ois

According to Cointelegraph, the Illinois State Legislature has passed the budget for the fiscal year 2027, which includes a provision to impose a 0.2% tax on cryptocurrency transactions, to be collected by digital asset brokers. This measure, referred to as the "privilege tax," is part of the amendment to the "Digital Asset Privilege Tax Act," which includes registration requirements for any digital asset broker operating in Illinois.Starting from January 1, brokers who fail to comply with the relevant regulations may be classified as a Class 3 felony in the state, facing two to five years of imprisonment and a fine of up to $25,000. The budget has been approved by the state legislature on Monday but still requires the signature of Governor JB Pritzker to take effect. JB Pritzker has publicly stated multiple times that he plans to sign the bill as soon as possible, but as of Friday morning, he has not yet signed it. Legislators expect that the cryptocurrency tax will generate $60 million in revenue for the state.

Slow Fog's Yuxian stated on platform X that incidents of search engine poisoning involving fake Codex, Claude Code, and others have recently surged. It mentioned that it has previously warned multiple times about Google search results and its own services like Google Sites being exploited by black and gray market poisoning, but Google has not taken action against such obvious poisoning methods.

Superfortune, incubated by Manta, recently released an update on the X platform regarding a security incident, stating that the attack was not carried out by internal personnel and that no team members were involved. The claim about the team secretly selling tokens is incorrect. The team has also not had any contact with Web3Port.The investigation confirmed that the attack was not due to address poisoning, but rather a leak of the signer's private key. The attacker independently held the private key and submitted a transaction with a forged address 43 minutes after the correct transaction. The forged address shares the first and last four characters with the correct address (starting with 0x70AE and ending with 5C15) to disguise itself in the Safe interface preview. The stolen funds are fully traceable and are currently stored in three cold wallets on Ethereum, containing approximately 2784 ETH, along with about 170,000 USDT that were cross-chain transferred out.The attacker also created a large number of counterfeit addresses and sent false transfer events to these addresses using Unicode-forged token symbols in an attempt to confuse tracking. This counterfeit address construction technique is the same as the method used when attacking this project. The attacker had pre-built a large-scale infrastructure, indicating that this was an industrialized operation rather than an opportunistic attack.

GoPlus Security stated that a user fell victim to a typical address poisoning attack, mistakenly transferring 100,000 DAI to a fake address created by the attacker after copying a similar address from the transaction history.In this incident, the user had previously transferred 300,000 DAI to the target address, and the attacker subsequently sent 0.0003 DAI from a similarly structured address to lure the user into mistakenly selecting the wrong address for the second transfer.GoPlus Security reminds users not to copy addresses from transaction history, to verify the complete address before transferring, and to conduct a small test transfer before making large transactions.

According to a report by Reuters, the Commodity Futures Trading Commission (CFTC) and the Department of Justice (DOJ) have filed a lawsuit against the Governor of Illinois and the Attorney General, accusing them of attempting to regulate prediction markets beyond their legal authority.The two agencies stated that the relevant regulatory measures in Illinois are invalid because the state government does not have the authority to govern federally regulated prediction markets. The lawsuit emphasizes the protection of innovative financial instruments from overreach by local governments.

According to Bitcoin Treasuries, Illinois State Senator Steve McClure has proposed Bill SB3672 - the "Local Government Digital Asset Investment Act," which aims to amend the state's Public Funds Investment Act to allow public institutions to allocate up to 5% of public funds to Bitcoin-related financial products.According to the bill's definition, eligible "digital asset stocks" must be equity in publicly listed companies, and the company must be verified by the latest audited financial statements to hold at least 25% of its total assets in Bitcoin or other digital currencies.This threshold will include companies such as Strategy, Twenty One Capital, Metaplanet, and Semler Scientific, which have a core strategy of accumulating Bitcoin. The bill also allows public funds to invest in Bitcoin ETFs and Bitcoin bonds, with additional transparency requirements.

According to China News Network, the "3·15" gala reported on the "poisoning" chaos of AI large models. Li Fumin, an expert from the Institute of Intelligent Social Governance at Shandong University of Finance and Economics, stated that the behavior of businesses conducting targeted training on large models through services like GEO to guide AI in generating specific product or service recommendations is essentially a new form of unfair competition and consumer misleading behavior that uses technical means for covert marketing and fabricating facts. This leads consumers to receive implanted marketing content without their knowledge, and its harmfulness and illegality need to be taken seriously.On one hand, the above behavior infringes upon the consumers' right to know and the right to fair trade as stipulated by the Consumer Rights Protection Law. On the other hand, it constitutes false or misleading commercial promotion using technical means, disrupting the normal order of recommendation algorithms and the market competition environment, thereby forming unfair competition.The governance of the above AI poisoning behavior requires a multi-faceted approach. Regulatory authorities should include AI-induced marketing in key monitoring and strengthen law enforcement supervision; AI operators should enhance the review of source materials and output filtering, and establish traceability mechanisms; consumers should improve their awareness of the commercial nature of AI-generated information and actively protect their rights through complaints and reports.

According to reports from CCTV News, based on insider revelations, journalists quickly found a business called GEO by searching multiple online platforms. Service providers engaged in this business on these platforms claim that users only need to pay the corresponding fees to have their products listed among the major mainstream AI large models; allowing their product advertisements to become the "standard answers" provided by the AI models.The popularity of the GEO business has led to the emergence of many companies and platforms specializing in press release services. They have long undertaken various press release tasks to ensure that AI large models reference and capture them, becoming an important part of hunting AI large models and conducting data "poisoning."

Binance founder CZ posted on the X platform that the Binance Web3 wallet now supports filtering out junk transactions to reduce the risk of address poisoning. Due to the recent increase in Ethereum address poisoning attacks, he previously called for block explorers to directly filter such junk transactions instead of just displaying them to users, and suggested using AI technology for junk transaction identification and filtering.

Etherscan posted on social media that there were approximately 17 million poisoning attempts on Ethereum from 2022 to 2024, affecting 1.3 million users, with confirmed losses of at least $79.3 million. After the Fusaka upgrade (December 3, 2025), transaction costs will decrease significantly, and dust transfers will explode, increasing by 612%.Etherscan recommends that users take the following measures:Always manually verify the complete target address before transferring (most important)Add private name tags for frequently used addresses + use ENS domain namesEnable the Etherscan Address Highlight feature · Pay attention to pop-up reminders when copying addresses.

Etherscan warns users that a victim received 89 address poisoning transactions within 30 minutes after making two stablecoin transfers.Address poisoning attackers monitor blockchain activity and create fake addresses that resemble the beginning and ending characters of valid addresses the user has interacted with. They send almost worthless small transfers to the target, making these addresses appear in the transaction history, tricking users into mistakenly copying the attacker's address during subsequent transfers. Etherscan advises users to always verify the complete target address and use its address highlighting feature to distinguish similar addresses.

According to official news, the Base ecological trend prediction platform Noise has now opened the waiting list for applications.In January of this year, Noise, a tool for attention markets building a platform for prediction market-related information, announced the completion of a $7.1 million seed round financing, led by Paradigm. Previously, the company also received investment support from Figment Capital, Anagram, as well as GSR, JPEG Trading, and KaitoAI.It is reported that the Noise testnet launched its beta version last May, limited to invited users, attracting over 1,300 users who utilized social media data provided by Kaito to make predictions in an attention market tracking 14 cryptocurrency topics.

According to the monitoring by Slow Fog Technology's Chief Information Security Officer 23pds (@im23pds), attackers are poisoning Bing AI search results to lure users into downloading and installing a counterfeit OpenClaw program, thereby stealing users' crypto assets and sensitive information.

According to the monitoring by PieShield, an address associated with crypto KOL @sillytuna (0xd2e8...ca41) has suffered from an address poisoning attack, resulting in a loss of approximately 24 million dollars in aEth USDC.About 20 million dollars in DAI is currently still held in two temporary wallets controlled by the attackers (not yet mixed):0xdCA9...c9C4 (approximately 10 million dollars);0xd0c2...dd3e (approximately 10 million dollars). The attackers have begun transferring small amounts of funds across chains to Arbitrum.

According to DLNews, South Korean prosecutors have charged a 39-year-old man with attempting to murder his business partner after secretly using company funds to invest in cryptocurrency and failing. It is reported that the suspect purchased the banned pesticide methomyl from an online seller in China and added it to the victim's iced latte. The victim immediately fell unconscious after drinking it at a café in Seoul and remained in a coma for three days after being taken to the hospital. The man will face charges of attempted murder and violating South Korea's pesticide management law, with the case set to be heard on March 10 at the Eastern District Court of Seoul.

According to Cointelegraph citing @web3_antvirus, an address poisoning scam resulted in a victim losing $599,000 USDT. The victim sent funds to a fake address copied from transaction records. The attacker embedded the fake address through a small transfer, mixing it with legitimate transaction records. The victim then copied the address and sent funds to the attacker.

According to Cyvers Alerts monitoring, a trader suffered a poisoning attack about an hour ago, resulting in a loss of approximately $600,000 worth of USDT.While attempting to send funds to 0x77f6ca8E...2E087a346, he mistakenly sent the transaction to the malicious spoofed address 0x77f6A6F6...DFdA8A346, warning users to be cautious of the associated risks.

According to Scam Sniffer monitoring, in January, a single victim lost $12.2 million due to copying an incorrect address in their transaction history. Combined with a similar attack in December that resulted in a loss of 500,000 dollars, the two victims have accumulated losses exceeding $62 million.Address poisoning attacks refer to attackers sending small amounts of tokens from visually similar addresses to lure users into copying the incorrect address. Additionally, in January, signature phishing scams stole $6.27 million, representing a 207% increase month-over-month. Analysts believe that the Ethereum Fusaka upgrade has reduced transaction costs, leading to an increase in the frequency of such attacks.Coin Metrics data shows that dust transactions related to stablecoins currently account for about 11% of the total daily transactions on Ethereum. Whitestream indicates that DAI has become the preferred choice for illegal operators to store funds due to the protocol's governance not cooperating with authorities to freeze addresses.

According to SlowMist's monitoring, the official plugin center ClawHub of the open-source AI Agent project OpenClaw is gradually becoming a new target for attackers to implement supply chain poisoning.Due to the platform's lack of a comprehensive and strict review mechanism, a large number of malicious skills have already infiltrated, being used to spread malicious code or deliver harmful content, posing potential security risks to developers and users. According to a report by Koi Security, 341 malicious skills were identified in a scan of 2,857 skills, reflecting a typical "plugin/extension market supply chain poisoning" pattern.SlowMist advises not to treat the "installation steps" in SKILL.md as a trusted source; any command that requires copying and pasting should be audited first; be wary of prompts that "require entering the system password/granting accessibility/system settings," as these are often points of risk escalation; prioritize obtaining dependencies and tools from official channels to avoid executing installation scripts from unknown sources.