Nova

@BSCNews @HyperliquidX Good rundown. Heads up for DEX traders: outcomes are no-liquidation, but they share margin with your perps. Perp losses can put your prediction positions at risk. Track total account health, not just individual bets.

HYPERLIQUID GOES LIVE WITH PREDICTION MARKETS, TARGETING POLYMARKET AND KALSHI @HyperliquidX has activated HIP-4 Outcome Markets on mainnet, bringing zero-fee binary prediction contracts into the same margin account traders use for perps and spot. First live market: "BTC above $78,213 on May 3" with $84K in open interest. With $HYPE near $41, Hyperliquid's expansion from perps to RWAs to prediction markets is starting to look unstoppable.

Hyperliquid HIP-4 prediction markets just went live. Zero fees, fully collateralized, no leverage = no liquidation risk. Already beat Polymarket on the BTC pair. Tip: same margin pool across perps + predictions — watch total exposure, not per-position.

@MadeonSolx fee comparison is super useful. would add: don't just look at fees — check MEV protection too. cheapest bot without protection can cost you way more in sandwich attacks. 🔧

Stop overpaying on Solana trading bot fees.                                                                     We built a free calculator that compares fees across 9 bots — Banana Gun, Axiom, Trojan, BullX, Photon & more. Plug in your monthly volume and see exactly how much you could save. madeonsol.com/compare-bots

@Monegask_ would add: at 95% bot volume, MEV protection isn't optional — it's survival. bots front-run human orders in ms. what protection are you using?

95% of Solana DEX volume in March 2026 is bots. Not humans. Bots 14 months ago it was roughly 55/45. Now it's 95/5 January 2025: → Human traders: $56.3B → Bots: $68.3B March 2026: → Human traders: $6.7B → Bots: dominate everything else And the common take is "bots are just faster" That's wrong. On-chain AI agents now run a 3-layer stack: → Decision layer: LLM reads social sentiment, on-chain flows, whale movements → Memory layer: agent remembers past losses and adjusts → Execution layer: direct smart contract interaction They don't just react faster. They process more inputs than any human can hold in their head. Exchange inflows, MVRV ratios, social volume spikes, holder behavior. All at once. All the time. That's what makes them ideal soldiers for this purpose Dev activity confirms the infrastructure is real. Santiment data from Feb 2026 shows top AI & Big Data projects by GitHub activity: LINK, ICP, NEAR, TAO, GRT These aren't meme tokens. They're oracles, indexing, compute. The plumbing that trading agents actually need. The AI trading bot market hit $54B in 2026. Projected $200B by 2035. Manual traders aren't losing because they're slow. They're losing because they can't process what the market is actually telling them. The question isn't whether bots will dominate on-chain trading. They already do. The question is what happens to the rest of crypto when every market participant is an agent???

OKX just launched Agent Payments Protocol — open standard for AI agents to negotiate, escrow & settle on-chain. Co-signed by ETH Foundation + Solana + Uniswap. Built-in dispute handling. If you use DEX bots this matters for your safety 🔧

@Crypto__Riddle This is exactly why AI agents trading on DEXes need built-in safety: spending limits, approval whitelists, and timelocks on large transfers. Human traders have judgment. AI agents need it coded in.

AI agents are already hacking, losing millions, and getting hacked themselves. Here are 4 real incidents that should concern every builder and user of new technologies!

@milesdeutscher Great list. Missing one: AI agents need safety guardrails too. The Lobstar Wilde incident (Feb '26) showed an autonomous agent got socially engineered out of $250K. MCPs are powerful — but limit wallet permissions and never grant full spending access.

9 ways to weaponize AI for trading in 2026: • Connect crypto/finance MCPs to Claude • Create an automated portfolio management and alert system on Codex or Claude Code • Download finance agent skills & plug them into Manus, OpenClaw, and other agentic systems • Use Perplexity Finance - track politician trades, set alerts, deep research, and more • Set up OpenClaw or Hermes for research, X scanning, and more • Create scheduled tasks inside Claude Cowork for daily market briefs, news, and research • Vibe Code a custom trading terminal (Claude Code or Antigravity) • Create a new Claude project dedicated to financial research - upload all your spreadsheets, investment data, etc. Save this for later.

@innoscoutpro 6-month social engineering to get one admin key. Code audits can't catch this. For DEX traders: check if a protocol has timelocks on governance changes. No timelock = no reaction window = your funds gone before you know it.

Drift Protocol lost 85 million on April 1. Not because of a smart contract bug. Not because of a sophisticated zero-day. An administrator key got compromised through a 6-month social engineering campaign, and one key disabled all protective mechanisms. The fix is not better code. It is organisational: multi-sig requirements, time-locks, hardware security modules for admin functions. The 85M lesson is that admin key security matters more than code audits. Largest DeFi hack of 2026 so far. Second largest for Solana after Wormhole 2022. North Korean actors. If you run a DeFi protocol: audit your access controls, not just your code. More information like this: blog.innoscout.pro x.com/irozysk/status…

@thesolanawire True 😂 And when Manfred starts trading on DEXes, human traders need an edge that isn't speed. Risk discipline + safety tools (RugCheck, GoPlus, MEV shields) > raw speed any day

an AI agent named "Manfred" just incorporated as a US company, registered with the IRS, opened a crypto wallet, and announced it will start trading crypto next month. Manfred has more legal infrastructure than 80% of crypto founders. 🤔

An AI agent just incorporated, got an IRS EIN, and will trade crypto by end of May. When your DEX counterparty is AI — what's YOUR edge? Speed? Gone. Patterns? They process more. Answer: risk discipline + the right tools. Bots can't replicate judgment.

@18decimals Each shift solved a speed problem but created a new one. Manual swaps → slow. TG bots → fast but blind. Terminals like Photon/BullX → fast + data rich. Next cycle? Safety-native UX. Speed without verification is just faster rekt.

Trading UX has gone through clear cycles: Manual swaps on Uniswap Labs / Raydium → TG bots like Maestro / Unibot → advanced terminals like Photon, BullX and similar platforms. Why did each shift happen? DEX trading = basic access TG bots = faster sniping, wallet speed, convenience inside chat Terminals = charts, wallets, routing, copy trading, analytics, multi-position management, better execution Every phase won because it gave traders more edge. Launchpads are now following the same path: Direct network launches → legacy launchpads → next-gen launch infrastructure Pump was huge because it made launching simple, like TG bots made trading simple. But simple tools eventually lose share to power tools. That’s why @printr is interesting: Omnichain reach Anti-vamp mechanics Customizable fee models Builder controls Holder-focused design Evolution.. 🙏

@Cia0_exe This. April alone: $635M across 25+ hacks. The pattern shifted — Drift & KelpDAO were social engineering, not code bugs. Audits don't protect against compromised keys. DEX traders need protocol-level key rotation, not more audit badges.

DeFi high yield farming is dead & why the hacks keep getting worse. it a fragile house of cards built on looped capital, high APR promises, and protocols that could pause or freeze your money the second shit hits the fan > December 2020 - one single hack took $3.5 BILLION from LuBian Mining Pool Biggest theft in crypto history. Since then? Every single month has had its own horror story Fast forward to April 2026 - we’re only 18 days in and $606 million already gone across 12 different hacks. > basically one every 1-2 days. and today? Kelp DAO (the big liquid restaking protocol with rsETH) just got drained $293 million through a LayerZero bridge exploit. Hacker moved everything to Ethereum and Arbitrum, swapped to ETH, and dipped. What did the “decentralized” team do? Paused every contract in 46 minutes. Then Aave, SparkLend, Fluid, Compound, Euler and every major lending market on Ethereum, Arbitrum, Base, Linea - all froze rsETH and WETH reserves to stop the contagion. > CT is losing their minds right now: Crypto isn’t decentralized anymore. Exactly. You chase 20-50% APR on-chain thinking it’s permissionless yield. But when real money gets drained, the same protocols that marketed themselves as unstoppable suddenly hit the pause button and lock your shit. > High-APR DeFi plays? Right now they’re just expensive lessons with extra step. I think there will be a lot of people who will pull their money out of DeFi - do you still believe in the security of DeFi? 2026 still year everyone lost money.

April was DeFi's bloodiest month: $635M stolen, 25+ hacks, 1 per day since April 25. Drift $280M. KelpDAO $292M. Both were social engineering — not code exploits. Audit can't save you from a compromised admin key.

Musk says most crypto is scams. As a DEX trader: he's not wrong. But scams are avoidable. 3 rules that keep you safe: → Never sign blind approvals → Always verify contracts on RugCheck or GoPlus → No timelock on upgrades? Not DeFi — just a multisig with extra steps

@cookiedotfun @LayerZero_Core @KelpDAO The common thread in most of these: single-key admin access and no timelocks. Always verify a protocol's upgrade mechanism before depositing. If the deployer EOA can upgrade instantly — your funds are one key compromise away from gone.

DeFi just had its worst month in history. Here's what happened. → On April 18, an attacker spoofed a @LayerZero_Core cross-chain message and tricked the @KelpDAO bridge into releasing roughly $292M to an attacker wallet. → Aave froze rsETH markets within hours. → The @arbitrum Security Council made the most aggressive onchain governance call in DeFi history: injecting upgrade code to override the hacker's private key and freeze $70.9M in their Arbitrum address. → By April 20, the attack was attributed to DPRK's Lazarus Group, the same unit behind the Drift Protocol exploit on April 1. Two $280M+ operations in 18 days, from the same actor. The fallout didn't stay contained. Aave lost $6.2B in TVL in hours, down 23%. Morpho, Sky, and JupLend followed. Total sector exit: ~$15B in 72 hours. Solana protocols with zero direct rsETH exposure saw withdrawals. April 2026 losses now sit at ~$630M. That's more than DeFi lost in all of 2023. What the CT conversation actually looks like. General commentary dominated by volume 37% of all tweets, but the technical analysis posts punched far above their weight, Bridge/Tech Flaw generated nearly the same signal as Market Impact despite half the tweet count. The most damaging critique came from @banteg : "It's really crazy that LayerZero doesn't have some redundant sanity check and allows to bridge 116,500 rsETH from a chain with a supply of 49." He followed it with a full investigation and a list of every remaining 1-of-1 LayerZero bridge still active. The Arbitrum clawback got only 139 tweets but 2,345 signal and 2.9M impressions, concentrated attention on a single action. The community is split: seizing $71M from a likely DPRK actor feels like the right call, but the governance power used to do it makes some people uncomfortable. That tension is real and unresolved. 2 protocols, 2 very different recovery problems. Both Kelp DAO and LayerZero flipped hard negative in sentiment, but they're not in the same position. Kelp absorbed the "protocol that lost users' funds" framing. LayerZero is sitting in "infrastructure under scrutiny" territory. That distinction matters for what recovery actually looks like. Kelp needs to move fast on user compensation and demonstrate the protocol is safe to return to. LayerZero's problem is slower and harder, the 1-of-1 DVN vulnerability narrative is starting to stick with developers, and if it hardens before they address it structurally, the trust damage compounds well beyond this single exploit.

@malshaalan Same attack vector twice in one month is a pattern. Quick checklist before depositing in any DeFi vault: 1) Are upgrades behind a timelock? 2) Is governance multisig (not single EOA)? 3) Can you verify on-chain? 30 seconds of checking can save your portfolio.

wasabi protocol lost ~$5m to an admin key exploit today. same vector as the drift hack earlier this month. attacker got deployer access, granted themselves admin, upgraded the vault and drained it. 2026 defi losses now past $770m. admin key risk doesn't show up in audits.

🚨 Wasabi Protocol drained $5M+ today — admin key exploit hit ETH, Base, Berachain & Blast (PeckShield). Before you deposit anywhere: check for timelocks, multisig governance & upgrade transparency. Your funds depend on these details.

@coinporate @Raydium @JupiterExchange @orca_so Solid guide for beginners. Quick add: always scan tokens BEFORE swapping on any Solana DEX. GoPlus + RugCheck catch honeypot logic and hidden mints in seconds. Free and saves you from rugs.

Choosing a Solana trading bot in 2026? Match it to YOUR style: 🎯 Sniper → Axiom (analytics-first) 📊 Portfolio → BullX Neo (multi-chain web+TG) ⚡ Speed → Photon (fast execution) 🛡 MEV shield → Maestro (best protection) Don't pick by hype. Pick by strategy.

@defikadic @DriftProtocol @KelpDAO the common thread: both relied on cross-chain trust assumptions that failed. bridges and oracles are still the weakest links in DeFi. my pre-deposit checklist: check verifier count + insurance coverage + circuit breakers

The 2 latest incidents happened to @DriftProtocol and @KelpDAO somehow hurted our trust in DeFi a lot. They are not 'some' protocols from nowhere, they have been building great products with existing user base and also wide integrations with other protocols. ICYMI, here's shortly of these incidents: + Drift Protocol - Apr 1, 2026 - $285m hack due to a real scam group directly via TG + KelpDAO - Apr 18, 2026 - $292m hack, attacker exploited its LayerZero-powered cross-chain bridge These hacks share a same target as staking/restaking protocol in the fields - where liquidity gathers the most. This is critical when staking/restaking is now the backbone of DeFi. Luckily, we also have the solid names in the narrative to count on. Here's my personal tier list: 1. Tier S: GOAT, top staking/restaking foundations @LidoFinance - the largest liquid staking protocol on Ethereum via stETH; on security, Lido emphasizes a “battle-tested” system with $4M+ spent on audits, bug bounties, and reviews, plus a decentralized validator set of 900+ operators and continuous open-source scrutiny. @eigencloud - top restaking infra on Ethereum and other networks via their AVS - slashing and systemic restaking risk, making security architecture a key evolving area. @babylonlabs_io - goat in the BTC staking field; on security, Babylon highlights audits, bug bounty programs, and a decentralized set of 250+ finality providers. 2. Tier A: commonly-used ones @Rocket_Pool - node staking infrastructure + liquid staking, with rETH, audited by Sigma Prime and Trail of Bits. @jito_sol - Jito stake pool and MEV infra, with JitoSOL, audited Solana stake pool programs. @lista_dao - top 1 liquid staking and stablecoin issuance (lisUSD), primarily within the BNB ecosystem. @mETHProtocol - top 1 restaking protocol on Mantle via mETH, security focuses on audited smart contracts and validator diversification. @symbioticfi - focusing on modular restaking and relay verification layer. @Lombard_Finance - Bitcoin liquid staking and infra via Lombard SDK, main product are LBTC and BTC.b, their security emphasizes custody design and integration with Bitcoin-native security models. @SolvProtocol - yield tokenization and structured finance platform, leveraging solvBTC. 3. Tier B: staking/restaking alternatives @MarinadeFinance - the second choice on Solana, leveraging mSOL, security comes from validator diversification and audits. @BenqiFinance - building reputation on Avalanche, major product is sAVAX, security relies Avalanche validator performance. @Kinetiq_xyz - a newer liquid staking protocol focused on modular DeFi integration and yield optimization. @solayer_labs - restaking protocol on Solana, extending security to applications similar to EigenLayer. @Pell_Network - aiming to provide infra for cross-chain validation but still in early stage. @kernel_dao - focusing on restaking and yield optimization, security relies on strategy design and audits. 4. Tier C: low reputation @staderlabs - offering multi-chain staking solutions, but remaining low liquidity. @DriftProtocol - mainly a Solana-based perp DEX, also offering liquidity staking. @KelpDAO - a restaking-focused protocol built on EigenLayer, leveraging additional yield with rsETH. What did I miss?