Polymarket, the prediction markets platform, has pushed back against a flare of reports alleging a data breach after a dark web post claimed to expose private user details. A hacker using the handle “xorcat” and cybersecurity accounts circulating on X claimed to have stolen more than 300,000 records, including 10,000 full profiles with names, profile images, proxy wallets, and base addresses. Polymarket characterized the allegations as “complete and utter nonsense,” arguing that the information cited is already publicly available.

The controversy emerged as the crypto security community and on-chain markets monitor a wave of hacks and data exposure last month. Hackers and misconfigurations have contributed to a broad set of incidents, with Hacken reporting that Web3 projects lost roughly $482 million in hacks and scams across 44 events in the first quarter of 2026. That backdrop has heightened scrutiny of how much data is exposed by on-chain and API-accessible systems and what constitutes a breach versus an auditable public data surface.

Polymarket’s stance was reinforced by a direct rebuttal on X, where the team said the breach claims were “complete and utter nonsense” and noted that the allegedly stolen data is information already accessible online. In another post, Polymarket emphasized the on-chain and publicly auditable nature of its data: “Part of the beauty of being on chain is all our data is publicly auditable, this is a feature, not a bug. No data was leaked, it’s accessible via our public endpoints and on-chain data. Instead of paying for the data, you can access it for free via our APIs.”

The hacker’s claim centered on breaches through allegedly compromised API endpoints and on-chain data, with assertions that undocumented API endpoints, pagination bypass, and CORS misconfigurations on Polymarket’s Gamma and CLOB APIs were exploited. The attacker also suggested plans to release more data from other prediction markets in the coming days.

Several security researchers expressed skepticism about the breach story. Vladimir S., a threat researcher and chief security officer at Legalblock, cautioned that the evidence suggested data was parsed rather than leaked in a true breach, describing the scenario as unlikely to reflect a real DB compromise.

Key takeaways

• The incident centers on a claim of data theft from Polymarket, which the operator rejects as untrue, asserting that the reported data is publicly accessible and already published.
• Polymarket maintains that its data remains on-chain and publicly auditable, emphasizing that developers and users can access information for free via public APIs.
• The platform counters a narrative that there was no bug bounty program, noting a live program that began on April 16 and has since received hundreds of reports—raising questions about the timing and scope of the alleged data exposure.
• Industry context matters: Hackers and misconfigurations contributed to a broad wave of crypto security incidents in Q1 2026, underscoring the sector’s ongoing vulnerability to data leakage and access-control flaws.
• Skeptics argue the claim could reflect data parsing or misinterpretation rather than a true breach, highlighting the tension between on-chain transparency and sensitive, user-level data exposure.

Polymarket’s response and the data-access debate

At the center of the dispute is Polymarket’s assertion that there was no data breach and that the information cited by the hacker is already public. In posts observed on X, the platform argued that publicly accessible API endpoints and the availability of on-chain data mean that users and developers can retrieve the same data without an intrusion. The company’s position aligns with a broader debate in crypto: when on-chain activity is inherently public and auditable, at what point does exposure become a breach rather than a design characteristic of the architecture?

The exchange also pointed to its API strategy, suggesting that the data being claimed as stolen is accessible to anyone via its APIs rather than representing a security compromise. This framing has drawn mixed reactions from the security community, with some experts acknowledging the public nature of certain data while others caution that exposing sensitive user metadata—especially combined with wallet addresses and profile identifiers—could raise privacy concerns even if technically public.

Beyond the specifics of Polymarket, the episode touches on a longer-running issue in crypto infrastructure: how to balance openness and auditability with the protection of user privacy. On-chain data and API-based access can enable rapid verification and transparency, but they may also broaden the surface area for data collection and potential misuse if not properly controlled or anonymized. The ongoing discussion underscores why platforms must clearly delineate what data is publicly visible versus what is considered sensitive or restricted.

Bug bounty program and security posture

A central counterpoint to the “no bug bounty” narrative is Polymarket’s stated bug bounty program. The platform indicates a live initiative that started on April 16 and has since collected hundreds of reports—446, as of the most recent update. This cadence suggests an active effort to identify and remediate vulnerabilities, even as the current episode unfolds in the public eye. The existence of a formal bug bounty program can be a signal of ongoing security maturity, but it also invites scrutiny about the scope of bug reporting and the responsiveness of fixes in a rapidly evolving threat environment.

Industry observers will be watching whether new vulnerabilities or misconfigurations continue to surface in Polymarket’s API layers or if the current episode remains limited to a misinterpretation of publicly available data. The interaction between bug bounty activity, disclosure timelines, and incident response will offer a read on how quickly the platform can recover trust if any genuine issues emerge.

Industry backdrop: security incidents and on-chain transparency

The broader crypto security landscape adds context to the Polymarket episode. Hackers and misconfigurations have pushed Web3 security to the forefront, with Q1 2026 reporting notable losses across numerous incidents. While the total losses and incident counts vary by source, the trend illustrates that even established markets and prediction platforms remain attractive targets for attackers seeking a data or financial edge.

Analysts note that the public nature of on-chain data can be a double-edged sword: it enables rapid verification and accountability but can also complicate privacy considerations if user-identifying information becomes intertwined with transparent transaction data. In this environment, platforms that champion openness must also ensure robust access controls, careful data minimization, and clear user-facing privacy policies to navigate evolving regulatory and market expectations.

As the narrative around Polymarket evolves, observers will want to see how the platform responds to ongoing scrutiny, whether it publishes more technical details about its API configurations and security controls, and how it communicates any future findings from bug-bounty disclosures. Reports from security researchers, exchange operators, and independent researchers will continue to shape market perceptions about the reliability of data on popular prediction platforms.

In reporting this week, Cointelegraph drew on Hacken’s assessment of the period’s security landscape, underscoring that the first quarter of 2026 saw a significant volume of exploits across the Web3 space. The confluence of public data accessibility and high-profile hack narratives makes clear why investors and builders are paying closer attention to how platforms handle data exposure, API security, and incident response in real time.

Source: Polymarket posts on X, cybersecurity researchers’ commentary, and industry data cited by Hacken and Cointelegraph.

Polymarket is committed to independent, transparent journalism. This news article adheres to Cointelegraph’s Editorial Policy and aims to provide accurate and timely information. Readers are encouraged to verify information independently.

KuCoin EU, the MiCA-licensed arm of the exchange operating within Austria, has appointed Carmen Kleinhans as Anti-Money Laundering (AML) officer and expanded its Vienna-based compliance team with two deputy AML officers drawn from former Austrian regulators and bank compliance leadership. The staffing overhaul comes weeks after Austria’s Financial Market Authority (FMA) barred KuCoin EU from onboarding new clients and signing new contracts, citing deficiencies in key AML/CTF and sanctions controls. The move underscores a broader regulatory push in the European Union toward stronger governance, risk management, and regulatory engagement as MiCA supervision tightens.

According to Cointelegraph, the FMA’s decision reflected concerns that KuCoin EU did not have adequately staffed control functions, a finding that triggered the onboarding ban while regulators assessed the exchange’s readiness to operate under the MiCA framework. The hiring spree in Vienna is meant to align KuCoin EU with conventional financial-services compliance expectations and to bolster institutional credibility with regulators and banking partners alike.

Key takeaways

• KuCoin EU appoints Carmen Kleinhans as AML officer and adds two deputy AML officers sourced from Austrian regulatory and banking compliance backgrounds, expanding the exchange’s governance and risk-capability footprint in Vienna.
• The personnel move follows the FMA’s February action prohibiting KuCoin EU from onboarding new clients or signing new contracts, citing gaps in AML/CTF and sanctions staffing.
• The broader crypto enforcement environment is sharpening its focus on governance and controls, with regulators increasingly willing to suspend or constrain operations over organizational deficiencies rather than solely pursuing technical rule breaches.
• Cross-border actions against KuCoin and its parent entity illustrate the growing enforcement risk profile for crypto firms, spanning the United States, the Middle East, and other jurisdictions.
• The effectiveness of KuCoin EU’s restored control framework will depend on the FMA’s assessment of whether the new governance and risk-management functions are fully operational and compliant under Austrian authorization and MiCA supervision.

Regulatory backdrop: MiCA enforcement and the FMA action

The European Union’s MiCA framework places substantial emphasis on governance, risk management, AML/CTF controls, sanctions screening, and licensing readiness for crypto-asset service providers. In this context, national supervisors retain substantial oversight authority to ensure that licensees meet organizational and internal-control standards necessary for ongoing operations. Austria’s FMA acted in February to prevent KuCoin EU from onboarding new clients or entering into new contracts, a move that regulators described as necessary to address identified staffing gaps in critical compliance roles. The decision signals that, under MiCA, regulators are prepared to take tangible steps to curb operations until governance functions are demonstrably sound—even when the technical aspects of a platform remain intact.

For market participants and institutional observers, the FMA action illustrates a shift toward governance-centered enforcement. Rather than focusing solely on whether a platform offers a particular token or security, authorities are prioritizing whether firms maintain robust, verifiable control environments capable of preventing money movement that could finance illicit activity. This aligns with a broader, multijurisdictional trend toward tightening AML/CTF regimes in crypto, with regulators scrutinizing corporate structure, compliance staffing, risk-management processes, and formal regulatory engagement capabilities as prerequisites for continued operation.

KuCoin EU governance expansion: leadership and scope

The newly announced leadership changes place a seat at the helm of KuCoin EU’s AML program with Carmen Kleinhans, who will lead the entity’s AML, CTF, and sanctions controls. She will be supported by two deputy AML officers—professionals with backgrounds in Austrian regulatory authorities and banking compliance leadership—who will contribute to enterprise-wide risk management and ongoing regulatory engagement. The collective mandate encompasses not only the traditional AML/CTF and sanctions screening functions but also governance oversight across the organization and comprehensive risk reporting to Austrian authorities and, by extension, MiCA supervisory structures.

These hires are intended to rectify the staffing gaps cited by the FMA and to bring KuCoin EU into closer alignment with established financial-services compliance standards. By strengthening governance and control frameworks, KuCoin aims to reduce regulatory uncertainty and improve collaboration with supervisors, auditors, and prospective banking partners. The emphasis on enterprise-wide risk management signals a holistic approach to regulatory compliance that goes beyond ticking technical compliance boxes to address organizational design, reporting lines, and oversight mechanisms that influence day-to-day operations and strategic decision-making.

Enforcement landscape: trends shaping risk for global crypto firms

Enforcement in the crypto sector has increasingly prioritized governance and controls. A regulatory-compliance narrative supported by independent audits and enforcement data shows that firms are being penalized for weaknesses in anti-financial-crime controls as much as for securities or licensing missteps. A CertiK report published on a recent Tuesday highlighted that KuCoin and OKX were among exchanges facing some of the largest AML-related penalties in 2025, underscoring a shift in focus toward financial-crime prevention and control deficiencies rather than solely toward securities-law concerns.

Beyond the EU-specific actions, KuCoin has faced broader regulatory actions across other jurisdictions that amplify the systemic risk profile for cross-border crypto operators. In January 2025, KuCoin agreed to pay nearly $300 million and exit the U.S. market for two years in a criminal resolution related to unlicensed money transmission and AML failures, according to The Wall Street Journal. Later in March 2025, KuCoin’s parent company agreed to pay a $500,000 civil penalty to settle a CFTC action alleging it operated an unregistered offshore commodities exchange. In the same month, Dubai’s Virtual Assets Regulatory Authority issued a warning over allegedly unlicensed activity in the emirate. Taken together, these actions illustrate a broad, multi-jurisdictional enforcement posture that heightens regulatory risk for crypto firms pursuing global operations.

Whether KuCoin EU’s expanded compliance cadre will reconcile the Austrian authorization with MiCA expectations remains contingent on the FMA’s assessment of whether the new control functions have been fully and suitably restored. The timing of such an assessment will influence KuCoin’s ability to re-open or expand its European footprint under the MiCA regime, and could affect licensing timelines, bank onboarding, and ongoing regulatory reporting obligations. Cointelegraph reached out to KuCoin EU for comment, but did not receive a response by publication, underscoring the sensitivity and ongoing nature of regulatory reconciliations in this case.

These developments have practical implications for financial institutions, exchanges, and investors operating across Europe and beyond. For crypto firms, the case reinforces the imperative to institutionalize governance, formalize risk-management frameworks, and maintain ongoing regulatory dialogue as prerequisites for licensure and operational continuity. For regulators, the KuCoin EU episode exemplifies how MiCA and national supervisory regimes are converging toward governance-focused enforcement that scrutinizes organizational design, staff competence, and cross-border compliance programs as core risk-mitigating levers.

Closing perspective

Looking ahead, the key question is whether KuCoin EU’s strengthened compliance structure will satisfy the FMA and enable a durable path to reauthorization under MiCA. In a regulatory environment where governance and controls are increasingly seen as central to operational legitimacy, the Vienna-based initiative represents a critical test case for how crypto firms translate high-level regulatory expectations into enforceable, day-to-day governance practices across multi-jurisdictional operations.

Key Takeaways

• Eli Lilly delivers Q1 2026 financial results Thursday morning before trading begins
• Wall Street projects 36.8% year-over-year revenue expansion
• Previous quarter saw Lilly generate $19.29 billion in sales, marking a 42.6% annual increase
• Revenue projections have received upward adjustments during the past month
• LLY shares have declined 1.5% monthly while pharmaceutical competitors gained 10.8% average

---

Eli Lilly delivers its first-quarter 2026 financial performance Thursday morning before the market opens. Investors will scrutinize whether the pharmaceutical giant can sustain its remarkable expansion trajectory.

Eli Lilly and Company, LLY

During the previous reporting period, the company generated $19.29 billion in total sales, representing a robust 42.6% annual increase. Those figures exceeded Wall Street’s projections and included forward guidance that similarly surpassed analyst expectations.

For the upcoming quarter, financial analysts anticipate revenue expansion of 36.8% compared to the prior year. While this represents a moderation from the 45.2% growth achieved during the comparable period last year, it still indicates substantial momentum.

It’s important to recognize that Lilly has fallen short of Wall Street’s revenue projections on multiple occasions during the previous 24 months. Consequently, despite rising forecasts, exceeding expectations remains uncertain.

Analyst perspectives have trended more optimistic recently. Revenue projections have predominantly received upward modifications throughout the past 30 days, indicating strengthening confidence approaching the release.

Lilly represents the initial major pharmaceutical company reporting during this earnings cycle. Therefore, there aren’t yet any comparable peer results to provide context.

Pharmaceutical Sector Momentum Strong — LLY Lagging

The wider pharmaceutical industry has experienced favorable performance recently. Competitor stocks have advanced 10.8% on average throughout the past month.

Lilly hasn’t participated in this sector rally. LLY shares have retreated 1.5% during the identical timeframe, positioning Thursday’s announcement as a potentially significant catalyst in either direction.

Investor confidence throughout the pharmaceutical space has remained generally constructive, establishing a supportive environment for Lilly entering the report.

Critical Metrics to Monitor

Revenue growth reaching 36.8% represents the benchmark Wall Street has established. Results surpassing that threshold should generate positive reception.

Full-year outlook guidance will carry equal importance to quarterly headline figures. The previous quarter’s enhanced projections proved instrumental in the stock’s favorable response.

Profitability indicators will also attract significant attention. Lilly’s substantial investments in production facilities and capacity expansion mean margin performance remains a focal point for shareholders.

The pharmaceutical manufacturer has been expanding production capabilities for its GLP-1 medications, which have driven its revenue acceleration throughout recent quarters.

Management commentary regarding supply-demand balance for these treatments will receive careful scrutiny.

Regarding potential headwinds, tariff-related concerns have introduced additional uncertainty throughout the pharmaceutical industry. Whether Lilly provides perspective on this topic during Thursday’s conference call merits attention.

Shares currently show a 1.5% monthly decline while the broader pharmaceutical segment has demonstrated superior performance. This relative underperformance could shift rapidly based on quarterly outcomes.

Financial results arrive Thursday before market open. Consensus revenue expectations point toward 36.8% year-over-year growth, with analyst projections having moved higher heading into the announcement.

Key Takeaways

• Eli Lilly delivers Q1 2026 financial results Thursday prior to market opening
• Wall Street projects 36.8% revenue expansion compared to the prior year
• Previous quarter delivered $19.29 billion in sales, representing 42.6% annual growth
• Upward estimate revisions have dominated the past month
• LLY shares have declined 1.5% in the last 30 days while pharmaceutical competitors gained 10.8% on average

---

Eli Lilly unveils its first-quarter 2026 financial performance this Thursday morning before trading begins. Market participants are eager to see if the pharmaceutical giant can maintain its remarkable revenue trajectory.

Eli Lilly and Company, LLY

During the previous quarterly report, the company delivered sales totaling $19.29 billion, representing a substantial 42.6% increase from the year-ago period. Those figures exceeded Wall Street projections and included forward guidance that surpassed consensus expectations.

For the upcoming release, the Street is anticipating revenue expansion of 36.8% on a year-over-year basis. While this represents a deceleration from the 45.2% growth registered in the comparable period last year, it still reflects robust performance.

It’s important to recognize that Lilly has fallen short of Street revenue projections on multiple occasions during the previous 24 months. Consequently, despite rising estimates, exceeding expectations remains uncertain.

Analyst outlook has trended more optimistic recently. Revenue forecasts have experienced predominantly upward adjustments throughout the last month, indicating strengthening conviction ahead of the announcement.

Lilly stands as the initial major pharmaceutical company reporting results this earnings cycle. This timing means investors cannot yet gauge industry trends from competitor announcements.

Pharmaceutical Sector Momentum Strong — Except for LLY

The wider pharmaceutical industry has experienced solid performance recently. Competitor stocks have advanced 10.8% on average during the past 30 days.

Lilly has failed to participate in this advance. LLY shares have dropped 1.5% across the identical timeframe, positioning Thursday’s announcement as a potentially significant market-moving event.

Investor attitudes throughout the sector have tilted constructive, establishing a favorable environment for Lilly entering the earnings release.

Critical Metrics for Thursday’s Report

The 36.8% revenue growth benchmark represents the threshold analysts have established. Results surpassing this level should generate positive market reaction.

Full-year projections will carry equal weight to the quarterly revenue figure. The previous quarter’s elevated outlook proved instrumental in driving favorable stock performance.

Profitability measurements will draw significant scrutiny. Lilly’s substantial commitments to manufacturing infrastructure and production capacity mean margin performance remains a central investor concern.

The pharmaceutical company has been expanding manufacturing capabilities for its GLP-1 product portfolio, which has fueled much of its revenue acceleration across recent quarters.

Management commentary regarding supply-demand balance for these medications will attract considerable attention.

On the risk side, tariff-related headwinds have introduced additional uncertainty throughout the pharmaceutical space. Whether company executives address this topic during Thursday’s conference call merits observation.

The shares currently sit 1.5% lower over the trailing month while the broader pharmaceutical cohort has demonstrated superior returns. This relative underperformance could shift rapidly based on Thursday’s results.

Financial results arrive before the opening bell Thursday morning. Revenue consensus projects growth of 36.8% year over year, with analyst forecasts experiencing upward momentum in recent weeks.

Prediction markets are becoming one of the most active onchain applications, with retail users driving most activity even as participation across much of the broader digital asset market remains subdued.

According to a new report by Bitget Wallet and Polymarket, monthly trading volume reached $25.7 billion in March, with more than 80% of users classified as retail, defined as those trading less than $10,000.

The figures are broadly consistent with data from Dune Analytics, which recorded $23.7 billion in March trading volume, up from $1.9 billion a year earlier.

The report points to a broader behavioral shift in how prediction markets are used. Rather than focusing on one-off, high-profile events, users are returning more frequently and engaging across multiple categories. Average active days per user almost quadrupled from 2.5 to 9.9 over the first quarter, indicating deeper and more consistent participation.

Sports emerged as the largest segment, generating $10.1 billion in trading volume during the quarter, driven by a steady availability of global sporting events. Political markets also saw significant activity, totaling $5 billion over the same period.

The findings suggest prediction markets are evolving beyond episodic betting into a more continuous system for tracking real-world developments, with crypto wallets increasingly serving as key access points for users.

Trading volumes across various prediction markets. Source: Bitget Wallet

Polymarket, one of the largest platforms in the sector, operates on Polygon, allowing users to place onchain bets on real-world outcomes without intermediaries. By contrast, platforms such as Kalshi operate centralized marketplaces.

Related: Polymarket odds of Hormuz Strait traffic normalizing by end of May spike to 73%

Prediction market activity continues to grow

Industry projections cited in the report suggest prediction market volumes could reach $240 billion annually this year, with longer-term forecasts pointing toward the trillion-dollar mark.

That trajectory no longer seems far-fetched. Prediction markets have seen significant momentum since the 2024 US presidential election, benefiting early movers such as Polymarket and Kalshi. Both platforms are reportedly raising substantial capital at valuations exceeding $20 billion.

For Polymarket, evolving regulatory dynamics, particularly growing acceptance from the US Commodity Futures Trading Commission, have enabled more proactive steps around market integrity and transparency. The platform recently updated its governance framework to address risks related to insider trading and market manipulation.

Sports, crypto and politics remain high-volume event categories on Polymarket. Source: Bitget Wallet

Magazine: Are DeFi devs liable for the illegal activity of others on their platforms?

Cointelegraph is committed to independent, transparent journalism. This news article is produced in accordance with Cointelegraph’s Editorial Policy and aims to provide accurate and timely information. Readers are encouraged to verify information independently.

Hong Kong regulators have warned investors about counterfeit stablecoins circulating under the names of newly approved issuers, even as the city prepares for its first regulated launches.

Scammers have begun promoting fake tokens linked to HSBC and Anchorpoint Financial, the two firms recently granted stablecoin licenses in the region. The activity comes before either company has released an official product.

The Hong Kong Monetary Authority (HKMA), along with both firms, issued alerts on Tuesday after tokens using the tickers “HKDAP” and “HSBC” appeared in the market without authorization.

“As of this moment, both licensed stablecoin issuers have confirmed that they have not issued any regulated stablecoins in the market,” the HKMA said.

Hong Kong rolled out its stablecoin licensing framework in August 2025, with the first approvals granted last month. HSBC and Anchorpoint Financial were selected as the initial participants under the regime, following a vetting process that included reserve requirements and compliance checks.

HSBC, Anchorpoint reiterate launch timelines amid scams

In a statement, HSBC said it “has not yet issued any stablecoins in Hong Kong,” noting that its planned Hong Kong dollar-pegged token will be introduced through PayMe and the HSBC HK Mobile App in the second half of 2026.

Anchorpoint Financial gave a similar clarification, stating that it has not launched any tokens under the HKDAP ticker since receiving its license on April 10. “Anchorpoint would like to remind the public to verify information through official sources and use only regulated channels when acquiring or using stablecoins,” the firm said.

Anchorpoint operates as a joint venture backed by Standard Chartered, Animoca Brands, and Hong Kong Telecommunications, positioning it among the early institutional entrants into Hong Kong’s regulated digital asset market.

Oversight and enforcement standards

Under Hong Kong’s licensing regime, issuers of fiat-referenced stablecoins must obtain approval from the HKMA and meet strict requirements on reserve backing, redemption guarantees, governance standards, and Anti-Money Laundering compliance.

The framework also grants the regulator authority to investigate misconduct and take enforcement action, including imposing fines, suspending operations, or revoking licenses if firms fail to meet regulatory obligations.

The rollout follows earlier delays in the approval process. HKMA Chief Executive Eddie Yue had previously indicated that only a “very small number of issuers” would be licensed in the initial phase.

The eventual approval of HSBC and Anchorpoint has now set the stage for Hong Kong’s first regulated stablecoin launches, even as authorities move to curb fraudulent activity in the market.

Network News

MYTHOS CHALLENGES CRYPTO SECURITY: Mythos, the new AI model from Anthropic that has sparked fear and confusion in traditional tech and finance, is also driving a massive shift in how the crypto industry thinks about security. For years, decentralized finance has focused its defenses on smart contracts. Code is audited, vulnerabilities are cataloged, and many common exploits are well understood. But Mythos, a model designed to identify and chain together weaknesses across systems, is pushing attention beyond code and into the infrastructure that supports it. “The bigger risks sit in infrastructure,” said Paul Vijender, head of security at Gauntlet, a risk management firm. “When I think about AI-driven threats, I’m less concerned about smart contract exploits and more focused on AI-assisted attacks against the human and infrastructure layers.” That includes key management systems, signing services, bridges, oracle networks and the cryptographic layers that connect them. These components are less visible than smart contracts and are often outside the scope of traditional audit. In fact, this month, web infrastructure provider Vercel, used by many crypto companies, disclosed a security breach that may have exposed customer API keys, prompting crypto projects to rotate credentials and review their code. Vercel traced the intrusion to a compromised Google Workspace connection via the third-party AI tool Context.ai, which an employee used. Mythos belongs to a new class of AI systems built to simulate adversaries. Instead of scanning for known bugs, it explores how protocols interact, testing how small weaknesses can be combined into real-world exploits. That approach has drawn attention beyond crypto. Banks like JP Morgan are increasingly treating AI-driven cyber risk as systemic and are exploring tools like Mythos for stress testing. Earlier this month, Coinbase and Binance both reportedly approached Anthropic to test Mythos. Early findings from models like Mythos have identified weaknesses in the behind-the-scenes systems that keep crypto platforms secure, including the technology that protects keys and handles communication between systems. — Margaux Nijkerk Read more.

AAVE’S $300M RECOVERY EFFORT: In the often-fractured world of decentralized finance, crises tend to expose fault lines. This time, they’re also revealing an unusual level of coordination. Aave, one of DeFi’s largest lending protocols, is at the center of a broad recovery effort following losses tied to the Kelp DAO exploit, drawing in capital and credit commitments from across the industry. The effort, informally dubbed “DeFi United,” had raised about $301 million in commitments as of Monday, according to its website, with much of the capital still pending governance approval. The exploit, which rippled into rsETH markets and created risk across lending positions on Aave, has prompted what is shaping up to be one of the most coordinated industry responses to a DeFi incident. “There’s a shared priority around supporting users and restoring normal market conditions,” an Aave Labs spokesperson told CoinDesk. “Many of these participants are deeply connected to DeFi, whether through infrastructure, capital, or user access, and have a direct interest in ensuring markets function as expected.” At the core of the effort is Aave itself. A governance proposal outlines a plan for the DAO to allocate up to 250,000 ETH as part of the recovery. Founder Stani Kulechov separately indicated he would donate 5,000 ETH personally. Other contributors within Aave’s orbit are also stepping in, including Aave’s Emilio Frangella (500 ETH), BGD Labs’ Ernesto Boado (100 ETH), BGD Labs (250 ETH) and KPK’s Marcelo Ruiz de Orlano (100 ETH). The response has quickly extended beyond Aave, and in some cases began with direct outreach. Following the April 18 bridge hack, Kulechov reached out to Consensys and other ecosystem participants early to help coordinate a response, according to a Consensys spokesperson. The firm, alongside its founder Joseph Lubin, agreed to commit up to 30,000 ETH in financial support to help advance the recovery and protect users. Sharplink played a strategic advisory role in those discussions, the spokesperson said. — Margaux Nijkerk Read more.

CRYPTO IS FOR AI AGENTS, SAYS ALCHEMY CEO: The modern financial system was never designed for machines. It was built around the constraints of human life: geography, sleep cycles, paperwork and physical presence. But as AI agents begin to act as economic participants, that human-centric design is starting to look less like a feature and more like a bottleneck, said the co-founder of crypto firm Alchemy. “You can argue that crypto was built for AI agents, not humans,” said Nikil Viswanathan, who is also CEO. The mismatch is everywhere. Banks have operating hours because humans do. Payments are tied to countries because people live in them. Credit cards assume physical identity and presence, he said. AI agents operate differently. They don’t sleep. They don’t live anywhere. They don’t walk into banks or carry cards. And increasingly, they don’t just assist with tasks, they transact. “All transactions for agents are online. They’re inherently global,” Viswanathan, who will be speaking at Consensus Miami next month, told CoinDesk in an interview. That’s where crypto starts to look less like an alternative financial system and more like the native infrastructure for a new kind of economic actor, he said. Traditional finance assumes friction. Paying someone in another country involves currency exchanges, intermediaries, delays, fees. For humans, that’s normal; for AI agents, it’s unusable. Agents need to transact seamlessly across borders, at any time, often in tiny increments. They need programmability, direct control over money via code and systems that don’t depend on physical infrastructure or identity. Crypto offers exactly that: a global, always-on financial layer where value moves as easily as data, he said. “Crypto is the global infrastructure for money that agents need,” Viswanathan said. — Will Canny Read more.

BITCOIN PROPOSAL FOR SATOSHI-LINKED TOKENS: Paul Sztorc is not trying to move Satoshi Nakamoto’s bitcoin. That narrow fact is getting lost in the backlash around eCash, a proposed Bitcoin fork scheduled for August at block height 964,000. The new chain would copy Bitcoin’s history up to that point, giving BTC holders an equivalent balance on the forked network. Hold 4.19 BTC, get 4.19 eCash.This would follow the standard fork playbook. Bitcoin Cash did it in 2017, and Bitcoin SV followed later. Both copied Bitcoin’s ledger and changed the rules in the hope the market would care. eCash is different because of what it plans to do with Satoshi’s copied coins. The roughly 1.1 million BTC attributed to Bitcoin’s pseudonymous creator Satoshi Nakamoto sits in dormant addresses often linked to the Patoshi pattern, an early mining fingerprint widely believed to trace back to Satoshi, though never conclusively proven. On a normal one-to-one fork, those addresses would receive roughly 1.1 million eCash. Sztorc’s plan would allocate 600,000 eCash to those addresses and redirect the remaining 500,000 eCash to investors who fund the project before launch. Sztorc, CEO of LayerTwo Labs, pushed back on the theft framing in a Monday X post. “We do not take any of Satoshi’s BTC,” he wrote. “BTC balances are untouched by eCash. To move BTC, you always need BTC software and the BTC private key. We lack both.” But Satoshi’s untouched holdings function as Bitcoin’s foundational guarantee, the proof that even the network’s creator never moved his coins because the rules apply to everyone equally. Selling claims on a forked-chain version of those holdings to fund a new project is the part that reads as theft, even when no theft is technically occurring. That turns the dispute into a property-rights fight, even if the property exists only on a new chain. — Shaurya Malwa Read more.

---

In Other News

• BlackRock-backed Securitize and Computershare are bringing parts of the $70 trillion U.S. stock market onchain via tokenized equities in a move that pushes traditional Wall Street infrastructure closer to blockchain rails. The agreement allows listed firms to add tokenized equity — called Issuer-Sponsored Tokens (ISTs) — alongside existing shares, giving investors the option to hold stock through traditional systems or in a digital wallet. The effort is part of a broader push to make tokenized shares work within current market rules while offering new ways to hold and move assets, from wallet-based ownership to faster settlement. Transfer agents like Computershare sit at the center of the system, maintaining shareholder records and handling corporate actions. By integrating at that layer, the companies aim to avoid a common crypto workaround, in which tokens represent claims on shares rather than the shares themselves. Under the setup, Computershare will act as transfer agent for tokenized shares just as it does for traditional ones. That includes managing records and processing events like dividend payments and stock splits across both formats. Securitize provides the underlying technology, but like other recent efforts in the space, the blockchain component sits mostly in the background. The tokens are designed to represent direct ownership, not derivatives layered on top of existing stock. — Kristzian Sandor Read more.
• Crypto payments firm MoonPay acquired Sodot, an Israeli crypto security startup, as part of its plan for MoonPay Institutional, a new unit built for large financial institutions looking to access crypto. Bloomberg reports, citing sources familiar with the acquisition, that it’s an all-stock deal worth about $100 million. The new unit will offer tools for trading, tokenized securities, payments, wallet management and stablecoin issuance. Sodot’s technology will serve as the key management layer for the business. MoonPay Institutional will be led by Caroline D. Pham, who joined MoonPay in December as chief legal officer and chief administrative officer after serving as acting chair of the Commodity Futures Trading Commission last year. Sodot’s self-hosted multi-party computation (MPC) infrastructure is built for institutions that need tighter control over how assets move, who can approve transfers and how automated systems handle transactions.— Francesco Rodrigues Read more.

---

Regulatory and Policy

• Hong Kong’s central bank warned that counterfeit tokens are already exploiting the city’s stablecoin regime, even before a single licensed product has been introduced. In a statement, the Hong Kong Monetary Authority (HKMA) said tokens using the tickers “HKDAP” and “HSBC” are circulating in the market, but have no connection to any authorized issuer. Both licensed stablecoin applicants referenced in related press materials confirmed they have not issued any regulated stablecoins, it said. Earlier this month, the HKMA granted its first stablecoin licenses under the Stablecoins Ordinance, which took effect in August 2025, selecting two groups from a pool of 36 applicants. The choice of HSBC and a Standard Chartered-led entity mirrors Hong Kong’s existing monetary system, where a small group of commercial banks is authorized to issue banknotes. The HKMA urged the public to “stay vigilant against fraudulent activities,” advising users to rely only on official communications from licensees and to transact through regulated channels. Insiders say they expect a launch during Hong Kong’s fintech week in November. — Sam Reynolds Read more.
• Israel’s Capital Market Authority granted approval for a stablecoin pegged to the shekel for the first time. Tel Aviv-based cryptocurrency exchange Bits of Gold received authorization to issue the token after a two-year evaluation and pilot process, the authority said in a post on LinkedIn. The token, BILS, was developed in collaboration with the Solana network and crypto custodian heavyweights Fireblocks, with auditing oversight provided by Big Four consultancy firm EY, Bits of Gold said in an emailed statement. The size of the stablecoin sector — crypto tokens pegged to the value of a traditional financial asset, usually a fiat currency — has surged in the last 18 months to more than $300 billion fueled by the establishment of formal regulatory regimes in major markets such as the U.S. The overwhelming dominance of U.S. dollar-pegged tokens in the sector has prompted concerns in markets outside the U.S. about the threat of losing financial and digital sovereignty if onchain payments all default to dollars as their unit of account. — Jamie Crawley Read more.

---

Calendar

• May 5-7, 2026: Consensus, Miami
• June 2-3, 2026: Proof of Talk, Paris
• June 8-10, 2026: ETHConf, New York
• Sept. 29-Oct.1, 2026: Korea Blockchain Week, Seoul
• Oct. 7-8, 2026: Token2049, Singapore
• Nov. 3-6, 2026: Devcon, Mumbai
• Nov. 15-17, 2026: Solana Breakpoint, London