The founder of SlowMist, Yu Xuan, disclosed that the Drift Protocol theft incident was caused by its migration to a 2-of-5 multisig scheme without a timelock, which enabled the attacker to quickly seize control of permissions and resulted in losses of over $200 million. He urged DeFi project teams to regularly review risks, and users need to pay attention to the protocol’s risk of capital loss.

Gate News reports that on March 31, SlowMist founder Yu Xuan issued a security warning stating that the latest version 3.28 of OpenClaw may introduce a malicious axios dependency package, prompting users to conduct thorough inspections. Yu Xuan pointed out that, in addition to the risks directly associated with OpenClaw, related Skills may also rely on axios, leading to indirect contamination. Because axios is widely used, a comprehensive investigation is recommended. It is understood that this poisoning incident was detected in a timely manner.

Odaily Planet Daily reports that Slow Fog's Yuxian posted on the X platform stating that certain hacker organizations are using worm propagation engineering. After gaining access to Telegram accounts, they contact contacts in both Chinese and English, using methods such as fake Zoom meeting software, malicious code repositories, malicious third-party tools, or gaming software to infect target contacts. After completing coin theft and account hijacking, the hacker organizations proceed to the next round of operations and continuously optimize their worm propagation techniques.

According to ChainCatcher, 23pds, the Chief Information Security Officer of Slow Fog Technology, disclosed that a new variant of the information-stealing malware MacSync has emerged, capable of successfully bypassing the macOS Gatekeeper security mechanism, resulting in user assets being stolen. This malware employs various techniques to evade detection, including file expansion, network connection validation, and self-destruct scripts after execution. Attackers can use this software to steal sensitive data from victims, such as iCloud keychains, browser passwords, and Crypto Assets Wallets. Users should remain vigilant, avoid downloading software from unknown sources, promptly update operating system security patches, and take additional measures to protect asset security.

The Chief Information Security Officer of Slow Mist Technology, 23pds, warned on the X platform that a developer of a Polymarket trading bot has hidden malicious code in GitHub, which will steal users' Wallet Private Keys. 23pds reminds everyone to stay vigilant against such risks.

Odaily News Slow Mist Yu Xian published an article on the X platform stating that the theft of GANA was caused by the leak of the Private Key of the GANA Payment Stake contract Owner. The subsequent attack employed some techniques, such as the use of 7702 deleGate, which also conveniently bypassed the onlyEOA check of unstake. By changing the relevant Rate and Fee, hundreds of stakes were achieved.

Due to the data fog exacerbating the uncertainty of the Fed's policy, officials have expressed concerns about inflation and are cautious about interest rate cuts, while the market is waiting for new catalysts. The yield on our bonds remains in a narrow fluctuation, and the minutes from the October meeting may reveal the number of opponents to interest rate cuts.

BlockBeats news, on November 17, Slow Fog founder Yu Xian tweeted, "Friends using the open source automated trading system NoFx should pay attention, the risks we disclosed have already led to real theft incidents, and some users' Wallet Private Keys, CEX/DEX API Keys have been leaked. To minimize the risks, we have joined relevant security teams to notify affected users as much as possible before releasing this article to disclose the details."

Gate News Bot news, on November 14, according to CoinMarketCap data, as of the time of writing, TRUMP (OFFICIAL TRUMP) is currently priced at 7.07 USD, down 8.72% in the last 24 hours, with a high of 9.50 USD and a low of 7.01 USD. The 24-hour volume reached 591 million USD. The current market capitalization is approximately 1.415 billion USD, a decrease of about 135 million USD compared to yesterday. TRUMP currently ranks 54th in the crypto assets market capitalization leaderboard. Important news about TRUMP recently: 1️⃣ **Government shutdown ends, market focus shifts to data vacuum and policy fog** U.S. President Trump signed a temporary funding bill, officially ending a government shutdown that lasted six weeks. The bill will provide funding for the federal government until January 30, 2026, avoiding a short-term economic.