SECURITY
Litecoin (LTC) Exploited: 13-Block Reorg Triggers Finality Debate
Litecoin patched a zero-day bug leading to a rare 13-block chain reorganization, raising concerns over transaction finality and network security.
47% of LayerZero OApps at Risk After $292M Kelp DAO Hack
Nearly half of LayerZero OApps share the same risky 1-of-1 DVN configuration exploited in the $292M Kelp DAO hack. Here's what it means for the ecosystem.
Apple Fixes iOS Bug Exploited by FBI to Access Signal Messages
Apple patched a security flaw that let the FBI extract Signal message previews via iPhone notifications, even after the app was deleted.
Paxos Unveils $1M Bug Bounty Program Covering PYUSD, PAXG, USDG Smart Contracts
Paxos launches $1 million bug bounty on Cantina platform, covering all major stablecoin and gold token contracts plus Web2 infrastructure in security push.
GitHub Expands Push Protection Controls to Repository Level
GitHub now allows developers to manage secret scanning push protection exemptions directly from repository settings, bypassing organization-level configurations.
GitHub Adds 28 Secret Detectors Including Snowflake and Vercel API Keys
GitHub's March 2026 secret scanning update adds 28 new detectors from 15 providers, enables push protection for 39 patterns, and adds validity checks for DeepSeek and npm tokens.
GitHub Upgrades Secret Scanning with Enterprise-Wide Metadata Controls
GitHub's extended metadata checks now deployable at scale through security configurations, auto-enabling for repos with validity checks already active.
OpenAI Addresses Mixpanel Security Incident Impacting API Data
OpenAI discloses a security incident involving Mixpanel, affecting limited API user data. No sensitive information such as API keys or payment details were exposed.
CodeQL 2.23.5 Enhances Swift 6.2 Support and Introduces New Java Security Queries
GitHub's CodeQL 2.23.5 update enhances Swift 6.2 support, introduces new Java security queries, and improves code analysis accuracy, offering developers better tools for code scanning.
Anthropic Tightens Restrictions on AI Sales to Certain Regions
Anthropic updates its terms to restrict AI sales and usage in regions with potential security risks, emphasizing democratic interests and AI safety.
Kiln Security Breach Highlights Risks in External Staking Infrastructure
The recent Kiln incident underscores the vulnerabilities in using external staking providers, as sophisticated attackers bypassed existing security measures, prompting a reevaluation of staking solutions.
Anthropic Implements AI Safety Level 3 Protocols for Enhanced Security
Anthropic has activated AI Safety Level 3 standards to bolster security and deployment measures, particularly against CBRN threats, with the launch of Claude Opus 4.
Harvey Integrates Seamlessly with iManage, Enhancing Security and Scalability
Harvey's integration with iManage provides a secure, scalable, and efficient solution for legal workflows, addressing challenges across security, scaling, and networking.
NVIDIA Unveils AI Factory Design to Enhance U.S. Government Systems
NVIDIA, in collaboration with U.S. tech leaders, has introduced an AI Factory design to modernize federal systems, ensuring compliance with stringent security standards.
Monero (XMR) Enhances Security with Latest 'Fluorine Fermi' Update
Monero (XMR) releases version 0.18.4.3, 'Fluorine Fermi', enhancing security against spy nodes. The update includes contributions from 13 developers and 36 commits.