News
19 May 2026, 02:40
Curvance Halts eBTC Market After Detecting Suspicious Activity, Echo Protocol Faces $76.7 Million Exploit Allegations

BitcoinWorld Curvance Halts eBTC Market After Detecting Suspicious Activity, Echo Protocol Faces $76.7 Million Exploit Allegations Decentralized finance (DeFi) protocol Curvance announced on May 19 that it has temporarily suspended operations in its eBTC market after detecting abnormal activity. The decision comes amid growing concerns that the Echo Protocol, a lending platform built on the Monad blockchain, may have suffered a significant exploit. Curvance Detects Irregularities in Echo eBTC Market According to an official statement from Curvance, the protocol identified unusual signs in its Echo eBTC market around 10:00 p.m. UTC on May 18. In response, the team proactively paused the market to investigate and prevent any potential loss of user funds. Curvance emphasized that there is currently no evidence of a smart contract attack or compromise on its own platform, and that all other markets remain fully operational. The Echo eBTC market allows users to deposit and lend eBTC, a liquid Bitcoin token issued by the Echo Protocol. The suspension is a precautionary measure, reflecting the protocol’s commitment to security and user protection in a rapidly evolving situation. On-Chain Analyst Flags Potential $76.7 Million Exploit The development follows a warning from on-chain analyst Onchain Lens earlier on May 19. The analyst reported that approximately 1,000 eBTC, worth an estimated $76.7 million at current market prices, were minted without authorization. Onchain Lens suggested that the funds were likely stolen through Curvance, though this has not been confirmed by either protocol. Onchain Lens posted their findings on social media, prompting immediate scrutiny from the broader DeFi community. The report highlights the ongoing challenges of securing cross-protocol interactions in decentralized finance, where vulnerabilities in one platform can have cascading effects on others. Implications for DeFi Security and User Confidence This incident underscores the persistent security risks in the DeFi ecosystem, particularly for emerging protocols and liquid staking tokens. The rapid minting of a large amount of eBTC without authorization, if confirmed, would represent one of the larger exploits in recent months. It also raises questions about the security of cross-chain bridges and tokenized assets. For users, the situation serves as a reminder to exercise caution when interacting with newer protocols and to monitor official channels for updates. The value of eBTC and related tokens may experience volatility as the investigation unfolds. Conclusion Curvance has taken swift action by halting its eBTC market while it investigates the suspicious activity. The Echo Protocol has not yet issued a public statement regarding the alleged exploit. As the story develops, the DeFi community will be watching closely for further details on the extent of any potential losses and the security measures being implemented. This event highlights the critical importance of proactive security monitoring and rapid response in protecting user assets within decentralized finance. FAQs Q1: What is Curvance and why did it halt its eBTC market? Curvance is a decentralized finance protocol that facilitates lending and borrowing. It temporarily suspended its Echo eBTC market on May 19 after detecting abnormal activity, as a precautionary measure to protect user funds while investigating potential security issues. Q2: What is the Echo Protocol and what happened? Echo Protocol is a lending platform on the Monad blockchain that issues eBTC, a liquid Bitcoin token. An on-chain analyst reported that 1,000 eBTC, worth approximately $76.7 million, were minted without authorization, suggesting a possible exploit. Curvance’s eBTC market was used for depositing and lending this token. Q3: Should users of Curvance or Echo Protocol be concerned? Curvance has stated that other markets are unaffected and there is no evidence of a smart contract attack on its platform. Users should monitor official announcements from both Curvance and Echo Protocol for updates. It is advisable to exercise caution and consider the risks associated with emerging DeFi protocols. This post Curvance Halts eBTC Market After Detecting Suspicious Activity, Echo Protocol Faces $76.7 Million Exploit Allegations first appeared on BitcoinWorld .
19 May 2026, 01:05
EchoProtocol on Monad allegedly exploited for $76.7 million in eBTC minting attack

BitcoinWorld EchoProtocol on Monad allegedly exploited for $76.7 million in eBTC minting attack A significant security incident has reportedly struck the Monad (MON) ecosystem. EchoProtocol, a decentralized finance (DeFi) protocol built on the Monad blockchain, is suspected of being exploited in an attack that resulted in the minting of 1,000 eBTC, valued at approximately $76.7 million. The breach was flagged by blockchain analytics firm Onchain Lens, which traced the exploit to the multi-chain DeFi protocol Curvance. How the exploit unfolded According to preliminary reports, the attacker leveraged a previously tested exploit method to mint 1,000 eBTC through EchoProtocol. The stolen funds were routed through Curvance, a platform designed to facilitate cross-chain lending and borrowing. The hacker then deposited 45 eBTC as collateral on Curvance to borrow approximately 11.29 Wrapped Bitcoin (WBTC), a common step in DeFi exploits to extract value from the compromised assets. Following the initial theft, the attacker moved the funds to the Ethereum network, where the eBTC was exchanged for ETH. A portion of the proceeds — 385 ETH — has already been transferred to Tornado Cash, a cryptocurrency mixer often used to obscure transaction trails. This pattern mirrors tactics seen in previous high-profile DeFi attacks, where mixers are used to launder stolen assets. Context and implications for the Monad ecosystem Monad is a relatively new blockchain that has been gaining attention for its high-throughput, Ethereum-compatible architecture. The EchoProtocol exploit raises concerns about the security maturity of projects building on emerging networks. While Monad itself has not been compromised, the incident highlights the risks associated with early-stage DeFi protocols that may not have undergone rigorous security audits. Curvance, the platform used as an intermediary in the attack, has not yet issued a public statement regarding the incident. The exploit method reportedly used a known vulnerability pattern, suggesting that similar attacks could target other protocols if preventive measures are not implemented quickly. What this means for DeFi users This incident serves as a reminder of the persistent risks in decentralized finance, particularly on newer blockchains. Users are advised to exercise caution when interacting with protocols that have limited track records or have not been thoroughly audited by reputable security firms. The use of cross-chain bridges and multi-chain platforms also introduces additional attack surfaces that malicious actors are actively probing. The broader DeFi market has seen a resurgence in exploit activity in recent months, with attackers targeting both established and emerging protocols. The EchoProtocol case underscores the need for continuous security monitoring and rapid incident response capabilities within the ecosystem. Conclusion The alleged $76.7 million exploit of EchoProtocol on Monad represents a significant security breach that could impact user confidence in the network’s DeFi ecosystem. As investigations continue, the movement of funds through Tornado Cash indicates a determined effort to launder the stolen assets. This story is developing, and further details are expected as forensic analysis progresses. FAQs Q1: What is EchoProtocol? EchoProtocol is a decentralized finance protocol built on the Monad blockchain that allows users to mint and trade synthetic assets, including eBTC. Q2: How was the exploit carried out? The attacker minted 1,000 eBTC through EchoProtocol using a previously tested method, then routed the funds through the multi-chain DeFi platform Curvance to borrow WBTC and move assets to Ethereum. Q3: What is Tornado Cash and why was it used? Tornado Cash is a cryptocurrency mixer that obfuscates transaction trails. The attacker transferred 385 ETH to it to make the stolen funds harder to trace. This post EchoProtocol on Monad allegedly exploited for $76.7 million in eBTC minting attack first appeared on BitcoinWorld .
18 May 2026, 20:10
Aave considers yields on charitable donations, moving on from rsETH exploit

Aave is considering a radical mechanism that would allow users to donate the yields from their deposited capital to humanitarian causes while still retaining access to their principal. The proposal was posted on the lending protocol’s governance forum as a “Temp-Check” to gauge community sentiment and is being seen by some quarters as the protocol’s first show of stabilization following one of the most damaging episodes in its history. Aave currently holds $14.62 billion in total value locked (TVL), according to DeFiLlama, while its native token AAVE is currently trading at $88.05 , down 2.8% over the past 24 hours. What is Aave actually proposing? The governance post , titled “Principal-Preserving Charitable Giving Layer for Aave App,” outlines a system in which users deposit fiat currency or crypto assets into Aave’s existing yield-generating infrastructure. Their principal remains intact and accessible at any time, but the yield produced by those deposits is automatically redirected to a charitable cause of the depositor’s choosing. The proposal envisions support for a range of humanitarian initiatives, one where there is transparent on-chain tracking of how funds are allocated and what outcomes are achieved. The mechanism is designed to address what the proposal’s authors described as problems with traditional charities and donations. The authors pointed out that the current setup causes donors to permanently part with their capital. It also highlighted that humanitarian organizations struggle with unpredictable cash flows, and visibility into how funds are used remains limited. The proposed solutions to the problem are that “users deposit fiat or crypto while maintaining access to their principal.” This deposited capital is then routed into yield-generating financial infrastructure, in this case, an Aave-based one. The generated yield is then allocated towards causes or humanitarian initiatives chosen by the user. The post stated that the on-chain infrastructure brings transparency into the flow of funds and charitable allocation, while enabling continuous funding streams for the charities. The proposal, if it is accepted, would mirror the pressure that led the Ethereum Foundation to commit to staking ETH to fund its commitments, instead of permanently selling from its stash when it has to fund a cause. Ethereum co-founder, Vitalik Buterin, who is also a regular donor to charitable causes and DeFi projects, could also theoretically find good utility in the Aave proposal. What happened with the rsETH exploit? The proposal comes exactly one month after an attacker exploited a vulnerability in KelpDAO’s LayerZero-powered bridge, forging a cross-chain transfer message that caused 116,500 rsETH tokens to be released from the Ethereum-side bridge without any corresponding burn on the source chain. The attacker then deposited approximately 89,567 of those unbacked tokens into Aave as collateral, borrowing roughly $190 million in ETH and related assets across Ethereum and Arbitrum. A total of over $292 million was lost, with Aave losing over $11.6 billion in TVL. It took an ecosystem effort to mitigate the loss and its potential impact. Some protocols and individuals formed a coalition called DeFi United; they raised over $300 million as relief fund to support the recovery effort and restore rsETH. Aave founder and CEO Stani Kulechov personally committed 5,000 ETH to the relief fund. Is the Aave crisis actually over? The evidence suggests the worst phase has passed. On 14 May, Kelp DAO reopened rsETH withdrawals , bridging, and EigenLayer claims as part of a staged restart plan. Yesterday, 17 May, Aave restored normal loan-to-value ratios for wrapped ether (WETH) across six of its V3 networks, including Ethereum Core, Arbitrum, Base, Mantle, and Linea, reversing the emergency restrictions imposed in the days after the exploit. Also, part of the stolen funds that were frozen on Arbitrum, $71 million in ETH on Arbitrum, have reportedly been moved to an Aave-controlled wallet and subsequently burned. The charitable giving proposal, in that context, reads as something more than a policy idea. It is also a signal that the Aave community is ready to turn the page and articulate a forward-looking identity for the protocol, one rooted in public good rather than crisis management. If you're reading this, you’re already ahead. Stay there with our newsletter .
18 May 2026, 17:34
Ethereum Founder Vitalik Buterin Says AI Verification Could Help Secure Crypto Networks

Vitalik Buterin said mathematically verified software may help protect cryptographic infrastructures as AI improves both code generation and vulnerability discovery.
18 May 2026, 16:00
British Pound: Fiscal Concerns Keep Sterling in the Danger Zone, BBH Warns

BitcoinWorld British Pound: Fiscal Concerns Keep Sterling in the Danger Zone, BBH Warns The British pound remains under significant pressure as persistent fiscal worries continue to weigh on investor sentiment, according to a new analysis from Brown Brothers Harriman (BBH). The currency, already navigating a challenging economic landscape, is being kept in what analysts describe as a ‘danger zone’ by ongoing concerns over the UK’s fiscal trajectory. Sterling’s Vulnerability Amid Fiscal Uncertainty BBH’s assessment points to a combination of factors that are undermining confidence in the pound. Chief among them is the market’s reaction to the UK’s fiscal policy outlook, which has been a recurring source of volatility since the mini-budget crisis of 2022. While the government has since taken steps to restore credibility, the scars remain deep, and investors remain sensitive to any signs of fiscal slippage. The analysis highlights that the pound’s weakness is not occurring in a vacuum. The broader macroeconomic environment, including persistent inflation and a cautious Bank of England, has created a challenging backdrop for the currency. BBH notes that the market is pricing in a higher risk premium for UK assets, which directly translates into a weaker sterling. Market Implications and Investor Sentiment For traders and investors, the implications are clear: the pound is likely to remain vulnerable to negative news flow related to UK fiscal policy. Any unexpected government spending announcements or disappointing economic data could trigger further selling pressure. BBH’s warning suggests that the currency may not find a stable footing until there is a clearer, more credible fiscal plan in place. The analysis also draws attention to the relative performance of the pound against major peers. While the US dollar has been broadly strong, the pound has underperformed even against the euro, a sign of its specific, country-driven weakness. This divergence underscores the extent to which UK-specific factors, rather than global risk appetite, are driving sterling’s trajectory. What This Means for the UK Economy A persistently weak pound has real-world consequences for the UK economy. It makes imports more expensive, contributing to inflationary pressures, and raises the cost of servicing foreign-denominated debt. For businesses that rely on imported goods, the currency’s weakness squeezes margins and complicates planning. For consumers, it means higher prices at the checkout, particularly for food, energy, and other essential goods. On the other hand, a weaker pound can provide a tailwind for exporters, making UK goods and services more competitive abroad. However, given the current economic climate, the net effect is generally seen as negative, as the inflationary impact outweighs any export benefits. Conclusion BBH’s analysis serves as a timely reminder that the British pound’s troubles are far from over. While the immediate crisis of 2022 has passed, the underlying fiscal vulnerabilities remain a persistent drag on the currency. Until the UK government can present a convincing, sustainable fiscal plan, sterling is likely to remain in the danger zone, with any positive developments potentially fleeting. For investors, caution remains the watchword. FAQs Q1: What is the main reason BBH says the pound is in a ‘danger zone’? The primary reason is persistent fiscal concerns in the UK, which have made investors wary of holding sterling. The market is demanding a higher risk premium for UK assets, weakening the currency. Q2: How does a weak pound affect UK consumers? A weaker pound makes imports more expensive, which can lead to higher prices for goods like food, fuel, and electronics. This contributes to inflation and reduces the purchasing power of consumers. Q3: Could the pound recover soon? Recovery is possible if the UK government delivers a credible and sustainable fiscal plan that reassures markets. However, until such clarity emerges, the pound is expected to remain vulnerable to negative news and economic data. This post British Pound: Fiscal Concerns Keep Sterling in the Danger Zone, BBH Warns first appeared on BitcoinWorld .
18 May 2026, 15:28
Adshares hacker returns 86% of $628K loot as analysts expose post-hack vulnerabilities

The attacker behind the Adshares bridge exploit on May 17 has returned 256 ETH (roughly $540,700) to the project’s deployer address, covering about 86% of the estimated $628,000 loss, according to PeckShieldAlert. However, despite the news of the partial refund being a form of relief for the project and the DeFi space, which is seeing increased attacks from bad actors, security researchers warn that platforms and users should also be wary and alert, as post-hack recovery periods also attract scammers who prey on affected users. Adshares bridge exploiter returned 256 ETH after $628K hack. Source: PeckShield via X/Twitter. How did the Adshares exploit happen? According to security researcher and founder of web3 security platform CD Security, Chris Dior, who was among the first to flag the Adshares incident on May 16, the root cause was a failure in bridge mint validation. “The bridge-minter EOA signed 3 wrapTo() calls with non-existent native-chain txids, minting fake wADS to the attacker. Attacker dumped the wADS for ~148.5 ETH and ~$305K USDC on Ethereum,” Dior wrote on X. DeFiLlama’s exploit database categorizes the May 16 incident as a protocol-logic failure using a “Bridge Verification Bypass” technique, with a $628,000 total loss on Ethereum. This infers that the vulnerability was from the bridge’s cross-chain proof-checking layer and not a market-trading or oracle-related flaw. Adshares managed to get a partial refund Exploiters returning a certain percentage of their loot and keeping a smaller percentage is not new in the DeFi space. However, it seems this white hat route is gaining more popularity as some have been executed successfully. The Adshares partial refund follows that pattern. However, it has not been confirmed if Adshares offered formal bounty terms or whether the attacker returned funds voluntarily as of the time of writing. Another platform that recently recovered part of its exploited funds is TAC, a cross-chain protocol bridging TON and Ethereum. After losing $2.8 million on May 12, TAC offered the attacker a 10% bounty to return the remainder. The exploiter accepted, and TAC reclassified the event as a white hat incident, dropping litigation in coordination with security partners and law enforcement. The Verus team has also extended a white hat offer to the attacker who launched an $11.5 million exploit against the platform, as reported by Cryptopolitan . So far, the Adshares team has not published a public statement addressing the exploit, released a postmortem, issued an official bounty notice, or shared anything about recovery. Users should be wary of any information that is not coming from the platform’s official handles. Recovery periods breed secondary scams Not every exploit leads to a refund; in fact, many do not, and even when funds do come back, the attention surrounding a hack creates fertile ground for fraud. During these windows, it is common to see an increase in fake bounty notices, phishing refund portals, and wallet-verification links targeting users who are searching for compensation updates. The THORChain and Verus exploits are the most recent incidents that have led analysts to raise these alarms. THORChain suffered a $10 million exploit on May 15, after which bad actors started spreading misinformation that the protocol was going to launch a refund platform. Anyone here or in DM (or anywhere) claiming to be part of the Verus team or community offering reimbursement is a scammer, DO NOT ENGAGE WITH PEOPLE OFFERING REIMBURSEMENT OR CLAIMING THERE IS A REIMBURSEMENT PROGRAM, AND REPORT THEM TO DISCORD or X accordingly. — Verus – The Internet of Value (@VerusCoin) May 18, 2026 THORChain warned users on X that “multiple fake accounts and false information” were circulating about nonexistent refund programs, airdrops, and compensation claims. Adshares users face a similar risk window now that the partial return has drawn public attention. Bridge exploits continue to mount in 2026 The Adshares breach adds to a growing number of bridge-related exploits. PeckShieldAlert reported that cumulative bridge losses in 2026 have exceeded $328.6 million through mid-May, a figure that includes the $11.5 million Verus-Ethereum bridge hack that was disclosed on May 18. If you're reading this, you’re already ahead. Stay there with our newsletter .






































