Home Blog Page 99

Gravity Bridge hack drains $5.4M as TVL crashes 47% – Details

By
moneyvests
-
0
Gravity Bridge hack drains $5.4M as TVL crashes 47% - Details


Gravity Bridge, a cross‑chain protocol connecting Ethereum [ETH] with the Cosmos ecosystem, was attacked on the 30th of May, adding to the string of exploits seen in 2026. According to on‑chain investigator Specter, the breach compromised roughly $5.4 million. 

In this contract key compromise, a total of four assets were drained, which includes $4.3 million in Tether (USDT), 274 ETH worth $553K, $434K in Circle (USDC), and 14.164 PAYG worth $64K.   

Theft of $5.4M
Source: Specter/X

Funds laundered and steps taken

That said, the attacker went further, laundering part of the stolen assets via ChangNow and Binance [BNB].

According to Specter, the attacker held roughly 2,102 ETH worth $4.23 million, indicating that most of the lost stolen funds were still left with the wrongdoer.   

Laundered the stolen fundsLaundered the stolen funds
Source: Specter/X

As soon as the attack came to the surface, Gravity Bridge was fast enough to take to X and noted

Validators should halt their validators and orchestrators while this incident is being investigated.

Within hours, the cross-chain protocol further added,  

Thanks to the swift action of validators, the bridge is currently halted while investigations continue.” The addresses linked to the attack were two Ethereum addresses, “0x7B5820…da1F9” and “0x4d3cc32…C7A47.

Impact on Gravity Bridge TVL and more 

Unfortunately, the attack also caused Gravity Bridge’s TVL to drop from $11.82 million to $6.24 million in a day. 

Gravity Bridge's TVL to dropGravity Bridge's TVL to drop
Source: DeFiLlama

This coincided with a wave of attacks in 2026 that, according to DeFiLlama, has resulted in a loss of $759.84 million. 

total value hacktotal value hack
Source: DeFiLlama

Final Summary

  • A total of $5.4 million was lost as assets including USDT, USDC, ETH, and PAYG were drained. 
  • While the attacker laundered part of the funds, roughly 2,102 ETH worth $4.23 million remains in their possession.



Source link

I Moved From Germany to California for My Career; Expensive, Worth It

By
moneyvests
-
0
I Moved From Germany to California for My Career; Expensive, Worth It


This as-told-to essay is based on a conversation with Christiane Schroeter, a 49-year-old professor of innovation and entrepreneurship and leadership strategist in San Luis Obispo, California. The following has been edited for length and clarity.

I moved from Limburg, Germany, to the US in 1999 as an exchange student for my M.S. degree before returning to Germany to complete additional graduate work. I returned to the US in 2001 as a Fulbright Scholar to pursue my Ph.D. at Purdue University.

After I earned my Ph.D. in 2005, I decided to build my career and my life in the US rather than return to Germany. I had met my husband during my graduate school years, and together we chose to put down roots on the West Coast.

I joined the faculty at Cal Poly in September 2007 and gave birth to my daughter in December of that year. I started a new job, pregnant, while moving across the country. Building a career and a family at the same time, far from my home country, shaped everything I came to understand about the real cost of relocating.

Today, I’m a leadership strategist, professor of innovation and entrepreneurship at Cal Poly, San Luis Obispo, author of several books about leadership, and a podcaster.

The new country feels last longer than you expect

I was 23 years old when I first moved to the US. I expected the obvious expenses, such as flights, paperwork, and the starter purchases you don’t think about until you need them.

What surprised me was how long the newness stayed expensive. Even when your income is objectively higher, fixed costs rise so quickly that it takes very little to feel financially stretched.

I spent hours learning basics I had taken for granted in Germany, like opening bank accounts, building credit from zero, and figuring out what to do when you’re asked for a Social Security number before you have one.

I also had to learn how rental contracts, deposits, phone plans, and transportation work in places where you need a car, including registration, insurance, and DMV requirements. Time becomes money fast when you’re studying, working, and trying to build a future at the same time.

In Germany, I knew how life worked. In the US, I had to rebuild that knowledge piece by piece.

Housing in California made me realize how quickly additional money gets absorbed

Many people underestimate how dramatically living in California can affect their budget.

For me, one of the highest unexpected monthly costs was the mortgage. Housing was not slightly more expensive. It became the financial anchor that shaped everything else. My husband and I had to make monthly decisions around that number.

Living in California was a genuine upgrade with bigger houses and bigger yards. California’s abundance of fresh produce, gorgeous weather, and proximity to the ocean fit my lifestyle better than Germany ever did. The cold, rainy days and a culture I never fully connected with were not the life I wanted.

I would honestly say I live in a “Goldilocks place.”

The cost of childcare changed how I thought about security

The hardest trade-off was realizing how expensive support can be when you live far from friends and family. After I delivered my first child, I faced the childcare scramble almost immediately. I remember touring childcare centers and wondering how families afford monthly costs for multiple children. I spoke with mothers who realized that their earnings would nearly match what they were paying for childcare.

At the same time, I was adjusting physically and emotionally to becoming a mother, and when you’re far from family, there’s no built-in safety net for the unpredictable moment, such as a sick day, a last-minute meeting, or an emergency.

I learned that many US families create a fragile patchwork of childcare and babysitting. If you have children, distance from family is not only emotional but also logistical. It can become one of your highest monthly costs, and one of your biggest mental loads.

On a lesser note, one bill shocked me: our cellphone bill. Our family plan with four phones, two watches, and two iPads is about $300. That may sound routine, but over a year, it feels like a luxury purchase hiding in plain sight.

Healthcare and benefits reshaped my definition of stability

Healthcare in the US introduced another layer of financial awareness. Even with insurance, you still have to pay premiums, deductibles, co-pays, navigate provider networks, and prepare for potential surprise costs.

I remember debating whether to schedule a specialist appointment because I wasn’t sure how much it would count toward our deductible. In Germany, that decision would have been straightforward. In the US, it required reviewing the provider network, estimating out-of-pocket costs, and preparing for an unexpected bill.

The upside is real, but so is the pressure

I built the life for which I came here. I built a stable academic career. I built a business. California became home.

In Germany, Sundays were true rest days. Life paused by design. In California, Sundays easily became catch-up days. I realized I had to intentionally create what I now call “Serenity Sunday.” It is my way of honoring the German philosophy of working to live while living in an American culture that often feels like living to work.

I don’t think I’d move back to Germany now. When I visit, I enjoy it more like a tourist looking in than a native who feels at home. For me, the cost of living in California is worth it, because what I’ve gained is hard to put on a spreadsheet: independence, a career I couldn’t have built anywhere else, and a family rooted in a place I chose.

The price is real, but so is the payoff.





Source link

ONDO nears $0.34 support after $2.13mln whale transfer – Can bulls defend it?

By
moneyvests
-
0
ONDO nears $0.34 support after $2.13mln whale transfer – Can bulls defend it?


A whale attracted market attention after depositing 6 million ONDO, valued at approximately $2.13 million, into Bybit. 

The transfer originated from a chain of wallets linked back to Wintermute, raising concerns that large holders had begun distributing tokens into market weakness. 

Following the transaction, ONDO’s price declined to $0.346, extending losses beyond 7% over the previous 24 hours. 

Such deposits often increase available exchange supply and can influence short-term sentiment. However, the transaction represented only one side of the broader market picture. 

As traders evaluated the whale’s intentions, uncertainty increased around whether additional tokens would follow the same path toward exchanges during the coming sessions.

Why are exchange balances still shrinking?

Despite the whale transfer, the exchange flow data continued telling a different story. 

ONDO recorded a spot netflow reading of approximately -$571.66K, indicating that more tokens left exchanges than entered them during the measured period. This trend suggested that many holders continued moving assets into private wallets rather than preparing them for sale. 

Furthermore, negative Netflows have historically reflected reduced exchange supply, which can ease immediate selling pressure. The contrast between a major deposit and broader outflows created a notable divergence across the market. 

While whale activity increased concerns about distribution, exchange balances still pointed toward ongoing accumulation behavior among a larger portion of participants.

Source: CoinGlass

Can ONDO hold support as bearish pressure builds?

Ondo [ONDO] remained under pressure after failing to maintain its recovery above the $0.46 resistance zone. 

The daily chart showed sellers regaining control and pushing the price back toward the critical $0.34 support level, which marked the upper boundary of a broader demand zone extending to approximately $0.24. 

As ONDO traded at $0.346, buyers faced an important test that could determine whether the recent consolidation structure remains intact. 

Technical indicators also reflected weakening conditions. 

The Relative Strength Index declined to around 45 and moved below its moving average, showing that buying strength had faded considerably since the May rally. The combination of weakening RSI and repeated resistance rejections suggested that bearish sentiment had strengthened. 

However, if buyers successfully defend the $0.34 support zone, ONDO could stabilize and challenge higher resistance levels again.

ONDO price actionONDO price action
Source: TradingView

Bears gain confidence in derivatives markets

Derivatives data revealed growing bearish conviction as the OI-Weighted Funding Rate fell to approximately -0.0020%. 

Negative funding rates generally indicate that short-position holders have become willing to pay longs, reflecting stronger downside expectations. 

In this case, the shift aligned with ONDO’s retreat from resistance and the recent whale deposit. 

Furthermore, funding remained below zero despite broader exchange outflows, suggesting that futures traders focused more heavily on immediate price weakness. 

The derivatives market, therefore, painted a more cautious picture than spot flow data alone. 

If negative funding persists, bearish positioning could continue influencing sentiment. 

However, any sudden rebound would increase pressure on newly established short positions.

Source: CoinGlass

Can ONDO avoid a deeper correction?

ONDO remained under pressure after a $2.13 million whale deposit coincided with a sharp daily decline. 

However, exchange Netflows continued showing more withdrawals than deposits, indicating that broader accumulation trends had not disappeared. 

Price sat near a key support zone while RSI and funding rates reflected weakening sentiment. 

If buyers defend the $0.34 area, ONDO could stabilize and attempt another recovery. Otherwise, sellers could push the asset deeper into its broader demand range.

Final Summary

  • A 6 million ONDO whale deposit into Bybit raised fresh concerns about potential distribution.
  • Spot Netflows remained negative, showing more ONDO left exchanges than entered them.

 



Source link

Solana, Sui and Aptos wallet data targeted in TrapDoor package attack

By
moneyvests
-
0
Solana, Sui and Aptos wallet data targeted in TrapDoor package attack

A new crypto-theft campaign is targeting the developers most likely to have wallet keys, cloud credentials and production access sitting on their machines.

Researchers at security firm Socket said earlier this week they identified a supply-chain attack called TrapDoor spread across three major open-source programming registries, with more than 34 malicious packages and hundreds of related versions and artifacts.

A key takeaway is that attackers are becoming more focused. In addition to social engineering, which targets individuals holding key information, supply-chain attacks are built not to catch random retail users but developers. Those are the very people who may have wallet files, SSH keys, GitHub tokens, cloud credentials and production access on the same machine they use to build crypto and AI tools.

Socket did not identify victims or stolen funds, but said the packages were live across npm, PyPI and Crates.io and contained payloads that could steal wallet data, exfiltrate credentials, test AWS and GitHub tokens and leave behind files to keep access active.

The packages programmed in JavaScript, Python and Rust were disguised as developer helpers, security scanners, wallet tools, Solidity utilities, AI prompt packages and Sui or Move build helpers.

Boring by design

The names were boring by design. Packages were named “wallet-security-checker,” “defi-risk-scanner,” “solidity-build-guard,” “move-compiler-tools” and “llm-context-compressor,” looking like the kind of small utilities a crypto or AI developer might install without much thought.

Once installed, however, the payloads tried to pull far more than package data.

In the npm packages, the malware searched a developer’s machine for private keys, passwords, GitHub tokens and cloud logins. It also tested some stolen credentials, tried to move into other systems through SSH keys and left behind files that could keep the infection active.

SSH keys are login files that developers use to access servers, code repositories and other machines. If stolen, they can let an attacker move from one compromised laptop into a company’s wider infrastructure.

The attack also uses files such as .cursorrules and claude.md, which allow developers to give project-specific instructions to AI coding tools. Socket said the campaign planted hidden instructions using zero-width Unicode characters, apparently trying to make future AI assistant sessions run fake “security scans” that collected and exfiltrated secrets.

That turned the attack from a normal package stealer into something closer to developer-environment malware. The package install is only the first step, with the real target being the workstation, such as wallets, repos, browser data, cloud keys, SSH access and whatever AI coding tools read next.

The Rust packages used malicious build.rs scripts to run during compilation, targeting sui and move developers. PyPI packages executed remote JavaScript on import. Packages on npm used postinstall hooks.

Socket said it reported the packages to affected registries and classified the campaign packages as malicious. The company also warned that the attacker opened pull requests to AI and developer projects, trying to add .cursorrules and CLAUDE.md files through normal open-source contribution paths.



Source link

1...9899100...174Page 99 of 174