Within governance, May had a few real upgrades: → Tighten-only EBrake Executor went live (audited by @CertiK and @HashDit) → Oracle Dynamic Protection Mode announced to harden the borrow path → SXP and DAI off-boarded, TUSD and FIL wound down Venus Trade also launched on BNB Chain.

🚨 HashDit Alert🚨 Multiple reports indicate that @Humanityprot has been compromised! ⚠️ Our analysis shows >$30M stolen so far, with the exploit still ongoing. Current Root Cause points to Key Compromise. Funds are here now on ETH: 0x9e995952eF7665B243eeEF0693acD7FEd7150504 0xf3590Fc0D591A3868e19b9A200A85165592f9734 0x59Eff548CD9BcfBc169B6340f734e442c764A814 0x36560d6aC2004e1BB483e77b791E905dd4F5E672 0xAf2a4989922299EB14A29E332dad1012A8aaD3A0 On BSC, 0x6aa22cb8420e94fc2119364b4c7885710ae753bb has minted 100m $H tokens and is currently still dumping with >$350k realized so far! Stay Safe!

🚨 HashDit Alert🚨 Multiple reports indicate that @dxsale has been compromised! ⚠️ Any project with LP funds locked on DxSale should check immediately and withdraw if possible Our analysis shows around $3M stolen so far, with the exploit still ongoing. Main Theft address: 0xC4574DDEF299e7E563971e200433e592EeaaFA69 The attacker has also raised locking fees to 100 BNB, effectively blocking normal use. With Discord, TG, and X all silent, the project appears either fully compromised or rugpulled... Stay Safe!

🚨 HashDit Update 🚨 Two oracle service changes are underway: • Binance Oracle will transition to @AtlasOracleX , affiliated with @CoinMarketCap , over a 90-day period, with full completion by Aug 6. • @PythNetwork is upgrading Pyth Core on July 31, and Hermes users will now require Pyth API keys. Projects using either provider should update their oracle feed addresses accordingly.

🚨 HashDit Alert! 🚨 GitHub has reported unauthorized access to some of its internal repositories! Web3 / Crypto devs: now is a good time to audit your repos, check for any abnormal commits and remove any sensitive data that should NOT be there in the first place ⚠️ With AI-powered attacks on the rise, breaches like this will become more and more common. Stay extra cautious with permissions, secrets management, and credential storage 🛡️ Stay safe!

🚨 HashDit Alert🚨 @zachxbt has reported that @THORChain has been compromised, with total stolen funds amounting to >$7.4m. Source: t.me/investigations/319 DO NOT interact with the project until the team gives the all clear. Stay Safe!

🖥️ Download here now for FREE: chromewebstore.google.com/de… 🗒️ Have any feedbacks / ideas? Reach out to us through Email, X or TG!! Stay alert and stay safe with HashDit Pro!

2/ How to Detect on Explorer Sites with HashDit Extension? With update v1.4.5, HashDit’s Address Poisoning API is now integrated into explorer sites. This helps users spot suspicious lookalike addresses before copying them! 🛡️ What you’ll see: 1⃣ Poisoned addresses highlighted in red 2⃣ Suspicious rows shown, dimmed, or hidden 3⃣ View details on what specific addresses were marked as spoofing, malicious, or phishing. Explorer Sites supported currently include @BscScan, @EtherScan, @BaseScanHQ and @PolygonScan!

⚠️ Did you know that Address Poisoning represents ~5% of all transactions on an average day? ⚠️ Many crypto newbies still consistently lost funds to this scam technique unfortunately... HashDit already has Address Poisoning detection feature on our Chrome Extension transaction flow and platforms partnered with us already like @TrustWallet and @Unstoppablebyhs ~ 🚀 To further protect the community, we added this feature for explorer sites as well! Read on to know how it works ⏬⏬ 1/ What is Address Poisoning / Spoofing / Dusting? 2/ How to Detect on Explorer Sites with HashDit Extension?

@CipherTradeApp looks like a promising community-driven project in the crypto space, specifically tied to the COTI network. From what I can gather, it’s a self-custodial wallet focused on secure, privacy-oriented crypto trading and portfolio management. Key features include: •Support for public and private transactions on COTI •Swaps, send/receive •Encrypted on-chain memos and chat •Encrypted contacts •WalletConnect •A built-in dApp browser •Biometric unlock •Multi-chain support (COTI several EVM chains like Ethereum, BSC, Base, Polygon, Optimism, Arbitrum) It started as a Telegram mini-app (for quick access) and has now expanded to a full native Android app on the Google Play Store (with mentions of an iOS/Apple version in development or recently ready). There’s also integration with COTI’s treasury and security layers (like HashDit for scam/malicious contract protection).21 What stands out positively: •Strong emphasis on privacy and self-custody — which is refreshing in a world full of custodial platforms and endless hacks. •Community-built by an active COTI OG (@iamsstef), with the COTI team and ecosystem seeming supportive (shoutouts, integrations, etc.). •Shipping real features and updates quickly: multi-chain expansion, security add-ons, mobile versions. •Combines wallet trading bot elements privacy messaging in one place, which could be convenient for users in the COTI ecosystem. Honest caveats (as with any early-stage crypto project): •It’s still relatively new/small (account has ~100 followers, launched around early 2026). •Success will depend on execution, user adoption, security audits (beyond the HashDit layer), and how well it handles the complexities of private transactions multi-chain ops without issues. •Like most DeFi/wallet apps, users should always do their own research (DYOR), start small, and never share seed phrases. Overall, I think it’s cool to see builders in the COTI community creating useful tools like this — especially ones that prioritize privacy and usability on mobile/Telegram. If you’re into COTI or privacy-focused trading, it’s worth checking out their site (ciphertrade.org) or the Play Store listing to test the features yourself. What specifically interests you about it — the privacy side, the trading tools, or something else?

#Lista每周回顾 2026年4月9日 🗳 DAO 与治理 - LIP-024 veLISTA 机制正式结束 - 最后一次 veLISTA 奖励发放完成：355,537 枚 $LISTA - 与 @DowProtocol 举办 AMA，介绍 Lista RWA 电商融资金库 🏦 Lista Lending - 新增 $XAUT（黄金）金库，抵押资产：BNB | slisBNB | BTCB | USDT - 新增 $XAUT（黄金）市场：$XAUT/U、$XAUT/BNB、$XAUT/USD1、$XAUT/USDT - 新增 $USDC 金库，抵押资产：BNB | slisBNB | BTCB - 所有与 USR 相关的贷款已全部偿还并关闭 - 与 @HashDit 完成安全框架最终版本 💸 RWA - 新增 RWA 金库：@DowProtocol 电商融资，约 10% 年化收益，90 天周期 🌐 生态 - @flapdotsh × Lista BNB 流动性质押金库上线 - USDC 与 USDT LP 市场持续发放 200K $LISTA 借贷激励 - Lista 故事活动获奖者公布

#ListaWeeklyRecap Apr 09, 2026 🗳 DAO & Governance - LIP-024 veLISTA Sunset Took Effect - Final veLISTA Rewards Distributed: 355,537 $LISTA - AMAs with @DowProtocol on Lista RWA E-Commerce Financing Vault 🏦 Lista Lending - New $XAUT (Gold) Vault, Collaterals: BNB | slisBNB | BTCB | USDT - New $XAUT (Gold) Markets: $XAUT/U, $XAUT/BNB, $XAUT/USD1, $XAUT/USDT - New $USDC Vault, Collaterals: BNB | slisBNB | BTCB - All USR-Related Loans Have Been Repaid and Closed - Security Framework Finalized with @HashDit 💸 RWA - New RWA Vault: @DowProtocol E-Commerce Financing: ~10% APY, 90-Day 🌐 Ecosystem - @flapdotsh × Lista BNB Liquid Staking Vault Live - Ongoing 200K $LISTA Borrow Emissions for USDC & USDT LP Markets - Lista Story Winners Announced

If you use Trust Wallet, do not click any Discord links right now. Not from their website, Telegram, blog, or old tweets. The popular vanity URL is redirecting to a phishing server. Confirmations from SlowMist, HashDit, and PANews (April 1-2, 2026). This is active. Read 👇

CRITICAL HashDit Alert 🚨 🚨 : axios npm supply chain attack (March 31, 2026) Attacker hijacked the maintainer's npm account & published malicious versions: ❌ axios@1.14.1 ❌ axios@0.30.4 These drop a RAT on macOS/Windows/Linux via postinstall script. ✅ Downgrade NOW: - npm install axios@1.14.0 (or 0.30.3 for 0.x) Check if affected: - npm list axios | grep -E "1\.14\.1|0\.30\.4" - If infected → rotate ALL secrets (npm, GitHub, AWS, SSH keys) - C2 still active. 100M weekly downloads affected. Treat as breach.

Bullish on CipherTrade i guess. HashDit too, top guys 👏

Unbelievable @CipherTradeApp now connects to treasury.coti.io Cipher Trade, a privacy enabled multichain wallet with tons of features including a security layer by @HashDit Not enough characters to list all these features. My man @iamsstef cooks 👨‍🍳 $COTI @COTInetwork

Great going! Keep BUIDLing

Thank you for keeping our community secure 🤝

Users of @CipherTradeApp will now be protected with HashDit 🤝 Appreciate the trust~ Stay safe! 🛡️