A security vulnerability in the LayerZero default library contract has sparked debate, with researchers pointing out a cross-chain message spoofing flaw.
May 8 — Earlier today, a heated debate broke out between LayerZero co-founder Bryan Pellegrino and security researchers in the ETHSecurity Community Telegram group.
Researchers flagged a critical flaw in LayerZero’s default library contract: it allows LayerZero Labs to upgrade the contract instantly (no time lock), enabling cross-chain message falsification — the root cause of the prior rsETH exploit. Reportedly, over $30 billion in LayerZero HTFs (Homogeneous Token Farms) were at risk due to this vulnerability.
Security researcher Banteg noted that as of a few weeks ago, mainstream projects like Ethena and EtherFi still used this vulnerable default library. Currently, ~$178 million in value remains exposed to potential exploits.
On-chain data from Banteg showed LayerZero Labs’ multisig signers engaged in non-multisig activities: meme coin trades, DEX swaps, and cross-chain bridge operations. This suggests production multisig keys were linked to regular websites, drastically i
1 seconds ago
Binance will support the Chiliz (CHZ) 2.0 Mainnet Integration and Contract Swap
On May 8th, Binance will support the Chiliz (CHZ) 2.0 mainnet integration and contract swap, covering both CHZ tokens and all Chiliz fan tokens.
All BEP2-based CHZ tokens will be swapped to CAP20 at a 1:1 ratio. Fan tokens (including ACM, ASR, ATM, BAR, CITY, JUV, OG, PSG, etc.) will also be converted from the Chiliz Legacy Chain and BEP20 format to CAP20 at a 1:1 ratio.
Once the swap is finalized, users’ holdings, trading, and other services on Binance will remain unaffected. For specific timelines and details, please refer to the official announcement.
1 seconds ago
A trader spent over 3 months swing trading ETH, resulting in a loss of $1.48 million.
May 8th — Per LookOnChain data, a trader (address starting with 0x8062) launched ETH trading with a $4.38 million USDT fund on February 2nd. Three hours ago, the trader closed all ETH positions, leaving an account balance of just ~$3.4 million USDT — a total loss of roughly $1.48 million.
1 seconds ago
Fosun FinTech's physical gold token product does not support secondary market trading
May 8 — Yunfeng Financial’s “Yunfeng Youyu” physical gold token product does not support secondary market trading. Professional investors who purchase the tokens cannot freely buy, sell, or transfer them on the platform or any other public market; they may only hold the tokens or redeem them with the issuer under agreed terms. The measure is designed to ensure compliance and manage liquidity risks.
In a report released yesterday, Yunfeng Financial (HKEX: 00376) announced the official launch of its “Physical Gold Token” product on the Yunfeng Youyu platform, available exclusively to users who have completed Professional Investor (PI) certification. The offering leverages AlphaToken’s blockchain and RWA tokenization infrastructure to provide professional investors with compliant gold digital asset allocation services.
Each token is backed by 1 gram of London Bullion Market Association (LBMA)-certified physical gold with 99.99% purity. The underlying assets are stored in an internationa
1 seconds ago
In the United States, eight "laptop farm owners" have been sentenced in five months for aiding North Korean IT personnel in infiltrating nearly 70 companies.
**May 8 — The U.S. Department of Justice (DOJ) reports eight people have been sentenced over the past five months for acting as local "agents" for North Korean IT workers.**
In May alone, Tennessee’s Matthew Isaac Knoot and New York’s Erick Ntekereze Prince each received 18-month prison terms. Together, they generated $1.2 million for North Korea and impacted nearly 70 U.S. companies.
Known as "laptop farmers," these individuals received work laptops shipped by U.S. firms on behalf of North Korean workers. They installed remote desktop software, allowing North Korean IT staff to pose as local U.S. remote employees. The scheme funneled revenue to the North Korean government, targeting technical roles at crypto companies to steal assets or infiltrate infrastructure.
Last month, New Jersey’s Kejia Wang and Zhenxing Wang were sentenced to 9 years and 7 years 8 months, respectively, for operating a larger-scale laptop farm that earned North Korea over $5 million. The report cites a
1 seconds ago
App Store
Profile
Security
Sign Out
Feeds
Articles
Source
Add to Favorites
Download image
Share x
Copy link
