hodler

12 Mar 2026, 04:10

Hackers Hijack Bonk.fun Domain, Deploy Wallet-Draining Phishing Prompt

Browser warnings flagged the site for suspected phishing after attackers pushed a fake TOS message designed to trick users.

12 Mar 2026, 04:06

MediaTek patches bug enabling crypto seed theft in just 45 seconds

Ledger’s white-hat security team said it found a flaw in MediaTek's secure boot chain that can be used to steal sensitive information from certain Android devices.

12 Mar 2026, 04:00

Mastercard Welcomes Ripple, Binance, And 83 Other Firms Into New Crypto Partner Program

Mastercard is making key moves in the digital asset landscape by launching a new global partnership program that includes over 85 firms across the payment and financial sectors. Names like Circle, Binance, and Ripple are among those joining this initiative, aimed at connecting crypto payments to Mastercard’s network. Mastercard’s New Crypto Strategy In a statement released on Wednesday, Mastercard outlined the program’s primary goal: to scale digital assets and integrate them seamlessly into existing payment frameworks. By positioning itself as a bridge between digital assets and conventional payment systems, Mastercard is enhancing its offering to early-stage crypto firms with services like card programs, global merchant acceptance, and cross-border settlement. The diverse array of partners in this new program also includes entities such as SoFi Technologies, Global Payments’ Worldpay, PayPal, BitGo, Crypto.com, Gemini, Marqeta, Paxos, and Shift4, among others. Mastercard emphasized that enterprise and institutional use cases , such as payments, settlement, and cross-border transactions, are emerging rapidly, opening avenues for enhancing how money moves on a global scale. This initiative follows a collaboration announced in November of last year, where Ripple, Gemini, and WebBank worked with Mastercard to explore settling Gemini Credit Card transactions using Ripple’s RLUSD stablecoin on the XRP Ledger (XRPL). Ripple’s License Push; Binance Battles WSJ Beyond Mastercard’s expansion, Ripple has also disclosed on Wednesday plans to secure an Australian Financial Services License (AFSL). This license will enable Ripple to broaden its payment offerings in Australia, catering to financial institutions, fintechs, and enterprises that require efficient ways to transfer value internationally while adhering to regulatory standards. Ripple intends to obtain the AFSL through its proposed acquisition of BC Payments Australia Pty Ltd, a move that is currently undergoing the necessary completion processes. Once in place, the AFSL will enhance Ripple’s capacity to provide an end-to-end platform for global fund transfers, managing everything from compliance and funding to foreign exchange and liquidity management. On a different note, crypto exchange Binance filed a complaint against The Wall Street Journal, alleging the publication of a misleading and defamatory article dated February 23, 2026. Binance’s Global Head of Litigation, Dugan Bliss, stated that the company views this lawsuit as essential to defending itself against misinformation that has led to reputational damage and harmful business impacts. Bliss added: This type of reporting erodes trust in the broader industry and undermines the efforts of those who are committed to protecting users and advancing positive innovation. At the time of writing, XRP was trading at $1.38, marking a significant 3% loss within the 24-hour time frame. This was the largest decline among the top ten cryptocurrencies by market capitalization, surpassed only by Dogecoin’s (DOGE) 7% drop during the same period. Featured image from OpenArt, chart from TradingView.com

12 Mar 2026, 04:00

The $2,050 Pivot: Ethereum Scarcity Index Turns Positive As Binance Supply Tightens

Ethereum is trading slightly above the $2,000 level as the market continues to navigate a period of uncertainty marked by sideways price action and cautious investor sentiment. After weeks of volatility across the broader cryptocurrency sector, ETH has entered a consolidation phase, with buyers and sellers struggling to establish a clear directional trend. Related Reading: TRON Joins Agentic AI Foundation As AI Systems Move Toward Real-World Deployment While price action appears relatively stable on the surface, new on-chain analysis suggests that underlying liquidity conditions may be shifting. According to a report from CryptoQuant analyst Arab Chain, Ethereum’s Scarcity Index on Binance currently sits around 0.67 while ETH trades near $2,050. The Scarcity Index measures the balance between available supply and demand pressure on a given exchange. A positive reading indicates that the amount of Ethereum available for trading on the platform has fallen below its historical average, reflecting tightening liquidity conditions. A value of 0.67 places the indicator firmly in positive territory, signaling a moderate degree of supply scarcity on Binance compared to previous market conditions. In practical terms, this suggests that part of Ethereum’s circulating supply may be moving off exchanges or remaining inactive in long-term holdings. Although the reading does not yet indicate extreme scarcity, it reveals that the supply balance is gradually shifting toward tighter market conditions as the market consolidates. Ethereum Scarcity Index Suggests Gradual Supply Tightening The report further explains that positive readings in the Scarcity Index reflect structural changes in the balance between available supply and market demand on exchanges. When the index moves into positive territory, it indicates that the amount of Ethereum available for trading on the platform is lower than its historical average, or that net flows are gradually moving out of the exchange. Both dynamics reduce available liquidity in the order book. Under these conditions, markets tend to become more sensitive to incoming demand. When supply on exchanges declines, large buy orders have a greater impact on price because fewer tokens remain readily available to absorb new demand. However, the current reading of 0.67 suggests that the market is experiencing moderate scarcity rather than extreme supply tightening. Compared with previous periods where the indicator reached much higher levels, the present value indicates that liquidity remains relatively stable even as supply conditions begin to shift. This places Ethereum in a transitional phase. The balance between supply and demand appears slightly tilted in favor of buyers, but not to the extent that it would immediately trigger sharp price movements. In practical terms, the data may indicate that some investors are withdrawing Ethereum from exchanges or holding assets off-platform, behavior typically associated with longer-term holding strategies rather than active trading. Related Reading: XRP Trading Interest Fades: Exchange Transactions Fall To Historic Lows Ethereum Stabilizes Near $2,000 After Sharp Selloff Ethereum is currently trading around the $2,000 level after experiencing a sharp correction that unfolded earlier this year. The daily chart shows ETH attempting to stabilize following a rapid decline that pushed the asset from above $3,200 down toward the $1,800 region in February. That move triggered a brief capitulation phase, marked by a large spike in trading volume and a long lower wick that signaled aggressive buying interest near the lows. Since then, price action has transitioned into a consolidation phase between roughly $1,900 and $2,100. This range suggests that the market is attempting to establish a short-term equilibrium after the strong selling pressure that dominated the previous weeks. Related Reading: Altcoins Approach Historic Stress Levels as 38% of Tokens Near All-Time Lows Despite the recent stabilization, the broader trend remains under pressure. Ethereum continues to trade below its key moving averages, including the 50-day and 100-day trends, which are both sloping downward and currently act as dynamic resistance zones above the market. The long-term 200-day moving average remains significantly higher near the $3,300 area, highlighting the magnitude of the earlier breakdown. For bullish momentum to regain strength, ETH would likely need to reclaim the $2,200–$2,400 region, where previous support levels turned into resistance. Until then, the chart suggests Ethereum may remain locked in a consolidation phase while the market searches for clearer directional momentum. Featured image from ChatGPT, chart from TradingView.com

12 Mar 2026, 04:00

Is the crypto market ‘more resilient?’ Coinbase says so after Bitcoin’s 87% ‘drop’

Bitcoin's short-term holders' capitulation and distress has dropped by 87%.

12 Mar 2026, 04:00

Critical Alert: Bonk.fun Domain Hijacked in Security Breach, Letsbonk Founder Urges Immediate Caution

BitcoinWorld Critical Alert: Bonk.fun Domain Hijacked in Security Breach, Letsbonk Founder Urges Immediate Caution In a concerning development for the cryptocurrency community, the founder of Letsbonk has issued an urgent warning about a domain hijacking incident affecting the popular BONK-based platform. Tom, the founder of Letsbonk.fun, announced via social media platform X that the domain bonk.fun has been compromised following a team account hack. This security breach represents a significant threat to users of the meme coin issuance platform. Consequently, he strongly advised all users to avoid accessing the domain until further notice. The incident highlights ongoing security vulnerabilities within the rapidly evolving cryptocurrency infrastructure. Understanding the Bonk.fun Domain Hijacking Incident The security breach at bonk.fun occurred through a compromised team account, according to the platform’s founder. Domain hijacking involves unauthorized control over a website’s domain name registration. Attackers typically gain access through phishing, social engineering, or credential theft. Once control is established, they can redirect traffic, intercept communications, or deploy malicious software. For cryptocurrency platforms, this type of attack carries particularly severe consequences. Users attempting to access the legitimate service might instead encounter phishing pages designed to steal wallet credentials or private keys. Tom’s public warning serves as a crucial protective measure for the platform’s user base. By alerting the community through official channels, he aims to prevent potential financial losses. The Letsbonk platform operates within the Solana ecosystem, specifically focusing on the BONK meme coin community. This incident follows a pattern of increasing attacks targeting cryptocurrency infrastructure. Security experts have documented similar domain hijackings across various blockchain projects throughout 2024 and early 2025. These attacks often exploit human vulnerabilities rather than technical weaknesses in blockchain protocols themselves. The Technical Mechanics of Domain Compromise Domain hijacking typically follows a recognizable pattern that security professionals have extensively documented. Attackers first identify target platforms with valuable user bases or financial transactions. They then research team members through social media and professional networks. Phishing campaigns often mimic legitimate communications from domain registrars or hosting providers. Once credentials are obtained, attackers modify domain name system (DNS) records to point to malicious servers. The entire process can sometimes occur within hours, leaving limited response time for platform operators. For cryptocurrency platforms, the risks extend beyond typical website compromises. Malicious actors can create convincing clones of legitimate trading interfaces. These fake pages prompt users to connect wallets and authorize transactions that drain funds. Alternatively, attackers might deploy cryptocurrency wallet drainers through compromised domains. These sophisticated scripts automatically transfer assets when users interact with the interface. The financial incentives for targeting cryptocurrency domains have increased substantially as digital asset values have recovered throughout 2025. Historical Context of Cryptocurrency Domain Security Domain hijacking incidents have plagued the cryptocurrency industry for several years. Major exchanges and DeFi platforms have faced similar challenges. For instance, in 2023, a prominent decentralized finance protocol experienced a domain redirect attack that resulted in significant user losses. The table below illustrates recent comparable incidents: Platform Year Attack Method Reported Impact Compound Finance 2023 DNS poisoning Temporary service disruption Curve Finance 2024 Registrar compromise Front-end exploit attempted Several NFT projects 2024 Social engineering Discord and domain combined attack These incidents demonstrate a clear pattern of increasing sophistication in attacks. The BONK ecosystem has experienced remarkable growth since its inception as a Solana-based meme coin. This expansion has naturally attracted both legitimate interest and malicious attention. Security researchers note that meme coin communities often prioritize accessibility and viral growth over security infrastructure. This creates vulnerabilities that experienced attackers systematically exploit. The Letsbonk platform specifically enables users to create and launch their own BONK-based tokens, making it a potentially lucrative target for attackers seeking to compromise multiple projects simultaneously. Immediate Impacts and User Protection Measures The bonk.fun domain hijacking carries several immediate implications for the cryptocurrency community. First, users who accessed the compromised domain might have exposed their wallet credentials or private keys. Second, the incident undermines trust in the broader BONK ecosystem at a critical growth period. Third, it highlights the persistent security challenges facing decentralized platforms that rely on traditional web infrastructure. Security professionals recommend specific protective measures during such incidents: Immediately cease all interactions with the affected domain Monitor connected wallets for unauthorized transactions Verify communications through multiple official channels Consider using wallet revoke tools to review permissions Enable additional security layers like hardware wallet confirmation The Letsbonk team’s transparent communication represents a positive security practice. By promptly acknowledging the breach, they empower users to take protective actions. This approach contrasts with historical incidents where platforms delayed disclosures, increasing user exposure. The cryptocurrency industry has gradually developed better incident response protocols through painful experiences. Regulatory developments in 2024 have also encouraged more transparent breach reporting, particularly in jurisdictions with comprehensive digital asset frameworks. Broader Implications for Platform Security Domain security represents a fundamental challenge for web3 platforms that operate through traditional internet infrastructure. While blockchain networks themselves provide cryptographic security, the interfaces users interact with remain vulnerable to conventional web attacks. This creates what security experts call the “web2-web3 security gap.” Platforms must implement robust protection measures for their domain registrations and DNS configurations. Recommended practices include: Multi-factor authentication on all registrar accounts Domain locking features to prevent unauthorized transfers Regular security audits of all external-facing accounts Incident response plans specifically for domain compromise scenarios Decentralized alternatives like ENS (Ethereum Name Service) where feasible The bonk.fun incident will likely accelerate security improvements across similar platforms. The BONK community has demonstrated remarkable resilience through previous market fluctuations. This security challenge presents another test of that resilience. How quickly and effectively the Letsbonk team resolves the situation will influence community confidence. It will also provide valuable lessons for other projects within the rapidly expanding Solana ecosystem. Conclusion The bonk.fun domain hijacking incident serves as a critical reminder about cryptocurrency security vulnerabilities. While blockchain technology provides unprecedented financial sovereignty, the interfaces connecting users to these systems remain susceptible to traditional attacks. The Letsbonk founder’s prompt warning demonstrates improved industry practices regarding incident disclosure. Users must remain vigilant about domain authenticity, especially during security incidents. The broader cryptocurrency ecosystem continues evolving its security posture through such challenging experiences. This bonk.fun domain compromise will undoubtedly influence security protocols across similar platforms throughout 2025 and beyond. FAQs Q1: What should I do if I accessed bonk.fun after the hijacking? Immediately disconnect any wallet connections made through the site. Monitor your wallet transactions carefully for unauthorized activity. Consider using wallet security tools to review and revoke any permissions granted during your visit. Q2: How can I verify legitimate communications from Letsbonk? Always cross-reference announcements through multiple official channels. Check the platform’s verified social media accounts, community forums, and official documentation. Be skeptical of direct messages claiming to be from team members. Q3: What makes cryptocurrency domains particularly attractive to hackers? Cryptocurrency domains facilitate direct financial transactions, unlike most traditional websites. Successful compromises can lead to immediate financial gains through stolen assets or ransom demands. The pseudonymous nature of cryptocurrency also makes tracing and recovering stolen funds exceptionally difficult. Q4: Are decentralized domain systems more secure than traditional ones? Decentralized systems like ENS (Ethereum Name Service) eliminate central points of failure but introduce different considerations. They’re resistant to traditional domain hijacking but require careful private key management. Many platforms use hybrid approaches with traditional domains for accessibility and decentralized backups for resilience. Q5: How long do domain hijacking incidents typically take to resolve? Resolution time varies significantly based on the attack’s sophistication and the registrar’s responsiveness. Simple credential compromises might be resolved within hours, while sophisticated attacks involving social engineering or legal impersonation can take days or weeks. The priority is always ensuring the domain is secure before restoring access. This post Critical Alert: Bonk.fun Domain Hijacked in Security Breach, Letsbonk Founder Urges Immediate Caution first appeared on BitcoinWorld .