On April 18, 2026, North Korea’s Lazarus Group (TraderTraitor unit) executed a $290M theft from KelpDAO’s rsETH bridge by compromising two LayerZero RPC nodes that feed data to the protocol’s verifier. The attacker hacked the nodes, deployed malware to feed false transaction data exclusively to LayerZero’s verifier while maintaining honest responses to monitoring systems, then DDoS’d legitimate RPC endpoints to force the verifier to rely on the poisoned nodes. Once the verifier signed off on a fabricated transaction, the bridge released $290M in unbacked rsETH before the malware self-destructed and deleted all traces.

LayerZero Labs confirmed KelpDAO used a 1-of-1 DVN (Decentralized Verifier Network) setup—a single point of failure the protocol had repeatedly warned against—limiting contagion to KelpDAO’s bridge with no reported impact on other assets. Security researchers noted the attack vector raises unanswered questions about how the attacker obtained the RPC node list and achieved root-level access to production infrastructure, suggesting either a prior unreported LayerZero compromise, a breached deployment pipeline, or insider access rather than a Kelp-side misconfiguration.

Sources: LayerZero

This article was generated automatically by The Defiant’s AI news system from publicly available sources.

DeFi tokens suffered steep declines over a recent window as contagion from a bad debt event spread across multiple protocols. AAVE declined 22%, LayerZero’s ZRO fell 22%, Lido’s LDO dropped 19%, Ethena’s ENA slid 13%, and Compound’s COMP lost 10%, according to Santiment. ETH remained flat over the same period, highlighting the sector-specific pressure on DeFi assets.

LayerZero, which operated the bridge connecting the affected protocols, was repriced by markets as equally culpable to Aave, which held the bad debt. Notably, Ethena—which held zero exposure to the underlying rsETH collateral—still experienced a 13% decline, suggesting contagion fears extended to protocols with no direct exposure. Compound, with only minor rsETH exposure, fell 10%, indicating cascading risk reassessment across the broader DeFi ecosystem.

Sources: Santiment

This article was generated automatically by The Defiant’s AI news system from publicly available sources.

TLDR:

• Nike stock has fallen 76% from its 2021 all-time high of $179.10, now trading between $42 and $46 per share. 
• China sales are projected to drop 20% as local brands like Li-Ning capture the mid-to-high-tier footwear market. 
• Converse recorded a 35% revenue plunge, reflecting Nike’s broader loss of relevance in lifestyle and streetwear segments. 
• Tim Cook and Director Bob Swan purchased a combined $3.5M in Nike shares, signaling boardroom confidence at decade lows.

Nike stock has fallen to its lowest level in over a decade, trading between $42 and $46 following an April 2026 earnings shock.

The decline represents a 76% drop from its 2021 all-time high of $179.10, erasing 12 years of gains for long-term shareholders.

Meanwhile, board members are purchasing shares at these levels, creating a split between public sentiment and insider conviction.

Overseas Pressure and Brand Challenges Drive Nike’s Decline

Nike faces a projected 20% sales drop in China, one of its highest-margin markets. The shift stems from Guochao, a cultural movement among Chinese millennials and Gen Z embracing domestic brands and national identity.

Local competitor Li-Ning sold over 26 million pairs of professional running shoes last year, moving firmly into the mid-to-high-tier segment.

As Li-Ning and similar brands gain ground, Nike’s premium positioning in China is becoming harder to defend. Analyst Ali Charts observed on X, noting that Nike is “currently weathering its most significant structural challenge since 2014,” with the stock retreating to a decade-low and erasing 12 years of gains for long-term holders.

The pressure is not limited to performance footwear. Converse, Nike’s lifestyle subsidiary, recorded a 35% revenue plunge, pointing to a broader loss of cultural relevance in the casual and streetwear segments.

This decline serves as a clear signal that the market is moving away from the classic aesthetics Nike has long relied on.

In response, CEO Elliott Hill has moved to rebuild wholesale partnerships with retailers like Foot Locker and Dick’s Sporting Goods.

This shift reverses the Direct-to-Consumer strategy that previously supported Nike’s higher profit margins. While it helps clear inventory, it marks a structural retreat for the brand.

Board Members Buy Shares as Stock Hits Oversold Territory

On the technical side, Nike’s monthly RSI has reached its most oversold reading since the company went public. Historically, Nike’s corrections have ranged from 24% to 73%. The current 76.5% drawdown from its all-time high is the steepest in company history.

Ali Charts further noted that the stock appears to be in the “Anger Phase” of the market cycle. This is the period when negative news feels heaviest, often just as a price floor begins forming. The zone between $35 and $42 is being watched as a potential long-term support area.

Against this backdrop, two Nike board members made notable open-market purchases. Tim Cook, Apple’s CEO and a Nike director, bought approximately $3 million in Nike shares. Director Bob Swan added $500,000 to his position at similar price levels.

Insider purchases of this size, made during a period of broad pessimism, tend to attract attention from value-oriented investors. They suggest that those closest to the company view current challenges as correctable rather than permanent.

• Attribution source: LayerZero conducted the post-incident investigation and named North Korea’s Lazarus Group – specifically the TraderTraitor subgroup – as the likely perpetrator.
• Technical root cause: Kelp DAO operated a 1-of-1 DVN (single decentralized verifier node) setup, ignoring LayerZero’s repeated recommendations for multi-verifier redundancy.
• Exploit amount: Approximately $292 million drained from Kelp DAO’s rsETH pool; no LayerZero protocol code or private keys were compromised.
• Market impact: DeFi TVL fell 7% in 24 hours to $86 billion following the incident.
• Response: LayerZero decommissioned affected RPC nodes and restored full DVN operations; law enforcement collaboration is ongoing for fund tracing.
• Watch: Whether Kelp DAO announces a compensation mechanism and whether additional cross-chain protocols operating single-DVN configurations move to remediate before the next attack.

Switzerland-headquartered hardware wallet company Tangem today announced the global rollout of its retail payments product, Tangem Pay, per a press release shared exclusively with The Defiant.

The new feature lets Tangem wallet users spend stablecoin USDC anywhere where Visa is accepted, using virtual Visa cards that can be added to Apple Pay and Google Pay.

The wallet manufacturer also announced today that it is partnering with Polygon for the new product, with the blockchain providing on-chain settlement for all transactions.

As of today, Tangem Pay is available to users in the U.S. (excluding some states), Latin America, and select countries in the Asia-Pacific region. The global rollout follows an early-access phase for waitlisted users that began in November, the press release notes.

Tangem is a self-custodial hardware wallet founded in 2017. Unlike crypto hardware wallet giants Trezor and Ledger, Tangem only offers NFC-powered devices for crypto storage, which come in two forms: a card that’s about the size and shape of a bank card, as well as a wearable ring.

How It Works

To pay with Tangem Pay, users need to convert funds they want to spend into USDC first, before transacting, the firm clarifed to The Defiant. “Over time, we will expand supported assets and settlement options,” Tangem Pay CEO Marcos Nunes told The Defiant.

Currently, the wallet only lets users create virtual Visa cards that they can add to payment services like Apple Pay. But the firm plans to launch physical cards as well.

“A large part of the world still relies on physical cards, and we want to support that fully,” said Nunes. Tangem Pay’s CEO told The Defiant that the physical Visa card launch is expected this year.

Why Polygon?

Tangem said that the firm selected Polygon for its transaction speed, predictable fees, and ability to handle the high transaction volumes required for global payments. “Payments are a scale game, not a theory exercise,” Nunes told The Defiant, continuing, “You need near-zero fees, fast finality, and reliability under load. Polygon delivers that today in a way that supports real daily spending.”

Nunes also added, “We are not dogmatic about chains. This is an infrastructure decision. If something better emerges, we will adapt.”

Per the press release, Polygon will cover gas fees for users, at least for the initial rollout period. There are no fees from Tangem’s side, Nunes clarified to The Defiant. “It should feel like using money in a regular account.”

Aishwary Gupta, head of global business development at Polygon Labs, said in a statement: “With Polygon as the settlement layer, Tangem Pay makes self-custody practical for real-world spending, combining the transparency of blockchain with the speed and reliability users expect.”

Polygon is an Ethereum sidechain with $1.27 billion in total value locked in DeFi across 775 protocols, per DefiLlama. That makes it the 11th-largest chain in DeFi by TVL, while it’s currently the 4th-largest chain by 24-hour active addresses.

In January, Polygon Labs announced its acquisition of two U.S. regulated crypto companies, Coinme and Sequence, adopting their licenses and enabling Polygon’s operations as a regulated payments platform across 48 U.S. states.

• Weekly inflows: Nearly $1 billion – highest since mid-January
• IBIT dominance: BlackRock captured $612 million of total flows
• Total net assets: Surpassed $101 billion by end of week
• YTD flows: Turned positive for first time since January per Bloomberg’s Balchunas
• Global share: U.S. institutions captured 96.4% of $1.1 billion in global crypto product inflows
• ETH ETFs: $275 million net inflows; XRP ETFs added $11.75 million; Solana lost $5.6 million

BitMine Immersion Technologies (BMNR), the largest Ethereum-focused digital asset treasury firm, sped up its crypto purchase pace as chairman Tom Lee sees growing signs of the crypto “mini-winter” ending.

The firm reported Monday it acquired 101,627 ether (ETH) last week, its largest weekly haul since December 15. The purchase, worth roughly over $230 million at current ETH prices, lifted BitMine’s total holdings to 4.97 million ETH.

The move comes as most digital asset treasuries — except Michael Saylor’s bitcoin-focused Strategy (MSTR) — have slowed or halted buying in recent months. BitMine remains among the last large-scale buyers of ether-focused treasuries, continuing to provide a steady source of demand for ETH.

BitMine’s total crypto and cash holdings stand at $12.9 billion. In addition to its ETH treasury, the firm holds 199 bitcoin, $1.12 billion in cash and equity stakes including investments in Beast Industries and Eightco Holdings.

Chairman Thomas Lee said the firm sees signs that the recent downturn is nearing an end, pointing to ETH’s rebound and broader market dynamics.

“Bitmine has maintained the increased pace of ETH buys in each of the past four weeks, as our base case ETH is in the final stages of the ‘mini-crypto winter,’” Lee said.

He added that ether has risen sharply from its early February lows and has outperformed equities since the start of the Iran conflict, supported by demand tied to tokenization and AI-related use cases.

BitMine has also continued expanding its staking operations. The firm has staked more than 3.3 million ETH, or about two-third of its holdings, generating roughly $221 million in annualized revenue.

Michael Saylor’s Strategy (MSTR) added 34,164 bitcoin to its treasury over the past week at an average price of about $74,395 per coin, for a total cost of roughly $2.54 billion, according to a Monday filing.

The purchase brings the company’s total holdings to 815,061 BTC, acquired for approximately $61.56 billion at an average cost basis of $75,527. With BTC currently trading at around $75,000, Strategy’s stash is currently break even. Strategy is the world’s largest publicly-listed bitcoin holder. It began acquiring BTC as a balance sheet asset in 2020.

Last week’s acquisitions were funded by $2.2 million raised through sales of the company’s preferred stock, Stretch (STRC), and $366 million from common stock offerings.

MSTR shares are down more than 2.5% in pre-market trading.

Users have been advised to stop interacting with any DeFi application for a few days after Vercel, the creator of Next.js and cloud provider for a large number of crypto’s user-facing platforms, admitted that attackers breached its internal systems.

According to Vercel CEO Guillermo Rauch, the attack happened when one of its employees “got compromised via the breach of an AI platform customer called Context.ai that he was using.”

The attackers, who Rauch says were “significantly accelerated by AI,” apparently escalated through the employee’s Google Workspace account into Vercel’s corporate environment.

A BreachForums seller claiming to be extortion crew ShinyHunters is demanding a $2 million ransom via a listing that allegedly includes GitHub tokens. 

For DeFi, the incident is a nightmare. A user interacting with a poisoned Next.js package via a website can sign a transaction straight into an attacker’s wallet.

Vercel disclosed the incident in a Sunday security bulletin, saying that it had found “unauthorized access to certain internal Vercel systems” and had already engaged law enforcement.

Following the disclosure, X user and Cork Protocol CTO “Pybast,” who is also former CTO of DeFi cybersecurity company Nefture, warned users to stop interacting with “any DeFi application,” adding that “a lot of DeFi is hosted on Vercel and crypto users are a prime target for such attack.”

Comically, he suggested eth.limo, which also had its own security incident on the same day, as a safer alternative.

Next.js cleared 520 million downloads in 2025, according to Rauch. DeFi dashboards, crypto wallet connectors, and token launchpads use it. 

Members of the crypto community were concerned that the hacker could use Vercel credentials to push malicious code to dependencies pulled by thousands of downstream projects.

Rauch has named Mandiant, Google’s incident-response arm, as the firm assisting with incident response.

Only a “limited subset of customers” was affected, Rauch claimed, and services remained operational. 

Read more: ‘Decentralized’ apps suffer after Ledger Connect Kit attack

DeFi terrified after Vercel breach

A screenshot of the ransom notice, published by BleepingComputer, advertises multiple employee accounts, internal deployments, API keys, and GitHub tokens. 

The vendor attached hundreds of employee records, a screenshot of Vercel’s internal Linear instance, and what appears to be an internal enterprise dashboard.

BleepingComputer couldn’t verify their authenticity. 

Curiously, threat actors tied to the actual ShinyHunters extortion crew told BleepingComputer that they had nothing to do with this particular caper.

Got a tip? Send us an email securely via Protos Leaks. For more informed news, follow us on X, Bluesky, and Google News, or subscribe to our YouTube channel.

Si vous cherchez un site de pari sportif fiable et sécurisé, vous êtes au bon endroit. Dans cet article, nous allons vous présenter les avantages de l’application Melbet APK Maroc et les mesures de sécurité mises en place pour protéger vos informations personnelles.

Télécharger Melbet est un choix populaire parmi les fans de sport et les passionnés de jeu. Cependant, il est important de choisir une version APK fiable et sécurisée pour éviter les problèmes de sécurité. Dans ce contexte, l’application Melbet APK Maroc est une excellente option.

La sécurité est un des principaux objectifs de Melbet. L’application utilise des protocoles de sécurité de pointe pour protéger vos informations personnelles et vos transactions. De plus, Melbet dispose d’une équipe de sécurité expérimentée qui travaille en permanence pour détecter et prévenir les menaces potentielles.

En téléchargeant Melbet APK Maroc, vous bénéficiez d’une expérience de jeu sécurisée et fiable. L’application est disponible pour téléchargement sur le site officiel de Melbet et peut être installée sur votre appareil mobile ou ordinateur.

En résumé, l’application Melbet melbet app APK Maroc est une excellente option pour les fans de sport et les passionnés de jeu qui cherchent une expérience de jeu sécurisée et fiable. Avec ses mesures de sécurité mises en place et son équipe de sécurité expérimentée, Melbet est un choix sûr pour vos paris sportifs.

Il est important de noter que la sécurité est un effort continu et que Melbet travaille en permanence pour améliorer ses mesures de sécurité.

Melbet APK Maroc est disponible pour téléchargement sur le site officiel de Melbet.

Melbet APK Maroc : Sécurité et protection des utilisateurs

Pour garantir une expérience de jeu sécurisée et protégée, il est essentiel de télécharger l’application Melbet APK Maroc. Cette application offre une variété de fonctionnalités pour protéger vos informations personnelles et votre argent.

En téléchargeant l’application Melbet APK Maroc, vous pouvez être sûr que vos données sont cryptées et protégées par des mesures de sécurité robustes. De plus, l’application offre une fonction de verrouillage pour empêcher les accès non autorisés à votre compte.

Il est également important de noter que l’application Melbet APK Maroc est régulièrement mise à jour pour garantir la sécurité et la stabilité de l’application. Cela signifie que vous pouvez être sûr que vous bénéficiez de la dernière version de l’application, avec les meilleures fonctionnalités de sécurité et de protection.

En outre, l’application Melbet APK Maroc offre une fonction de réinitialisation de mot de passe pour vous aider à récupérer votre compte en cas de problème. Cela signifie que vous pouvez être sûr de récupérer votre compte rapidement et facilement, sans avoir à vous soucier de la sécurité de vos informations.

En résumé, télécharger l’application Melbet APK Maroc est la meilleure façon de garantir une expérience de jeu sécurisée et protégée. Avec ses fonctionnalités de sécurité et de protection, vous pouvez être sûr de jouer en toute sécurité et de protéger vos informations personnelles.

Il est donc recommandé de télécharger l’application Melbet APK Maroc pour bénéficier de ces fonctionnalités de sécurité et de protection. Vous pouvez télécharger l’application en cliquant sur le lien suivant : [télécharger l’application Melbet APK Maroc](https://www.melbet.com/maroc/download).

En résumé, l’application Melbet APK Maroc est la meilleure façon de garantir une expérience de jeu sécurisée et protégée. Avec ses fonctionnalités de sécurité et de protection, vous pouvez être sûr de jouer en toute sécurité et de protéger vos informations personnelles.

La nécessité d’une application sécurisé

Il est essentiel de disposer d’une application sécurisée pour protéger vos informations personnelles et vos transactions en ligne. La mélbet app est une application sécurisée qui garantit la confidentialité de vos informations et la protection de vos transactions.

En téléchargeant la mélbet app, vous pouvez être sûr que vos informations sont protégées et que vos transactions sont sécurisées. La mélbet app utilise des méthodes de cryptage avancées pour protéger vos informations et vos transactions.

Il est important de noter que la mélbet app est disponible pour téléchargement sur les appareils mobiles et les ordinateurs de bureau. Vous pouvez télécharger la mélbet app sur votre appareil mobile ou votre ordinateur de bureau pour accéder à vos informations et vos transactions en ligne.

En utilisant la mélbet app, vous pouvez être sûr que vos informations sont protégées et que vos transactions sont sécurisées. La mélbet app est une application sécurisée qui garantit la confidentialité de vos informations et la protection de vos transactions.

Il est important de noter que la mélbet app est disponible en plusieurs langues, y compris le français. Vous pouvez télécharger la mélbet app sur votre appareil mobile ou votre ordinateur de bureau pour accéder à vos informations et vos transactions en ligne.

En résumé, la mélbet app est une application sécurisée qui garantit la confidentialité de vos informations et la protection de vos transactions. Il est essentiel de disposer d’une application sécurisée pour protéger vos informations personnelles et vos transactions en ligne.