PNin👑.hl

@zkmattwyatt @laurashin We got in touch back then, and remain in touch today (literally) I am very happy my concerns were ‘wrong’ back then and hope they continue to be ‘wrong’ forever. ☺️

@laurashin Agreed. Damage to industry could be immense. Hope all security practices are being actively examined.

I really hope Hyperliquid is in a war room right now assuming they’ve already been compromised and reviewing every last thing they’ve done for the last year and a half …

pretty crazy if true tl:dr - hackers casually gained trust via irl conference meet, setup tg channel and became a customer, started building integrations over 6 months and then got one person with a testflight link to show off what they built

Love hyperliquid eco but same vector could happen. Be safe, teams.

Thus far I have reports in my DMs from teams using gandi, ovhcloud, and regery/open provider. Up to about 6 .fi domains all with the same vector. Open provider def problematic. Unsure how high it goes. Won’t be surprised to find out the whole tld is fubar.

Heads up everyone. Seems the .fi registrar is likely compromised. The .fi name servers were updated overnight to point back to the attacker. While we still have access to the account it appears someone internally is coordinating. the dns has been moved away from the parking domains the attacker has been using. The domain is registered with regery, if anyone else is using them, consider this your wake up call. Be vigilant always.

@HypurrFi @openprovider Lol wtf. Who keeps giving them permission? Some random teenage employee on their side?

UPDATE: The hypurr . fi domain has been reverted back to the attacker's registrar (@openprovider). We are currently in contact with them. Do not use hypurr (dot) fi. The app has been permanently moved to hypurrfi.com and can be safely accessed there. Please remain vigilant. Further updates to follow.

@androolloyd @HypurrFi That's why the exact time is so important

@androolloyd @HypurrFi I guess it's unclear if we interacted with the phishing website without knowing, are we at risk? I don't know what you mean by "protocol" because I never call smart contracts directly as a user.

The hypurr . fi domain was compromised this afternoon in what we believe to be a social engineering attack on the registrar. Based on our understanding and investigation, the HypurrFi protocol and team infrastructure has NOT been compromised. We have migrated our infrastructure to hypurrfi.com and the app is safe and usable there. We will be migrating permanently to this domain in order to secure it in ways that are not available on .fi domains. We are actively in contact with our existing registrar and recovering the domain, but for the moment, it’s still compromised and in the hands of the attacker(s). We expect resolution soon. We’ve reached out to our security partners and the domain is blocked across many major wallets. Tl;dr: - hypurr . fi - compromised. - Do not use or interact. - hypurrfi.com - safe to use - HypurrFi protocol and user funds - safe - HypurrFi social channels (X, TG, Discord) - safe Please use caution and do not sign anything if you are uncertain. We will post more updates as they are available.

This is crazy. Domain authority changed by random person request?

@WOLFGANG1945 This is illegal for tourists. Foreigners cannot handle shinken anymore by Japanese police order.

To my American friends who showed me so many amazing BBQs, guns, and dogs: I wanted to share this with you from Japan. It's a facility in Kyoto where you can experience cutting a straw target with a Japanese sword. By the way, that's me doing the cutting.

@katakana_kurisu You realize taxes are 55% of all your wealth including inheritance, retirement funds, etc right?

1. Live here for 10 years 2. Don't commit crime 3. Pay your taxes This list is "almost impossible" apparently...

@poorlydrNFT @HyperliquidX @Ramen_HL Reprice should be in there as well illiquid, most nft teams really

Some of the biggest scammers and grifters of the @HyperliquidX ecosystem 👇 @Ramen_HL and his vaporware project $RUB that deceived dozens of hyperliquid community members both big and small. Countless delays and miscommunication, didn't pay his staff/team on time, endless stream of false promises. @rardedd Similar to the above with $NEKO but Imo more criminal because he had the audacity to raise 7 figs for a project that took them a year to launch but has absolutely zero pmf. Refuses to refund investors, strung them along for a year with promises. Trying to raise more money for another scam after the blatant neko rug. We should make sure people like these don't get a another chance to extract from this ecosystem so easily. Who else should be on this list?

@Xeer Well me too

no way the market crashed just to liquidate machi right? 😭😭 hyperliquid

🚨 FINANCIAL INTELLIGENCE ALERT: Binance Database Leak (1.5M Users) 🌐💰 Our Analyzer platform has detected one of the most critical threats to the cryptocurrency sector so far this year. Threat actor PexRat has put up for sale a private database affecting approximately 1.5 million Binance users. Victim: Binance Users (Cryptocurrency) 🏛️. Threat Actor: PexRat 🎭. Volume: 1.5 million records containing full PII and login activity. Timestamp: March 28, 2026 🗓️. Anatomy of the Leak (Compromised Fields) The severity of this dataset lies in the combination of identity data with technical security information: 🔹 User Information (PII): Full names, email addresses, and phone numbers. 🔹 Account Details: Country of registration, account creation date, and Verification status (KYC - Verified/Unverified). 🔹 Security Logs: Last login IP address, device information (User-Agent), and timestamps. 🔹 2FA Status: Information regarding the type of active Two-Factor Authentication (Email/SMS/Authenticator). Monitor: analyzer.vecert.io #CyberSecurity #Binance #CryptoLeak #DataBreach #PexRat #FintechSecurity #InfoSec #CyberAlert #HackingNews #KYC #PII #CriptoMexico #CriptoEspana

@interesting_aIl Fun how they switch between Mandarin Cantonese Japanese and English.

How to speak like an American

BEWARE TRAVELING TO 🇭🇰 HONG KONG WITH BITCOIN HARDWARE WALLETS Hong Kong has updated enforcement rules under the National Security Law as of March 23, 2026. Refusing to provide passwords or decryption assistance to police is now a criminal offense, covering ALL personal devices including phones, laptops, and likely hardware wallets. The rule applies to everyone in Hong Kong, including US citizens, even if only transiting through the airport. Authorities also have expanded powers to seize and retain devices they claim are linked to national security investigations. Travelers are advised to understand the risks before entering or transiting through the region.

@optimistictory Love them.

Dear restaurant owners: We all hate the QR code menus. Stop. -everyone

still baffles me that @Google can't spend a fraction of the half day it might take--maybe full day, of like, 2 people, to make a dark mode for google docs even though it's been a top requested feature for years and causes people to leave them for word.