Top Tweets for #GoPlusSecurity
Glad to see #GoPlusSecurity AI security capabilities #AgentGuard powering SMART Benchmark 🚀
SMART Benchmark is a standardized evaluation framework for AI trading agents, co-hosted by @ManicTrade and @SonicSVM, built on real trading scenarios and scored across 5 key dimensions to help users better assess agent trading decision-making.
🎯 Participate in the evaluation & win rewards
1️⃣ Leaderboard rewards
•Test your AI Agent and get ranked: https://t.co/t3euJKLe9s
🏆 Compete for the Top 100 share of a $2,000 prize pool
2️⃣ Engagement rewards
• Follow @GoPlusSecurity and @ManicTrade
• Tag 2 friends
• Post your score screenshot under this tweet
🏆 Reward rules (25 winners total, $5U each)
• Top 10 highest scores
• Top 10 lowest scores
• 5 randomly selected participants
📅 Deadline: April 30
(Rewards via X within 7 working days)
How Smart Is Your Trading Agent?
Do you know how it actually makes trading decisions?
Introducing the SMART benchmark for AI trading agents, co-hosted with @SonicSVM. Get your agent’s trading score and see how it ranks.
Test your agent: https://t.co/lnAUAOHfxT
🤝 Claw Wallet x GoPlus Security : Safeguarding the Future of the AI Agent Economy
Excited to announce a strategic partnership between #ClawWallet and #GoPlusSecurity. This marks a key milestone in building the foundational security layer for the #AIAgent era.
Redefining the Agent Infrastructure:
🔹 SafuSkill Integration: Revolutionizing how AI capabilities are valued by turning "Skills" into tokenized on-chain assets with sustainable revenue streams for creators.
🔹 AgentGuard Protection: Deploying industry-leading security intelligence to provide real-time scanning and risk visualization for every autonomous interaction.
Together, we aren't just building a wallet—we are securing the next evolution of decentralized intelligence. 🛡️
Great news!
@GoPlusSecurity updated our Hashcoin contract data & removed the risk flag✅
Now our token is shown more accurately on @dexscreener.
Reminder: ownership renounced to dead address, no mint possible https://t.co/2XB6OoETAE
#Hash #GoPlusSecurity #TokenSecurity #DeFi
A $18.2M loss isn’t just a hack—it’s a lesson. Social engineering doesn’t break systems, it exploits trust. In Web3, protecting your assets starts with protecting your decisions
#GoPlusSecurity @GoPlusSecurity
🚨 GoPlus Security Alert:
According to a community warning from @zachxbt, a #Kraken user reportedly lost $18.2M in a suspected social engineering attack.
On-chain data shows the attacker’s address had been continuously receiving ETH from Kraken for the past 35 days, with transfers ranging from just a few ETH up to 2,000 $ETH — indicating a social engineering scam that lasted for over a month.
The attacker used a #SafePal wallet and leveraged #THORChain to bridge funds from Ethereum to the Bitcoin network, enabling fund consolidation and asset movement.
Attacker addresses:
0xC55149BbD560435a9FbEabFdcF9711cf928acA21
0xd57a53849ca03be588cb48368cb697dfaab30709
1D8f8956EEFLXN28AHfioEx4ywVbxCz8KN
🛡 Security Tips:
1. Follow the #GoPlus Anti-Phishing “4 Don’ts”:
Don’t click unknown links, don’t install untrusted software, don’t sign suspicious transactions, don’t transfer funds to unverified addresses.
2. Install the GoPlus Security extension to block phishing links, risky signatures, approvals, and transactions 👉
https://t.co/FHHKZyzH1j
Modern threats don’t force entry they invite you in. Fake prompts, CAPTCHA pages, and simple commands are enough to compromise your system. In Web3, one careless action can expose everything. Stay alert, verify every step, and never trust blindly.
#GoPlusSecurity @GoPlusSecurity
🚨 GoPlus Security Alert: Infiniti Stealer targeting macOS users — draining crypto wallets
Infiniti Stealer leverages ClickFix social engineering to trick users into executing malicious code, then silently exfiltrates sensitive data and digital assets.
🔍 Attack Chain:
1) ClickFix phishing
Attackers deploy highly convincing fake Cloudflare CAPTCHA pages, tricking users into opening Terminal and manually pasting malicious commands.
2) Bash dropper
Once executed, it pulls a Stage-1 script that removes macOS quarantine flags (https://t.co/f7MY8D29PD.quarantine), then drops and runs Stage-2 payload from /tmp.
3) Nuitka evasion
Final payload is a Python stealer compiled via Nuitka into a native macOS binary — making detection and analysis significantly harder.
☠️ Impact & Stealth:
Once triggered, Infiniti Stealer silently exfiltrates:
🔑 Browser credentials (Chromium/Firefox) + macOS Keychain
💰 Crypto wallets
📁 Dev secrets (e.g. .env files)
Includes sandbox detection + delayed execution → highly stealthy.
🛡️ #GoPlus Security Tips:
1) Follow #GoPlus Anti-Phishing “4 Don’ts”
Don’t click unknown links
Don’t install untrusted software
Don’t sign suspicious transactions
Don’t transfer to unverified addresses
2) Immediate containment
If compromised, stop all sensitive activity on the device immediately.
3) Credential reset
On a clean device, rotate passwords, revoke API tokens, SSH keys, and active sessions.
4) System check
Inspect /tmp and ~/Library/LaunchAgents/ for persistence, and run a full scan (e.g. AVG).
🔗 More details:
https://t.co/sxB6fG2Iij
The most dangerous attacks don’t break code — they manipulate users. A single command, a fake prompt, or a trusted-looking page can lead to total loss. In Web3, security starts with awareness. Pause, verify, and never execute blindly.
#GoPlusSecurity @GoPlusSecurity
🚨 GoPlus Security Alert:
Beware of the MacSync malware targeting #macOS users to steal crypto assets via SEO poisoning and PDF traps
Recently, a highly targeted MacSync Infostealer campaign has been observed on macOS. Attackers combine SEO poisoning with ClickFix social engineering techniques to create a highly stealthy attack chain:
1. Attack Path (SEO Poisoning + Terminal Injection)
Attackers manipulate search engine results to disguise malicious websites as popular PDF download pages.
When victims visit these sites, a fake “I’m human” verification prompt appears, tricking users into copying and executing malicious code directly in the macOS Terminal.
2. Core Impact
Once executed, the malicious loader deploys data-stealing modules that silently exfiltrate sensitive data, including:
• Credentials
• SSH keys
• Crypto wallets
🛡️ #GoPlus Security Tips
• Stay alert: Never paste or execute any “verification” or “unlock” commands from websites in Terminal. Run antivirus scans regularly.
• Keep updated: Ensure your macOS is up to date to strengthen system security.
• Follow the #GoPlus Anti-Phishing “4 Don’ts” —
Don’t click unknown links, don’t install untrusted software, don’t sign suspicious transactions, don’t transfer funds to unverified addresses.
Source report👇
https://t.co/4fLASrXcHr
As AI agents start executing on-chain, security becomes non-negotiable.
APIs like this aren’t just tools — they’re the foundation 🔒
#GoPlusSecurity @GoPlusSecurity @GoPlusZH
🚀 #GoPlusSecurity API for AI Agents is live
Providing security infrastructure for AI Agent developers, DeFi protocols, x402 ecosystem projects — and anyone using AI Agents for on-chain execution.
👉 As AI Agents begin executing on-chain, risks are scaling alongside them — no reliable way to verify address and token safety, autonomous execution can lead to real asset loss, and there’s no security layer tailored for agent-native interactions.
Traditional APIs rely on manual authentication and fixed access models, making them unsuitable for autonomous, on-chain AI Agents.
🛡️ GoPlus introduces Security API for AI Agents
⚙️ Key features
-Built on x402, natively supports AI Agent interactions
-No API keys required, plug & play
-Pay-as-you-go (CU model)
Covers:
- Malicious address detection|Token security|Transaction simulation|Rug-pull detection
- Supports 40+ chains|Designed to handle 30M+ calls
Security isn’t optional — it’s foundational for AI Agents. 🛡️
👉 Get started: https://t.co/571V3R4yRm
🚀 #GoPlusSecurity API for AI Agents is live
Providing security infrastructure for AI Agent developers, DeFi protocols, x402 ecosystem projects — and anyone using AI Agents for on-chain execution.
👉 As AI Agents begin executing on-chain, risks are scaling alongside them — no reliable way to verify address and token safety, autonomous execution can lead to real asset loss, and there’s no security layer tailored for agent-native interactions.
Traditional APIs rely on manual authentication and fixed access models, making them unsuitable for autonomous, on-chain AI Agents.
🛡️ GoPlus introduces Security API for AI Agents
⚙️ Key features
-Built on x402, natively supports AI Agent interactions
-No API keys required, plug & play
-Pay-as-you-go (CU model)
Covers:
- Malicious address detection|Token security|Transaction simulation|Rug-pull detection
- Supports 40+ chains|Designed to handle 30M+ calls
Security isn’t optional — it’s foundational for AI Agents. 🛡️
👉 Get started: https://t.co/571V3R4yRm
Web3 security is only as strong as the vigilance we bring to it. In February 2026 alone, $35 million was lost due to exploits like smart contract vulnerabilities, social engineering, and phishing. Every protocol, every chain—security cannot be optional.”
#GoPlusSecurity
https://t.co/lLaEm7Nh8r
zkSNARK verification flaws can have serious consequences.
Proper configuration and auditing are critical. ⚠️
#GoPlusSecurity @GoPlusSecurity @GoPlusZH
🚨 GoPlus Security Alert: #FOOMCASH Exploited — $2.26M in Losses
Privacy gaming platform @FOOMCASH was attacked on both #Base and #Ethereum.
A total of 24,283,773,519,600 $FOOM (~$2.26M) was drained.
🔍 Root Cause: A misconfigured verification key allowed the attacker to forge zkSNARK proofs. By exploiting this flaw, the attacker bypassed contract verification logic and extracted a massive amount of $FOOM tokens.
AI-powered malware is becoming more sophisticated.
Always avoid installing APKs from unknown sources. ⚠️
#GoPlusSecurity 🛡️ @GoPlusSecurity @GoPlusZH
🚨 Beware of the malicious Android malware #PromptSpy capable of remotely controlling devices
PromptSpy is an Android malware whose primary objective is to remotely control victims’ devices. It leverages AI to make real-time malicious behavior decisions, increasing stealth and attack accuracy.
Attack flow overview:
Phishing website distribution:
By impersonating banking websites (such as fake Chase Bank pages), it lures users into downloading and installing an APK (not available on Google Play).
Dropper stage:
Requests permission to install “apps from unknown sources,” then induces users to install the second-stage payload (the PromptSpy core).
Privilege escalation:
Requests enabling Accessibility Service to obtain screen-reading and automated interaction capabilities.
AI-driven persistence:
Calls the Google Gemini API, analyzes the current UI XML structure of the user’s device, and performs remote control and malicious actions.
How AI is used:
Instead of hardcoding malicious operation logic, it captures the current screen’s XML structure (including text, element positions, types, etc.) and sends it to Gemini. Gemini then returns operation instructions which are executed. Essentially, this outsources the “decision-making logic” to a large model.
Advantages of using AI:
It can better adapt to different phone brands and Android versions,
better adapt to different UIs,
and does not rely on hardcoded logic, improving flexibility and coverage of the attack.
#GoPlus Security recommendations:
1. Never install APKs from unknown sources
2. Be cautious when granting Accessibility permissions
3. Enable Google Play Protect
Critical reminder for developers using OpenClaw.
Always keep your tools updated to avoid security risks. ⚠️
#GoPlusSecurity 🛡️ @GoPlusSecurity @GoPlusZH
🦞 #OpenClaw Gateway has a critical vulnerability. Please upgrade to version 2026.2.25 or later immediately.
OpenClaw operates through a WebSocket Gateway bound to localhost. This Gateway serves as the core coordination layer of the Agent and is a critical component of OpenClaw. The attack specifically targets weaknesses at the Gateway layer and requires only one condition: the user visits a malicious website controlled by an attacker in their browser.
Full Attack Chain:
-The victim visits a malicious website controlled by the attacker in their browser;
-JavaScript on the page initiates a WebSocket connection to the OpenClaw Gateway running on localhost;
-The attack script attempts to brute-force the Gateway password hundreds of times per second;
-Once successful, the script silently registers itself as a trusted device;
-The attacker gains administrator-level control of the Agent.
Security Recommendations:
Upgrade immediately to OpenClaw version 2026.2.25 or later;
Audit and revoke any unnecessary credentials, API keys, and node permissions granted to Agent instances.
Proof of concept / exploit demonstration below 👇
https://t.co/lk0ce26m9a
Another reminder to always check token security before trading.
Honeypot scams are still trapping many users. ⚠️
Stay safe with #GoPlusSecurity 🛡️ @GoPlusSecurity @GoPlusZH
🚨 GoPlus Security Alert:
Beware of new honeypot tokens on BSC such as #4Agent. KOLs and smart money have already been trapped, with losses reaching $100,000.
The Gork4.2-themed #4AGENT: 0x15eadc6a76ebe63758ca917a0a1f526b00ca1111 is a honeypot token. KOLs and smart money have fallen victim, with total losses of 170 #BNB (approximately $100,000).
Malicious Dev: 0xc7a15250ef489f2ba958b250baefa820a65855fe
Attack proceeds: 123.7 #BNB was transferred to 0xFcc7873C52AE1ADA55a01d6c2976dB381C514EB5; another 46 #BNB was swapped to #ETH via Orbiter and bridged to 0x96f4885d32ffc2b6ba9e429ac777440e3df7e775.
The Dev’s funds originated from #Bitget. Tracing back through cross-chain addresses shows that the same Dev previously launched two similar unverified malicious tokens:
0x4C2F9c8dD68bE5B137E5dB2116D0B44d7197e2eD (DEBOT)
0xf46bd4c8A725e5650F927E35b55c3DBACA9CDF2d (U Lottery)
📌 Before trading MEME tokens, please check GoPlus security detection information on your market/trading platform to avoid honeypot losses.
AI mistakes can become real security risks.
Even a small command misinterpretation can expose sensitive data.
Strong monitoring and isolation are essential for AI agents. 🛡️
#GoPlusSecurity @GoPlusSecurity @GoPlusZH
🛡️OpenClaw Accidentally Hacks Itself?!”
— When using 🦞#OpenClaw for software development or testing, beware of AI misoperations that may lead to secret key leaks!
In this incident, OpenClaw used a system tool (calling exec to run Shell commands) to create a GitHub Issue, but it constructed an incorrect Bash command. This caused OpenClaw to unintentionally perform a Bash injection attack on its own host device, resulting in over 100 lines of highly sensitive environment variables (including Telegram keys, authentication tokens, etc.) being directly inserted into the GitHub Issue content and publicly published.
Details:
1. AI generated a string wrapped in double quotes "" intended for GitHub.
2. The string contained a word wrapped in backticks: `set`, which Bash interprets as a “command substitution.” As a result, Bash didn’t treat set as plain text but executed it silently as a subcommand.
3. In Bash, running set with no arguments prints all current environment variables.
4. OpenClaw executed set, and over 100 lines of core environment variables were concatenated into the GitHub Issue text and publicly posted.
#GoPlusSecurity Recommendations:
-Prefer API calls instead of letting AI directly build Shell commands.
-Apply the principle of “least privilege” and strictly isolate environment variables.
-Disable dangerous execution modes and ensure proper escaping/filters.
-Introduce human-in-the-loop verification for critical operations.
Further reading: https://t.co/IIQTznBJya
🚀 $GPS가 이제 🇰🇷 빗썸(Bithumb)에 상장되었습니다!
🎉 한국 Web3 커뮤니티 여러분, 함께 응원합시다! 💪
GoPlus의 보안 솔루션이 한국 유저들에게도 더 가깝게 다가가는 중요한 발걸음입니다.
앞으로의 성장 기대합니다! 🙌
#GoPlusSecurity #GPS #Bithumb #가상자산상장
🚀 $GPS is now live on Bithumb🇰🇷
To celebrate, we’re kicking off a Korean QT Campaign!
Calling all Korea Web3 frens —
QT in Korean to show your support and split a 200U reward pool 🔥
⏰ Deadline: March 6, 4:00 PM (UTC)
🎁 Rewards: 20 winners × 10U each
📝 How to participate:
1️⃣ QT in Korean + comment to join the random comment giveaway.
2️⃣ Submit the tweet link + wallet address via the form
🔗 Form: https://t.co/omn35xh0mO
Let’s show some love for #GoPlus #GPS on @BithumbOfficial 🇰🇷🔥
@GoPlusSecurity @GoPlusSecurity 디지털 화폐화를 통해 전 세계 시민들에게 더욱 쉽고 안전한 거래를 제공합
#GoPlusSecurity #에어드롭 #이벤트 #CryptoCommunity
🚀 $GPS가 국내 최대 거래소 중 하나인 비썸(Bithumb)에 상장되었습니다! 🇰🇷
GoPlus Security 공식 발표에 따르면 이제 GPS/KRW 마켓이 정식으로 오픈되었고, 한국 거래자들도 원화로 직접 $GPS를 거래할 수 있게 되었습니다. 📈 #GPS #GoPlusSecurity #Bithumb 상장은 프로젝트 접근성과 유동성에 큰 의미가 있다고 봅니다!
🚀 $GPS is now live on Bithumb🇰🇷
To celebrate, we’re kicking off a Korean QT Campaign!
Calling all Korea Web3 frens —
QT in Korean to show your support and split a 200U reward pool 🔥
⏰ Deadline: March 6, 4:00 PM (UTC)
🎁 Rewards: 20 winners × 10U each
📝 How to participate:
1️⃣ QT in Korean + comment to join the random comment giveaway.
2️⃣ Submit the tweet link + wallet address via the form
🔗 Form: https://t.co/omn35xh0mO
Let’s show some love for #GoPlus #GPS on @BithumbOfficial 🇰🇷🔥
🚨 Safety first! Protect your devices: Update #Chrome to v143.0.7499.192+ to patch the #Gemini panel vulnerability (CVE-2026-0628). Don’t let malicious extensions access your camera, mic, or files. Stay secure! 💻🔒 #GoPlusSecurity
@GoPlusZH @GoPlusSecurity
🚨 GoPlus Security Alert:
A #Chrome browser vulnerability allows malicious extensions to escalate privileges via the #Gemini panel. Please upgrade Chrome to version 143.0.7499.192 or later immediately.
This vulnerability allows malicious extensions to control the Gemini Live panel in the Chrome browser and escalate privileges, enabling access to the camera and microphone, capturing screenshots, and accessing local files without user permission. The vulnerability is tracked as CVE-2026-0628. Google patched the issue in early January 2026 in Windows/Mac versions 143.0.7499.192/.193 and Linux version 143.0.7499.192. Please check your Chrome version and update immediately.
Source 👇
https://t.co/xkVUc89NRc
@GoPlusSecurity @GoPlusSecurity는 거주지나 배경에 관계없이 모든 사람에게 재정적 자유를 향한 다리를 놓아줍니다.
$GPS #GoPlusSecurity #에어드롭 #이벤트 #CryptoCommunity
AI isn’t just for productivity malware like #PromptSpy shows it can make attacks smarter and stealthier.
Stay safe: never install unknown APKs, be careful with permissions, and keep Google Play Protect on. #GoPlusSecurity 🚨
@GoPlusSecurity @GoPlusZH
🚨 Beware of the malicious Android malware #PromptSpy capable of remotely controlling devices
PromptSpy is an Android malware whose primary objective is to remotely control victims’ devices. It leverages AI to make real-time malicious behavior decisions, increasing stealth and attack accuracy.
Attack flow overview:
Phishing website distribution:
By impersonating banking websites (such as fake Chase Bank pages), it lures users into downloading and installing an APK (not available on Google Play).
Dropper stage:
Requests permission to install “apps from unknown sources,” then induces users to install the second-stage payload (the PromptSpy core).
Privilege escalation:
Requests enabling Accessibility Service to obtain screen-reading and automated interaction capabilities.
AI-driven persistence:
Calls the Google Gemini API, analyzes the current UI XML structure of the user’s device, and performs remote control and malicious actions.
How AI is used:
Instead of hardcoding malicious operation logic, it captures the current screen’s XML structure (including text, element positions, types, etc.) and sends it to Gemini. Gemini then returns operation instructions which are executed. Essentially, this outsources the “decision-making logic” to a large model.
Advantages of using AI:
It can better adapt to different phone brands and Android versions,
better adapt to different UIs,
and does not rely on hardcoded logic, improving flexibility and coverage of the attack.
#GoPlus Security recommendations:
1. Never install APKs from unknown sources
2. Be cautious when granting Accessibility permissions
3. Enable Google Play Protect
Last Seen Hashtags on Sotwe
Omegle
Seen from United Kingdom
sstvi
Seen from Ireland
dogknotting
Seen from France
theMarsupilamis
Seen from United States
bnwo #pmv
Seen from United States
nsfwtwt
Seen from United States
bursatravesti
Seen from Turkey
เต้นแก้ผ้า
Seen from Thailand
ไซด์ไลน์โคราช
Seen from Thailand
pyt
Seen from Mexico
Most Popular Users
Elon Musk 
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
60.9M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers