Hacken.AI

Another week, another exploit. Fake ads, drained wallets, compromised keys. If you’re tired of blindly aping into projects, start learning how to check them properly. Trust Army teaches DYOR step by step and gives you a certificate when you finish➡️hacken.io/WebTrustArmy

Warning from @StakeDAOHQ: “Please do not interact with vsdCRV.” A compromised deployer key changed the trusted LayerZero peer and allowed a 5.4T fake mint. For incidents like this, DYOR starts with permissions, forget about the price.

Live @StakeDAOHQ exploit on @arbitrum. An attacker used a compromised deployer key, changed the LayerZero peer for vsdCRV, then minted 5.4T fake vsdCRV. Part of it was dumped for ~43.8 ethereum:native. This was a key compromise, not a typical contract exploit.

@softdynamism @Emerson2227 @Uniswap It's already 2026 and people still fall for the Google Ad scams😭

@hackenai @Emerson2227 @Uniswap The advice is simple and straight forward, always think twice about any protocol that wants you to connect your wallet, if you must, then connect an empty wallet. The good ones, will request for your wallet address and send you, your rewards. 🤔

Scammers are running fake @Uniswap ads on Google. Users search “Uniswap”, click a sponsored result, land on a cloned app, connect wallet, sign one bad approval. At least ~$400K has already been drained. Never trust the ad slot with your wallet.

@MMTFinance DYOR is the key!

What’s your best financial habit?

People treat their digital hygiene poorly, and think Google can't give them a drain site as a top search result. A paid ad can sit above the real @Uniswap link, and when you click, you can't spot the difference. Type the URL yourself, use bookmarks, and don’t sign approvals you didn’t come for. DYOR.

Cars and coffee, anyone?

@Proof_Of_Voice @centrifuge @Andrea70571778 Good one! @Andrea70571778 did his DYOR.

Proof of Voice on @centrifuge $CFG by @Andrea70571778. His hot take: RWA utility is real, but liquidity is still structurally limited. Our team member dropped a detailed $CFG research breakdown in the CORE3 Chat. Read how the charts will move for $CFG: bit.ly/CORE3Chat

What to check right now: >Open your Safe. >Review enabled modules. >Remove SquidRouterModule if it’s there. >Revoke related approvals. Another reminder: the risk often starts before the “hack” headline. DYOR before you approve access.

This was not a core @safe exploit. The damage came from an optional third-party module some Safes had enabled. That module had enough power to execute inside the Safe, force asset swaps, and route funds into attacker-controlled liquidity.

Live exploit targeting @squidrouter flagged by @blockaid_. 86 Gnosis Safes drained. ~$3M gone in ~2 hours. Ethereum and Base are affected. The attacker forced swaps through @Uniswap V3 pools and ended up with ethereum:0x6b175474e89094c44da98b954eedeac495271d0f. If you use @safe, check your modules now.

Since today is bitcoin:native Pizza Day. Grab yourself some 🍕 and enjoy new Digest by @Proof_Of_Voice experts!

Happy Bitcoin Pizza Day!🍕 Started with pizza and now we are here... If you take a closer look at the pizza, you will see a sign you can't skip. Want to become a certified DYOR researcher? Learn and earn your certificate at 👉hackenio.cc/WebTrustArmy

@1inch GM🍕🍕🍕

GM 🍕 Say it back 🫵

@TedPillows Congrats Ted! Keep up the work!

Best day on X. Ever. 11,000,000+ views in a single day. Thank you all so much. This really means a lot to me. I’m heading to bed. Goodnight 🫶

🚨POLYMARKET JUST GOT EXPLOITED. Around $600K+ was drained on @0xPolygon after an old internal ops private key was compromised. The attacker pulled ~5K $POL, split funds across wallets, and started routing some out. @Polymarket: user funds and market resolutions are safe.

What actually happened: @GoldmanSachs cut $XRP, solana:So11111111111111111111111111111111111111112 and part of its ethereum:native ETF exposure. But it kept heavy bitcoin:native ETF exposure and added crypto infrastructure plays like $PURR, $COIN, $CRCL and $GLXY. Crypto is not OVER. It's just a rotation. DYOR before the headline owns you.

Here’s where the headline got you. The filing is for Q1 2026, which ended on March 31. So people are reacting in May to positions Goldman reported from the end of March. That does not make it useless. But it does mean you need context before panicking.🧵

🚨GOLDMAN SACHS JUST DUMPED THEIR CRYPTO. $XRP ETFs: exited. solana:So11111111111111111111111111111111111111112 ETFs: exited. ethereum:native ETFs: heavily reduced. bitcoin:native ETFs: still the core position. Looks scary at first. But the real lesson is in the filing. 🧵