CoinTelegraph

The $36M Lesson: Humanity Protocol Shifts Focus to Operational Security After Human Error Hack

July 14, 202610:08 AM
The $36M Lesson: Humanity Protocol Shifts Focus to Operational Security After Human Error Hack

Humanity Protocol is pivoting its cybersecurity roadmap following a massive $36 million exploit that targeted human error rather than code. Founder Terence Kwok confirmed that the breach originated from a compromised employee laptop containing sensitive production keys, including admin hot wallet keys and multisig owner quorum keys.

This high-stakes exploit underscores a dangerous shift in the crypto landscape, where malicious actors are moving away from smart contract vulnerabilities to exploit staff-level weaknesses. As the decentralized identity sector evolves, the protocol's new emphasis on operational security aims to close the gap between technical robustness and human-centric vulnerabilities.

Speaking to Cointelegraph, Kwok noted that the incident highlights a growing trend among cryptocurrency hackers: a strategic shift from exploiting smart contract code to targeting staff-level vulnerabilities and operational shortcomings. The protocol is now prioritizing the human element to prevent similar catastrophic failures in the future.

This is a summarized and adapted version by Artificial Intelligence. To read the complete original story, visit the official source.

Read Full Article at CoinTelegraph
QR Code Lightning

Support Jornal Bitcoin

Independent journalism, curated by AI, no clickbait. Keep the flame alive with any amount of BTC.

Wallet of Satoshi
jonata@walletofsatoshi.com

Daily Crypto Brief 📬

Subscribe to receive the curation of the most important Bitcoin and crypto news, summarized by AI. No spam.

Join more than 10,000 smart readers.

Related News

The AI 'Hackpocalypse' is a Myth: Why DeFi Security is Actually Improving
CoinTelegraph★ Featured

The AI 'Hackpocalypse' is a Myth: Why DeFi Security is Actually Improving

The fears that artificial intelligence would trigger a catastrophic wave of decentralized finance (DeFi) hacks, often termed a 'hackpocalypse,' have failed to materialize. According to Dragonfly managing partner Haseeb Qureshi, while the frequency of incidents has hit record highs, the median hack size has plummeted, signaling a shift in the threat landscape.

This trend suggests that malicious actors leveraging AI are primarily targeting 'small protocols and abandonware' rather than major players. As larger DeFi protocols fortify their defenses, the median value of hacks has dropped below $500,000, proving that the industry is successfully adapting to the evolving challenges posed by artificial intelligence.
Security Breach: xAI’s Grok Build CLI Caught Uploading Private Code and Secrets to Google Cloud
Crypto Briefing★ Featured

Security Breach: xAI’s Grok Build CLI Caught Uploading Private Code and Secrets to Google Cloud

A major security incident has surfaced involving xAI’s Grok Build CLI, which was caught uploading private code and sensitive secrets to a Google Cloud bucket. This breach poses a direct threat to developers and enterprises relying on AI-driven automation for their core software infrastructure.

The incident highlights the critical need for transparency and robust data privacy measures in AI tools to prevent unauthorized data exposure. As AI integration deepens within the tech stack, ensuring rigorous cybersecurity protocols and data governance is essential to mitigate the risks of intellectual property theft and accidental leaks.
AI Shield: Ethereum Foundation Deploys Intelligent Agents to Hunt Bugs Before Hackers Strike
Portal do Bitcoin★ Featured

AI Shield: Ethereum Foundation Deploys Intelligent Agents to Hunt Bugs Before Hackers Strike

The Ethereum Foundation is revolutionizing on-chain security by deploying specialized AI agents designed to hunt for vulnerabilities. This strategic move shifts the security paradigm from reactive patching to proactive defense, utilizing advanced Artificial Intelligence to identify critical flaws before malicious actors can exploit them.

By integrating these AI agents into the ETH network, the ecosystem aims to significantly reduce the risk of smart contract exploits and large-scale hacks. This evolution in cybersecurity sets a new benchmark for protecting digital assets and ensuring the long-term resilience of the Ethereum blockchain.
US Eases Export Rules for UAE: Unlocking the Floodgates for AI Chip Sales
Crypto Briefing★ Featured

US Eases Export Rules for UAE: Unlocking the Floodgates for AI Chip Sales

In a major shift in global tech policy, the United States has eased technology and military export regulations for the United Arab Emirates. This strategic pivot allows for license-free sales of advanced AI chips, granting the UAE unprecedented access to the high-performance hardware driving the current artificial intelligence boom.

While the move is designed to deepen US-UAE strategic ties, it has simultaneously triggered intense debate regarding technology diversion risks. Experts are closely monitoring whether this hardware influx will bolster regional innovation or inadvertently fuel global security concerns through the unauthorized transfer of sensitive tech.
Goodbye OTP? Hong Kong Forces Crypto Exchanges to Upgrade Security or Pay for Hacks
CryptoSlate★ Featured

Goodbye OTP? Hong Kong Forces Crypto Exchanges to Upgrade Security or Pay for Hacks

Hong Kong's SFC is cracking down on cybersecurity vulnerabilities by mandating a shift away from traditional one-time passwords (OTP). By July 8, 2027, all crypto platforms operating under its jurisdiction must implement phishing-resistant login protocols and device binding to safeguard user assets against sophisticated cyberattacks.

This regulatory pivot places a massive burden of responsibility on exchanges, as they must now implement immediate monitoring and incident response duties. Failure to comply with these enhanced security standards could result in platforms being held legally and financially liable for user losses, marking a significant shift in the accountability landscape for the crypto industry.
Privacy Under Siege: EU Parliament Passes Controversial 'Chat Control' Law
CoinTelegraph★ Featured

Privacy Under Siege: EU Parliament Passes Controversial 'Chat Control' Law

The European Parliament has officially moved forward with the controversial 'Chat Control' legislation, authorizing tech firms to scan private messages for child sexual abuse material until 2028. Despite significant pushback, the vote failed to reach the 361-member threshold required to block the regulation, effectively reviving a mandate that critics argue undermines digital autonomy.

This legislative shift has sent shockwaves through the cryptography and privacy advocacy communities. By potentially compromising the core principles of end-to-end encryption, the law creates a massive tension between child safety mandates and the fundamental right to secure, private communication in the digital age.
Jornal Bitcoin Logo