News
21 May 2026, 13:00
MAP Protocol plunges 96% after quadrillion-token MAPO exploit – Details

MAP Protocol exploit drains liquidity as attacker mints quadrillion tokens, forcing migration to new contract.
21 May 2026, 10:20
Aluminium Output Declines Amid Gulf Disruptions, ING Reports

BitcoinWorld Aluminium Output Declines Amid Gulf Disruptions, ING Reports Aluminium production has dropped in key Gulf region facilities, according to a new analysis from ING, as ongoing disruptions to supply chains and energy infrastructure continue to weigh on output. The decline adds fresh pressure to global aluminium markets already strained by geopolitical tensions and shifting trade flows. Supply Chain Strain Hits Production ING’s report highlights that several smelters in the Gulf Cooperation Council (GCC) countries have scaled back operations due to disruptions in natural gas supply and logistical bottlenecks. The Gulf region accounts for a significant share of global primary aluminium production, making any output reduction a material factor in global pricing and availability. Analysts note that the disruptions stem from a combination of maintenance shutdowns, extreme weather events affecting port operations, and ongoing regional geopolitical uncertainties. The cumulative effect has been a noticeable dip in monthly production figures for the second quarter. Market Implications and Price Outlook The production drop comes at a time when global aluminium demand remains relatively robust, driven by automotive, construction, and renewable energy sectors. Reduced supply from the Gulf is likely to tighten the market balance, potentially supporting higher aluminium prices in the near term. ING’s commodities team has revised its short-term price forecast upward, citing the supply-side constraints. However, they caution that the situation remains fluid, and any resolution of the disruptions could quickly reverse price gains. Broader Industrial Context The Gulf’s role in the aluminium supply chain has grown in recent years, with the region investing heavily in smelting capacity powered by local natural gas. This energy-intensive industry is now facing the same volatility that has affected global energy markets. The disruptions serve as a reminder of the interconnected risks between energy supply and industrial output. Conclusion The decline in Gulf aluminium output, as reported by ING, underscores the vulnerability of global supply chains to regional disruptions. For markets and industrial buyers, the immediate outlook points to tighter supply and potential price increases. The situation warrants close monitoring as energy and logistical conditions evolve. FAQs Q1: What caused the drop in aluminium output in the Gulf region? Disruptions to natural gas supply, logistical bottlenecks, and maintenance shutdowns have forced several smelters to reduce production. Q2: How significant is the Gulf region for global aluminium production? The Gulf Cooperation Council countries are major producers, accounting for a substantial share of the world’s primary aluminium output. Q3: What are the potential market impacts of this production decline? Reduced supply could tighten the global aluminium market and support higher prices, especially if demand remains steady. This post Aluminium Output Declines Amid Gulf Disruptions, ING Reports first appeared on BitcoinWorld .
21 May 2026, 06:30
Transit Swap Hacker Moves $1.8 Million in Stolen ETH to Tornado Cash

BitcoinWorld Transit Swap Hacker Moves $1.8 Million in Stolen ETH to Tornado Cash The hacker responsible for the recent exploit of Transit Finance has moved a significant portion of the stolen funds, transferring 832.9 ETH—worth approximately $1.8 million—to the cryptocurrency mixing service Tornado Cash. The transaction was flagged by blockchain security firm CertiK, which has been monitoring the wallet address starting with 0x9db8 since the attack was discovered earlier this month. Details of the Fund Movement CertiK reported the transfer on Thursday, noting that the movement of funds to Tornado Cash is a common tactic used by hackers to obfuscate the trail of stolen cryptocurrency. Tornado Cash is a decentralized privacy protocol that mixes transactions, making it significantly harder for law enforcement and blockchain analytics firms to trace the funds to a final destination or cash-out point. The 832.9 ETH transfer represents a substantial portion of the roughly $1.88 million in total assets stolen from Transit Finance during the exploit. The incident, which came to light on [insert date of initial report if known, otherwise remove], involved a vulnerability in the decentralized exchange aggregator’s smart contract, allowing the attacker to drain funds from liquidity pools. Timeline of the Transit Finance Exploit The attack on Transit Finance was first detected by CertiK’s Skynet monitoring system, which flagged unusual transaction patterns. The platform, which facilitates token swaps across multiple blockchain networks, suffered a loss of approximately $1.88 million in various cryptocurrencies, primarily in Ethereum and stablecoins. Following the initial exploit, the hacker’s wallet remained largely dormant for several days, leading to speculation about the attacker’s next move. The recent transfer to Tornado Cash marks the first major movement of the stolen assets. Implications for DeFi Security and Privacy The use of Tornado Cash in this case highlights ongoing tensions between privacy tools and regulatory compliance in the decentralized finance (DeFi) sector. While privacy mixers serve legitimate purposes for users seeking financial anonymity, they are frequently exploited by malicious actors to launder stolen funds. This incident is likely to renew calls for stricter oversight of such protocols, particularly in jurisdictions where they are already under legal scrutiny. For Transit Finance users and the broader DeFi community, the movement of funds to a mixer often signals that the hacker intends to liquidate the assets, making recovery efforts more challenging. The incident underscores the persistent security risks facing DeFi platforms and the importance of rigorous smart contract audits and real-time monitoring. Conclusion The transfer of $1.8 million in stolen ETH to Tornado Cash marks a significant development in the Transit Finance hack saga. While the funds are now harder to trace, the incident serves as a stark reminder of the security vulnerabilities that continue to plague the DeFi ecosystem. CertiK and other security firms will likely continue to monitor the situation, but the chances of recovering the stolen assets have diminished considerably. FAQs Q1: What is Tornado Cash and why do hackers use it? Tornado Cash is a decentralized privacy protocol that mixes cryptocurrencies from multiple transactions, making it difficult to trace the origin and destination of funds. Hackers use it to launder stolen assets and avoid detection by law enforcement and blockchain analytics firms. Q2: How much was stolen in the Transit Finance hack? The initial exploit resulted in a loss of approximately $1.88 million in various cryptocurrencies, including Ethereum and stablecoins, from Transit Finance’s liquidity pools. Q3: Can the stolen funds be recovered now that they have been sent to Tornado Cash? Recovery becomes significantly more difficult once funds are sent to a mixing service like Tornado Cash. While blockchain analytics firms may still attempt to trace the funds, the mixing process obscures the transaction trail, greatly reducing the chances of successful recovery. This post Transit Swap Hacker Moves $1.8 Million in Stolen ETH to Tornado Cash first appeared on BitcoinWorld .
21 May 2026, 05:51
MAPO Crashes After Massive Cross-Chain Bridge Exploit

The attacker dumped around one billion MAPO tokens into Uniswap liquidity pools, draining roughly 52 ETH, and still reportedly controls close to a trillion tokens. After the incident, Map Protocol paused its mainnet and began a migration process, while Butter Network paused ButterSwap as investigations into the exploit continue. MAPO Exploit Wipes Out Token Value The crypto sector faced yet another security incident this week after MAPO, the native token of the Map Protocol ecosystem, crashed due to an exploit involving the Butter Network cross-chain bridge. The attack allowed a malicious actor to mint an enormous quantity of MAPO tokens, far exceeding the project’s legitimate circulating supply. MAP Protocol’s price action over the past 24 hours (Source: CoinCodex) According to reports, the attacker managed to mint approximately one quadrillion MAPO tokens through a vulnerability tied to the bridge’s Solidity smart contract layer. The exploit immediately destabilized the token’s value, which sent the price crashing from around $0.003 to almost $0.0001 in only a few hours. Blockchain security firm Blockaid stated that the attacker used a newly created externally-owned account to dump around one billion MAPO tokens into Uniswap liquidity pools, draining approximately 52 ETH, valued at roughly $180,000 at the time. Despite already extracting a lot of liquidity, the attacker reportedly still controls close to a trillion MAPO tokens. This raised concerns that even more decentralized exchanges, liquidity pools, and potentially even centralized exchange listings could be vulnerable if the remaining tokens are moved or sold. The exploit occurred during a particularly difficult month for the DeFi industry. At least 18 protocols reportedly suffered breaches or exploits. Recent victims included THORChain, Transit Finance, Echo Protocol, TrustedVolumes, Verus Protocol’s Ethereum bridge, Ekubo, and RetoSwap. Map Protocol later confirmed that the vulnerability originated from the Solidity contract layer rather than compromised private keys or broken light clients. According to Blockaid’s analysis, the attacker initially submitted a legitimate oracle multisig-signed message before deploying a malicious contract to a targeted address. The attacker then resent a manipulated retry message that appeared valid because it produced an identical hash structure. This ultimately tricked the bridge into authorizing the massive token mint. In response, Map Protocol paused its mainnet operations and announced that it started a migration process while the investigation continues. Butter Network also paused ButterSwap but said that user funds were not directly at risk. The project also stated that a new contract address would soon be announced, alongside a future asset snapshot to support token migration efforts. Any tokens linked to attacker-controlled wallets will reportedly be invalidated and excluded from future conversions.
21 May 2026, 05:40
Bitcoin’s Quantum Vulnerability: Poor Wallet Habits Expose 4.12 Million BTC

BitcoinWorld Bitcoin’s Quantum Vulnerability: Poor Wallet Habits Expose 4.12 Million BTC New on-chain data from Glassnode reveals that approximately 20% of Bitcoin’s total supply—amounting to 4.12 million BTC—is vulnerable to potential future quantum computing attacks. The risk, however, stems not from a flaw in Bitcoin’s core protocol but from widespread user behavior and poor wallet management practices. User Habits, Not Protocol Flaws, Drive the Risk According to Glassnode’s analysis, the primary vulnerability arises from practices like address reuse and partial spending. When users reuse addresses or create transactions that expose public keys on-chain, they remove the cryptographic shield that normally keeps these keys hidden behind a hash. In a future scenario where high-performance quantum computers become operational, these exposed public keys could theoretically be reverse-engineered to derive private keys. This operational exposure affects 4.12 million BTC, a figure more than double the 1.92 million BTC that is structurally exposed due to older transaction scripts like Pay-to-Public-Key (P2PK). The structural exposure is a known legacy issue, but the operational risk, driven by user behavior, is significantly larger and growing. Exchange Holdings Under Scrutiny Glassnode specifically highlighted that 1.66 million BTC held by cryptocurrency exchanges are exposed to this operational risk. This is because exchange wallets often use address reuse patterns for efficiency, inadvertently increasing the attack surface. For individual holders, the advice remains clear: use fresh addresses for each transaction and avoid practices that reveal public keys unnecessarily. What This Means for Bitcoin’s Long-Term Security The data underscores a critical distinction: Bitcoin’s protocol is not inherently broken. The cryptographic foundations, including SHA-256 and the elliptic curve digital signature algorithm (ECDSA), remain robust against current classical computing threats. The risk is forward-looking and contingent on the development of sufficiently powerful quantum computers, which experts estimate could be a decade or more away. Nevertheless, the sheer volume of exposed coins—representing a significant portion of the circulating supply—raises questions about the long-term security posture of the network. It also highlights the importance of user education and the adoption of best practices, such as using SegWit or Taproot addresses, which offer improved privacy and security features. Conclusion Glassnode’s findings serve as a sobering reminder that in cryptocurrency, human behavior often represents the weakest link in the security chain. While Bitcoin’s code remains secure, the habits of its users are creating a substantial future liability. For the industry, this is a call to action: improve wallet design, educate users, and begin planning for a post-quantum cryptographic future. FAQs Q1: Is Bitcoin currently at risk from quantum computers? No. Current quantum computers are not powerful enough to break Bitcoin’s cryptographic keys. The risk is a future projection based on the potential development of fault-tolerant quantum computers, which experts estimate is at least 10-15 years away. Q2: How can I protect my Bitcoin from quantum threats? Use best practices: never reuse addresses, use a new address for each transaction, and consider using wallets that support SegWit or Taproot. Avoid partial spending from addresses that have previously been used. Q3: Does this mean Bitcoin is broken? No. The vulnerability is not in Bitcoin’s protocol design but in user behavior. The protocol itself is sound, and the community is already researching post-quantum cryptographic upgrades for the future. This post Bitcoin’s Quantum Vulnerability: Poor Wallet Habits Expose 4.12 Million BTC first appeared on BitcoinWorld .
21 May 2026, 03:45
Syndicate Ceases Operations as Rollup Market Contracts

BitcoinWorld Syndicate Ceases Operations as Rollup Market Contracts Syndicate (SYND), a project that provided infrastructure for creating and deploying EVM-compatible rollups, has announced it is shutting down after five years of operation. The decision follows a sharp contraction in the rollup market and a recent bridge hack that compromised the project’s finances. Market Shift and Financial Strain In a post on X (formerly Twitter), the Syndicate team stated that the rollup market has “contracted sharply” and that EVM rollups “no longer function as the standard.” This shift, combined with the aftermath of a security breach last month, made it impossible to continue the business. The team noted that the project had been exploring alternatives but ultimately concluded that the current market conditions were unsustainable. The bridge hack, which drained a significant portion of the project’s treasury, further compounded the challenges. While the exact amount lost was not disclosed, the incident eroded user confidence and added financial pressure to an already struggling venture. Token Governance and Future The Syndicate team clarified that the governance rights for the SYND token are held by a separate entity, the Syndicate Network Collective. As a result, the shutdown does not immediately impact token governance. However, the project has stated that if a buyer is not found, it will proceed with dissolution, which could involve winding down the token’s utility and smart contracts. This situation highlights a growing trend in the crypto space where projects launched during the 2021-2022 bull market are now facing existential challenges as market dynamics evolve and user demand shifts toward more established infrastructure. Implications for the Rollup Ecosystem Syndicate’s closure is a notable event for the rollup ecosystem, which has seen a proliferation of projects offering custom solutions. The market is now consolidating around a few dominant players like Arbitrum, Optimism, and zkSync, leaving smaller projects struggling to find a sustainable user base. This consolidation could lead to further closures or acquisitions in the coming months, as the industry moves toward standardization and efficiency. Conclusion Syndicate’s shutdown is a clear signal of the changing landscape in the rollup market. While the project’s token governance remains unaffected for now, the dissolution process could create uncertainty for holders. The broader takeaway is that the era of easy funding and rapid expansion in the crypto infrastructure space is giving way to a more mature, selective market where only the most robust projects survive. FAQs Q1: What was Syndicate (SYND)? Syndicate was a blockchain infrastructure project that allowed users and developers to create and deploy EVM-compatible rollups. It operated for five years before announcing its closure. Q2: Why is Syndicate shutting down? The project cited a sharp contraction in the rollup market, the declining relevance of EVM rollups as a standard, and the financial impact of a recent bridge hack as the primary reasons for ceasing operations. Q3: What happens to the SYND token? Token governance rights are held by the Syndicate Network Collective, a separate entity, so the shutdown does not immediately affect governance. However, if a buyer is not found, the project plans to dissolve, which could impact the token’s utility. This post Syndicate Ceases Operations as Rollup Market Contracts first appeared on BitcoinWorld .







































