hodler

7 May 2026, 03:30

TrustedVolumes Hacker Moves $5.87M in Stolen Funds to Ethereum

BitcoinWorld TrustedVolumes Hacker Moves $5.87M in Stolen Funds to Ethereum Blockchain security firm Beosin reported via X that the hacker responsible for the recent TrustedVolumes exploit has converted approximately $5.87 million in stolen assets into Ethereum (ETH). The funds are now distributed across two wallet addresses, holding 1,291.07 ETH and 1,222.12 ETH, respectively. Details of the Fund Movement The conversion of the stolen funds to ETH represents a common tactic among hackers seeking to consolidate assets or obfuscate their trail. Beosin’s alert confirms that the funds, originally stolen in a variety of tokens, were swapped on decentralized exchanges before being split between the two addresses. Blockchain security firm Blockaid had previously analyzed the attack, attributing it to a vulnerability in a smart contract associated with TrustedVolumes. Blockaid also suggested that the perpetrator may be the same individual behind last year’s exploit of the decentralized exchange aggregator 1inch. Connecting the Dots: A Pattern of Exploits? The potential link to the 1inch hack adds a layer of concern for the crypto community. In that incident, the attacker exploited a similar smart contract flaw, leading to significant losses. If the same actor is responsible, it suggests a targeted approach against protocols with specific vulnerabilities. The conversion to ETH also makes it easier for the hacker to eventually move funds through mixers or other privacy tools, a step often seen in high-profile crypto thefts. What This Means for Users and Investors For users of TrustedVolumes and similar platforms, this incident underscores the critical importance of smart contract audits and real-time monitoring. While the stolen funds are now in a more liquid form, security firms are tracking the wallets closely. The case also highlights the ongoing cat-and-mouse game between blockchain security teams and sophisticated attackers. Investors should remain vigilant and prioritize platforms with proven security records and transparent incident response protocols. Conclusion The conversion of stolen TrustedVolumes funds to ETH marks a significant step in the attacker’s post-exploit strategy. With security firms like Beosin and Blockaid actively monitoring the situation, the crypto community awaits further developments. This event serves as a stark reminder of the persistent risks in decentralized finance and the need for robust security measures. FAQs Q1: What is the total amount stolen from TrustedVolumes? The total stolen amount is approximately $5.87 million, which has now been converted to Ethereum and split between two wallets. Q2: How was the TrustedVolumes hack carried out? According to Blockaid, the attack exploited a vulnerable smart contract. Security analysts have suggested the same hacker may be responsible for a previous exploit on the 1inch platform. Q3: Are the stolen funds traceable? Yes, blockchain security firms are actively tracking the two Ethereum addresses holding the funds. However, the conversion to ETH could precede attempts to launder the assets through privacy tools or mixers. This post TrustedVolumes Hacker Moves $5.87M in Stolen Funds to Ethereum first appeared on BitcoinWorld .

7 May 2026, 01:25

Aave Completes Liquidation of Kelp DAO Hacker’s Remaining rsETH Position

BitcoinWorld Aave Completes Liquidation of Kelp DAO Hacker’s Remaining rsETH Position Aave has finalized the liquidation of the remaining rsETH collateral tied to the Kelp DAO hacker, marking a significant step in the recovery process following one of the largest DeFi exploits of the year. The liquidated assets have been transferred to a multisig wallet managed by DeFi United, a relief fund dedicated to compensating victims of crypto hacks. Details of the Liquidation According to The Block, the liquidation targeted the hacker’s remaining rsETH position on Aave, a leading decentralized lending protocol. The collateral was moved to a wallet named “Recovery Guardian,” which is controlled by DeFi United. This fund was established to assist victims of major DeFi exploits and coordinate asset recovery efforts. The funds will be used to compensate affected users and restore the rsETH collateral that was stolen during the Kelp DAO hack. The incident, which occurred earlier this year, resulted in losses of approximately $292 million. Background: The Kelp DAO Exploit The Kelp DAO hack exploited a vulnerability in a LayerZero-based bridge, allowing the attacker to mint 116,500 uncollateralized rsETH tokens. These tokens were then swapped for ETH on platforms including Aave and Compound, causing significant disruption to the protocol and its users. LayerZero is a cross-chain messaging protocol widely used in DeFi for bridging assets between different blockchains. The vulnerability highlighted ongoing security challenges in cross-chain infrastructure, which remains a prime target for attackers. Implications for DeFi Security The successful liquidation and recovery of assets demonstrate the growing effectiveness of coordinated responses to DeFi exploits. DeFi United, which manages the Recovery Guardian wallet, has been instrumental in tracking and reclaiming stolen funds. This case also underscores the importance of robust security audits and rapid incident response mechanisms in the DeFi ecosystem. For Aave, the liquidation process was conducted efficiently, minimizing further losses and reinforcing the protocol’s reliability. The move is likely to boost confidence among users and investors in the platform’s ability to handle security incidents. Conclusion Aave’s completion of the Kelp DAO hacker’s rsETH liquidation represents a positive outcome in a challenging situation. The recovery of funds through DeFi United’s Relief Guardian wallet provides a pathway for compensating affected users and restoring trust in the DeFi space. As cross-chain vulnerabilities continue to be a focus for security researchers, this case serves as a reminder of the need for vigilance and proactive measures in the rapidly evolving crypto landscape. FAQs Q1: What is the Recovery Guardian wallet? The Recovery Guardian is a multisig wallet managed by DeFi United, a relief fund established to recover and distribute assets stolen in DeFi hacks to affected users. Q2: How much was lost in the Kelp DAO hack? The Kelp DAO hack resulted in losses of approximately $292 million, making it one of the largest DeFi exploits in recent history. Q3: What vulnerability was exploited in the Kelp DAO hack? The attacker exploited a vulnerability in a LayerZero-based bridge, which allowed them to mint uncollateralized rsETH tokens and swap them for ETH on platforms like Aave and Compound. This post Aave Completes Liquidation of Kelp DAO Hacker’s Remaining rsETH Position first appeared on BitcoinWorld .

6 May 2026, 23:15

Bitcoin Faces Urgent Quantum Computing Threat, Project Eleven CEO Warns

BitcoinWorld Bitcoin Faces Urgent Quantum Computing Threat, Project Eleven CEO Warns Miami, Florida — The Bitcoin developer community must accelerate its response to the looming threat of quantum computers, according to Alex Pruden, CEO of quantum-resistance firm Project Eleven. Speaking at the Consensus conference in Miami, Pruden warned that the window for implementing protective measures is narrowing, even if the exact timeline for quantum computing commercialization remains uncertain. The Quantum Threat to Bitcoin’s Core Security Pruden’s central argument is that Bitcoin’s existing security framework, which relies on the Elliptic Curve Digital Signature Algorithm (ECDSA), is fundamentally vulnerable to future quantum computers. These advanced machines, once operational, could theoretically reverse-engineer private keys from public keys, a process that is currently computationally infeasible. Pruden stressed that waiting for certainty on when quantum computers will be ready is a dangerous strategy. He advocates for the proactive development and adoption of a post-quantum cryptography-based signature system to replace ECDSA before a crisis emerges. Billions at Risk The scale of the potential problem is staggering. According to Pruden, approximately $2.3 trillion in cryptocurrency is currently exposed to this vulnerability. This figure encompasses not just Bitcoin but a wide range of digital assets that rely on similar cryptographic foundations. The risk is not immediate, but the long lead time required to develop, test, and deploy a new signature scheme across a decentralized network like Bitcoin makes early action critical. A delayed response, Pruden argued, could create a scenario where an attacker could restore private keys from public keys alone, effectively draining wallets. Why This Matters Now The debate over quantum computing’s impact on cryptography is not new, but Pruden’s remarks add a sense of urgency from a key industry figure. While many experts believe that practical quantum computers capable of breaking Bitcoin’s encryption are still a decade or more away, the consensus is shifting toward the need for preparation. The Bitcoin network’s decentralized governance makes any significant protocol change slow and contentious. Beginning the process of designing and agreeing upon a post-quantum standard now could prevent a chaotic scramble later. This is not just a technical issue; it has profound implications for investor confidence, market stability, and the long-term viability of cryptocurrencies as a store of value. Conclusion Alex Pruden’s warning at Consensus serves as a timely reminder that the security assumptions underpinning the cryptocurrency ecosystem are not immutable. While the threat of quantum computers may feel distant, the time required to build consensus and implement a new cryptographic standard in a decentralized network is substantial. The call to action is clear: the Bitcoin community must begin serious work on a post-quantum future now, not when the first quantum attack is imminent. For investors and developers alike, this is a critical conversation that will shape the security landscape of digital assets for decades to come. FAQs Q1: What is the main threat quantum computers pose to Bitcoin? A1: Quantum computers, once sufficiently powerful, could break the Elliptic Curve Digital Signature Algorithm (ECDSA) that Bitcoin uses to secure transactions. This would allow an attacker to derive a private key from a public key, giving them control over the associated funds. Q2: How much cryptocurrency is currently at risk from this threat? A2: According to Alex Pruden, CEO of Project Eleven, approximately $2.3 trillion in cryptocurrency is exposed to this vulnerability, as most major cryptocurrencies rely on similar cryptographic systems. Q3: What is the proposed solution to this problem? A3: The proposed solution is to develop and implement a post-quantum cryptography-based signature system. This would replace the current ECDSA structure with an algorithm that is resistant to attacks from both classical and quantum computers. Project Eleven is one of the firms working on such a solution. This post Bitcoin Faces Urgent Quantum Computing Threat, Project Eleven CEO Warns first appeared on BitcoinWorld .

6 May 2026, 23:10

Custody Concentration Risk Emerges as Major Hurdle for Bitcoin Spot ETFs, Experts Warn

BitcoinWorld Custody Concentration Risk Emerges as Major Hurdle for Bitcoin Spot ETFs, Experts Warn Miami — The rapid growth of Bitcoin spot exchange-traded funds has opened the door for mainstream investors to gain exposure to cryptocurrency without directly holding digital assets. But according to industry experts speaking at the Consensus 2025 conference in Miami, unresolved structural issues — particularly around custody concentration — could limit broader adoption and introduce systemic risks. Advisor Hesitation Remains a Barrier Christopher Russell, Head of Strategy and Analytics at Calamos Investments, told attendees that despite the hype surrounding Bitcoin spot ETFs, their share of the total advisory market remains negligible. With the U.S. advisory industry managing approximately $146 trillion in assets, the current allocation to Bitcoin ETFs is still minimal. Russell explained that financial advisors are reluctant to recommend significant allocations to Bitcoin due to its notorious price volatility. The burden of explaining sudden double-digit percentage drops to clients, he said, creates a communication challenge that many advisors prefer to avoid entirely. This hesitation suggests that while ETFs have simplified access, they have not solved the fundamental trust and volatility issues that keep institutional capital on the sidelines. Custody Concentration: A Growing Systemic Risk A more technical but equally pressing concern was raised by Jean-Marie Mognetti, co-founder and CEO of CoinShares. Mognetti warned that the vast majority of Bitcoin spot ETFs rely on a single custodian — Coinbase — to hold their underlying Bitcoin reserves. This concentration creates a single point of failure that, if compromised, could trigger a cascading crisis across the entire ETF ecosystem. “The custody structure is fragile,” Mognetti said during a panel discussion. “We are seeing a huge concentration risk emerge because nearly every issuer chose the same custodian. That is not a diversified system.” His comments echo earlier warnings from regulatory observers who have questioned whether the ETF structure adequately addresses the unique operational risks of digital assets. Unlike traditional ETFs, where multiple custodians and clearinghouses provide redundancy, the Bitcoin ETF market has coalesced around a single provider. Why This Matters for Investors For retail and institutional investors alike, the custody concentration issue introduces a layer of counterparty risk that is often overlooked in ETF marketing materials. If Coinbase were to experience a security breach, insolvency, or regulatory shutdown, the underlying Bitcoin held for multiple ETFs could be frozen or lost simultaneously. This risk is compounded by the fact that many investors choose ETFs specifically to avoid the security responsibilities of self-custody. The situation mirrors earlier concerns in the crypto lending space, where concentration of assets with a few platforms led to cascading failures during the 2022 market downturn. While Coinbase is a publicly traded company with stronger compliance infrastructure than many of its predecessors, the single-custodian model remains a vulnerability that the industry has yet to address. Industry Responses and Potential Solutions Some ETF issuers have begun exploring multi-custodian arrangements, but progress has been slow. The operational complexity of splitting Bitcoin reserves across multiple custodians, each with different security protocols and insurance coverage, has deterred rapid adoption. Meanwhile, regulators including the Securities and Exchange Commission have not mandated diversification of custody, leaving the decision to individual fund managers. Mognetti suggested that the industry may need to develop standardized multi-custodian frameworks, similar to those used in traditional finance for asset-backed securities. Until then, he warned, the concentration risk will remain a hidden liability for ETF investors. Conclusion Bitcoin spot ETFs have undoubtedly lowered the barrier to entry for cryptocurrency investing, but the industry is still grappling with structural challenges that could undermine their long-term stability. Advisor reluctance driven by volatility and the concentration of custody with a single provider are two issues that require urgent attention. For investors, understanding these risks is essential before committing capital to what remains a maturing but still fragile market. FAQs Q1: Why is custody concentration a risk for Bitcoin spot ETFs? Most Bitcoin spot ETFs rely on Coinbase as their sole custodian. If Coinbase experiences a security breach, insolvency, or regulatory action, the Bitcoin reserves for multiple ETFs could be compromised simultaneously, creating a systemic risk. Q2: Are financial advisors recommending Bitcoin ETFs to clients? Generally, no. According to Calamos Investments’ Christopher Russell, advisors are hesitant due to Bitcoin’s extreme price volatility and the difficulty of explaining sharp losses to clients. The total allocation to Bitcoin ETFs remains tiny relative to the $146 trillion advisory market. Q3: What solutions are being considered for the custody problem? Some issuers are exploring multi-custodian arrangements to diversify risk, but progress is slow due to operational complexity. Industry leaders like CoinShares have called for standardized multi-custodian frameworks similar to those used in traditional finance. This post Custody Concentration Risk Emerges as Major Hurdle for Bitcoin Spot ETFs, Experts Warn first appeared on BitcoinWorld .

6 May 2026, 22:26

Aave liquidates attacker positions in rsETH exploit recovery effort

Aave has liquidated attacker rsETH positions, securing collateral as part of its recovery process following the April exploit.

6 May 2026, 21:44

U.S. Bitcoin Reserve update coming in 'next few weeks," White House adviser says

White House digital-assets adviser Patrick Witt cited a recent exploit involving assets held by the U.S. Marshals as proof federal crypto holdings need safeguarding.