SUDAN249

Product update: Account verification on Immunefi We've expanded how security researchers can verify their accounts on Immunefi, so the system works for everyone, not just those with NFC-enabled passports/IDs. Why this matters: Spam accounts and fake reports have become a real problem across the industry. They waste protocol resources, slow down triage, and ultimately hurt the legitimate security researchers doing serious work. To address this, we introduced a proof of humanity system with ZKPassport, a Sybil-resistant approach that keeps identity self-sovereign and privacy-preserving, without storing sensitive documents. But ZKPassport doesn't work for everyone. Not all researchers have passports or ID cards with NFC chips, and the app itself has had bugs. Some researchers were locked out as a result. That was our mistake, and we've been working to fix it. Three ways you can now verify: Security researchers now have three options: 1. ZKPassport: works for researchers with an NFC-enabled passport or ID card. 2. Human Passport (new, primary method): verification based on a Unique Humanity Score built from your web3 activity, social accounts, and identity-tied credentials. Hit the threshold, and you're verified. 3. Pay to verify (experimental): currently rolled out to ~10% of users. If the first two methods don't work, researchers can pay a fee to prove they're human. The goal is simple: every security researcher should have a fair shot at hunting bounties on Immunefi. If you were locked out before, give it another try, and let us know if you hit any issues. To learn more about Human Passport, check out the Help Center article: https://t.co/v9cl6qK2Mh

Three audits. No bug bounty. AI-powered security scanner. vs. One audit. $500K active bounty. No AI tools. The second protocol is safer. Not even close. AI scanners find what they were trained on. Bug bounties incentivize people to find what nobody has thought of yet. You cannot train a model on the vulnerability that hasn't been discovered yet. You can pay a researcher to find it.

⚡️QUANTUM COMPUTER BREAKS ECC KEY IN BITCOIN-RELATED TEST A researcher used public quantum hardware to break a 15-bit elliptic curve key, winning Project Eleven’s 1 BTC Q-Day Prize. The test does not threaten Bitcoin’s 256-bit security yet, but highlights growing urgency around post-quantum upgrades, with ~6.9M BTC sitting in addresses with exposed public keys.

Alphabet to Invest Up to $40B in Anthropic, Supplying 5GW Computing Power Alphabet has announced plans to invest as much as $40 billion in the generative AI company Anthropic. The deal includes providing Anthropic with 5GW of computing power to support its research and development. The move is expected to intensify competition in the AI sector, particularly with rivals such as OpenAI.

Why is KelpDAO blaming LayerZero? "KelpDAO's leaked memo says it relied on LayerZero's documentation, default configurations, and team guidance when setting up the bridge." "LayerZero is saying KelpDAO should have used a more secure configuration." Andy's take: "That is not what you want to see as a user."