Exchange Commission (SEC), according to Bloomberg ETF analyst James Seyffart. The filing represents the latest step in Grayscale’s ongoing effort to bring a regulated investment vehicle tied directly to Binance’s native token to the U.S. market. Background and Regulatory Context The amended S-1 filing follows Grayscale’s initial application earlier this year and a first amendment submitted in recent months. Spot crypto ETFs, which hold the underlying asset directly rather than futures contracts, have become a focal point for asset managers seeking to offer mainstream investors exposure to digital assets. The SEC has approved spot Bitcoin and Ethereum ETFs in 2024, setting a precedent for other cryptocurrencies, though the agency has not yet signaled a clear path for tokens like BNB. BNB, the native token of the Binance ecosystem, is classified by some regulators as a security, which could complicate approval. The SEC’s ongoing litigation with Binance and its founder Changpeng Zhao adds further uncertainty. Grayscale’s amended filing may attempt to address specific regulatory concerns, such as custody, market manipulation risks, and investor protections. Market Implications and Analyst Views The move signals Grayscale’s confidence in eventually securing approval, though analysts caution that the timeline remains unclear. “The SEC has been deliberate in its approach to crypto ETFs, and BNB faces unique regulatory hurdles,” said Seyffart in a social media post. “This amendment shows Grayscale is willing to engage with the SEC’s feedback, but approval is not guaranteed.” If approved, a spot BNB ETF would provide institutional and retail investors with regulated exposure to BNB without the need to directly purchase or custody the token. It could also boost BNB’s liquidity and price stability, though market reactions have been muted so far as the filing remains in the review process. What This Means for Investors For investors, the filing represents a continued expansion of the crypto ETF ecosystem beyond Bitcoin and Ethereum. However, the SEC’s stance on BNB’s legal status will be a critical factor. The agency has previously argued that BNB is a security in its lawsuit against Binance, a position that could delay or derail ETF approval. Grayscale’s amendments may attempt to structure the product in a way that mitigates these concerns, such as using a third-party custodian or implementing enhanced surveillance-sharing agreements. Conclusion Grayscale’s second amendment to its spot BNB ETF S-1 filing is a procedural but notable step in the regulatory journey for a BNB-based investment product. While the SEC’s approval is far from certain, the filing demonstrates ongoing demand for diversified crypto ETFs and Grayscale’s commitment to expanding its product lineup. Investors should monitor SEC announcements and the outcome of the Binance lawsuit for further clarity. FAQs Q1: What is a spot BNB ETF? A spot BNB ETF is an exchange-traded fund that directly holds BNB tokens, allowing investors to gain exposure to BNB’s price without buying or storing the cryptocurrency themselves. Q2: Why did Grayscale file an amendment to its S-1? Amendments are common during SEC review. Grayscale likely submitted changes to address the SEC’s concerns regarding custody, market manipulation, or the legal classification of BNB as a security. Q3: When could a spot BNB ETF be approved? There is no set timeline. The SEC has 240 days to review an S-1 filing after it is deemed complete, but the process can be extended. Approval depends on the SEC’s assessment of BNB’s regulatory status and market safeguards. This post Grayscale Files Second Amendment for Spot BNB ETF with SEC first appeared on BitcoinWorld .

15 May 2026, 22:49

Winklevoss twins inject $100M in bitcoin as Gemini posts 42% revenue jump

Gemini brought in $50.3 million in Q1 revenue, up 42% from the same stretch last year, and announced a $100 million investment from Winklevoss Capital Fund paid entirely in bitcoin. Shares jumped as much as 30% in after hours trading. The quarter also marked the first time Gemini broke out operating metrics for its prediction markets business, which went live in December 2025. Credit card income triples while exchange volumes collapse The exchange services and interest revenue climbed 122% year over year to $24.5 million, now making up 49% of total revenue compared with 31% a year earlier. The Gemini Credit Card revenue hit $14.7 million, almost triple the year-ago figure. The company added about 13,100 new cardholders during the quarter, more than double the ~6,000 sign ups in Q1 2025. Managed card receivables grew from $69 million to $217 million over the same period Exchange revenue, meanwhile, dropped 27% to $17.2 million as spot trading volumes fell off a cliff. Total trading volume on the platform declined to $6.3 billion from $13.5 billion in Q1 2025. OTC revenue partially made up for the drop, jumping to $6.3 million from just $100,000 a year earlier. Bigger institutional trades and the expansion of Gemini’s electronic OTC platform helped. Gemini’s prediction markets generated $400,000 in revenue during Q1. 20,000+ users have traded on the platform, with over 100 million contracts executed since December. For reference, Kalshi and Polymarket each regularly process daily volumes between $300,000 and $500,000. Gemini said April prediction market volume rose an additional 78% from March. Winklevoss twins go all in with bitcoin Winklevoss Capital purchased 7,142,857 shares of Gemini Class A common stock at $14 per share, funded in bitcoin . Tyler Winklevoss, Gemini’s CEO, said in the earnings release that the market has significantly undervalued Gemini and that the capital would support the company’s shift from a crypto company into a markets company. That change gained regulatory backing in April when Gemini received a Derivatives Clearing Organization license from the CFTC. Cameron Winklevoss, the company’s president, said the license moves Gemini closer to offering futures, options, and perpetual contracts. Gemini’s losses shrink but still hit nine figures Gemini posted a net loss of $109 million. That’s an improvement from $149.3 million a year earlier, but still a deep hole. Total operating expenses rose 73% to $144.5 million, driven by compensation (up 91%), marketing (up 111%), and credit card portfolio costs including a $4.6 million provision for credit losses and a $4.1 million fraud reserve. Gemini completed a reduction in force during the quarter. Excluding stock compensation and severance costs, cash compensation expenses rose just 6% year over year to $34.8 million. Adjusted EBITDA improved modestly to negative $59.9 million from negative $61.6 million in Q1 2025. The exchange’s monthly transacting users reached 589,000, up 17% from a year ago. Assets on the platform totaled $11.1 billion, down from $14.2 billion a year earlier due to lower crypto valuations. In February 2026, the company announced Gemini 2.0, a restructuring that included exiting the UK, EU, and Australian markets and cutting 25% of its workforce. The stock fell nearly 9% on that news, according to a class-action complaint filed in New York’s Southern District alleging the company misled investors ahead of and after its September 2025 IPO. Several analysts downgraded the stock in the wake of that restructuring. Evercore ISI cut its rating to in-line and halved its price target to $10, while Truist moved to hold and lowered its target to $7, citing concerns about solvency after the international exit. Wednesday’s results and the Winklevoss capital injection appear aimed at resetting that narrative. Investors will be watching whether the credit card and derivatives businesses can sustain enough growth to close the gap on $144.5 million in quarterly operating costs. Don’t just read crypto news. Understand it. Subscribe to our newsletter. It's free .

15 May 2026, 21:21

ZachXBT’s Explosive Claims Send LAB Tumbling Over 30% in One Day

Crypto investigator ZachXBT has accused the team behind LAB of using opaque OTC deals, insider-controlled supply, coordinated market-making activity, and hidden unlock structures to drive the token’s recent rise to a nearly $6 billion fully diluted valuation. In his latest post on X, ZachXBT claimed LAB represents “everything wrong” with the current centralized exchange token environment, where retail investors allegedly have little visibility into token allocations and insider agreements. The LAB token crashed by over 30% in 24 hours. LAB Faces Fresh Scrutiny According to the investigator, LAB was launched in October 2025 by Vova Sadkov and Mark after their previous project, Eesee (ESE), reportedly left many investors dissatisfied once the team moved on. He explained that there is still no clear public breakdown of LAB’s token distribution, as CoinGecko, RootData, and CoinMarketCap all display different circulating supply figures, while LAB’s own documents reportedly provide no detailed allocation data. ZachXBT said his on-chain analysis indicates insiders likely control more than 95% of the token supply. He also alleged that the LAB team unilaterally changed vesting conditions for Legion public sale participants from a three-month cliff to a nine-month cliff, as he cited an email screenshot shared by a user. Separate complaints from creators who claimed they were still waiting for marketing payouts months later were also mentioned in the findings. ZachXBT also shared details from a draft private loan contract tied to The Lab Management Ltd., a British Virgin Islands company allegedly connected to Vladimir Sadkov. The agreement reportedly offered loans with 7.5% monthly interest over six months, with repayment in LAB tokens at market price in the event of default. The wallet connected to the contract was allegedly later used for public LAB buybacks and linked on-chain to another wallet involved in a separate Wildcat loan. Hidden OTC Deals and Insider Activity ZachXBT also claimed LAB-related funds were sent to exchange accounts allegedly linked to Sadkov, which had earlier received deposits connected to Eesee. The investigator even went on to allege that several OTC and loan arrangements had been privately offered since January 2026. According to screenshots and claims shared in the post, some deals included 60% discounted OTC allocations with lockups, guaranteed discount structures recalculated monthly, and influencer-focused allocations with discounts reaching as high as 80%. Some agreements purportedly required influencers to publicly support LAB before their tokens unlocked. These hidden arrangements created supply risks that retail traders could not track publicly, according to ZachXBT. He also linked one signer associated with LAB multisig wallets to an insider believed to be connected to earlier RIVER token manipulation activity. As per the findings, insiders deposited 226 million LAB tokens into Bitget-linked addresses between March and April 2026 before roughly 100 million LAB tokens were withdrawn between May 11 and 12 to ten separate wallets. ZachXBT said most LAB spot activity appeared concentrated on Bitget, while Binance and Gate were also used for derivatives and Alpha markets. He called on exchanges including Bitget, Binance, and Gate to freeze alleged insider profits or delist the token altogether. ZachXBT had raised similar concerns around the SIREN token earlier this year after the asset surged from around $0.40 on March 10 to an all-time high of $3.65 by March 22 before eventually collapsing to $0.53. The post ZachXBT’s Explosive Claims Send LAB Tumbling Over 30% in One Day appeared first on CryptoPotato .