Major 價格MAJOR

We’re heading into a high-impact week with both FOMC policy updates and major exchange earnings on the schedule. That means: volatility is guaranteed — but our approach doesn’t change. Trade what’s clean. React, don’t predict. Macro Events in Focus ♦️ FOMC Rate Decision – Potential pivot or hawkish hold ♦️ Exchange Earnings (Coinbase, etc.) – May influence retail sentiment ♦️ Result? Spikes in volatility, uncertainty, and fakeouts The Strategy: Trade Setup > Speculation Forget "what might happen." Focus on clear, safe tradeable triggers. Here’s what I’m watching: Short Triggers – Only If These Conditions Hit ♦️ Local rejection near $98K after LTF (lower timeframe) liquidations ♦️ Breakdown from range highs and failure to reclaim the yellow zone ♦️ Momentum loss confirmed via price/volume divergence Long Triggers – 2 Clear Setups ♦️ Setup 1: Reclaim and hold above $98K with LTF liquidation sweep ♦️ Setup 2: Retest and bounce from 1D 50EMA if macro scare causes a dip Both setups are reactive, not predictive — no FOMC guessing games. Guiding Principles This Week ♦️ > Can’t control macro events ♦️ > Can control my execution ♦️ > Trade the chart, not the headlines ♦️ > React to confirmation, not anticipation

The Solana Foundation has announced the fixing of a potential vulnerability on the network that could have allowed for unlimited minting and withdrawal of Token-2022 coins on the network. The foundation confirmed today that it fixed the issue in April. According to the announcement , Solana software developer Anza first received a report of the vulnerability on April 16 and immediately collaborated with other major developers on the network, Jito and Firedancer, to evaluate the vulnerability report. Upon confirmation that it was a real problem, the teams worked on a patch to address the issue. The report added that blockchain security firms, such as Ottersec, Asymmetric Research, and Neodyme, also provided support and reviewed the patch before its deployment. Interestingly, the team discovered a similar bug in another part of the codebase while trying to address the initial issue and had to develop another patch to fix it as well. Despite the delay, the Solana Foundation and Anza team started reaching out to validators by April 17 and distributing the patch to them so they can upgrade. By 20:00 UTC on April 18, a supermajority of the stake had adopted the patch, allowing the Foundation to announce it publicly on Discord. The stealth approach to fixing the vulnerability has raised questions as to its potential severity for the network. According to the foundation, the bug allows anyone with the technical expertise to create arbitrary proofs that the ZK EIGamal Proof program will accept as valid. This program plays a key role in executing the Token-2022 confidential transfer as it verifies whether the zero-knowledge proofs that certify the validity of encrypted balances in transactions and accounts are correct. It said: “A sophisticated attacker could use these unhashed components to develop a forged proof of an unauthorized action that passes verification.” However, the vulnerability only affects Token-22 confidential tokens, which is a token standard that is not common on Solana. According to Coingecko , the market cap for Token-2022 coins on Solana is only $16.5 million. Still, the bug would have allowed an attacker to mint unlimited Token-2022 coins or withdraw any coin of this type from any account. Fortunately, there is no report of an exploit of the bug. Meanwhile, Solana Foundation’s decision to quietly fix the issue before announcing it publicly has sparked a debate about how decentralized Solana is. The pseudonymous founder of ETH Strategy, Cloutedmind , expressed consternation with the incident, stating: “Am i hearing this right? there was a zero-day on solana mainnet and >70% of the validators privately colluded to upgrade and patch the critical bug before it was even made public.” Some other users also appear to share a similar view, with one X account even saying that it is possible for validators to take users’ assets without their knowledge. However, many Solana stakeholders and crypto users have criticized this opinion, noting that this is how all decentralized networks operate. Helius Labs CEO Mert Mumtaz described the surprise as absurd. Solana co-founder Anatoly Yakovenko also added that validators on Ethereum also follow the same process, even if it might take longer on Ethereum. He said: “Bro, it’s the same people to get to 70% on ethereum. All the lido validators (chorus one, p2p, etc..) binance, coinbase, and kraken. If geth needs to push a patch, I’ll be happy to coordinate for them.” Interestingly, others in the crypto community have commended Solana Foundation’s proactiveness in fixing the issue immediately after it discovered it, while one user shared a link to news of Bitcoin developers secretly fixing a bug. Cryptopolitan Academy: Tired of market swings? Learn how DeFi can help you build steady passive income. Register Now

A Dubai-based investment firm just dumped $8.8 billion into the Maldives to build a massive crypto-focused financial hub, more money than the entire country’s GDP. The deal, announced this week, comes from MBS Global Investments, a family office that says it manages around $14 billion in assets. The five-year project will be built in the capital, Malé, and aims to pull the island nation out of a growing debt crisis. The Maldives finance minister Moosa Zameer reportedly told the Financial Times that the country needs to “take the leap” and move away from its dependence on tourism and fisheries. He said the country’s biggest problem is debt payments due within the next two years. “It’s something we see as a potential contributor to bring us out of certain difficulties that we are in,” Zameer said about the crypto investment. MBS Global Investments officially signed a joint venture agreement with the Maldives government on Sunday. The plan is to build the Maldives International Financial Centre, which will cover 830,000 square meters, house 6,500 residents, and create 16,000 jobs. It will serve as a crypto financial zone aiming to triple the Maldives’ GDP within four years, and generate over $1 billion in revenue by the fifth year, according to the masterplan. MBS chief executive Nadeem Hussain confirmed that commitments worth between $4 billion and $5 billion have already been secured. “We appreciated right from the offset what was involved in terms of funding and we’ve made the necessary alliances and brought in the necessary partners to ensure we have that,” Hussain said. “It is a large sum of money.” The office is backed by Sheikh Nayef bin Eid Al Thani, a Qatari national, who will tap into a network of family offices and wealthy individuals to raise the rest of the funds. Hussain said the firm plans to use a mix of equity and debt to finance the buildout of the crypto hub. This announcement comes just months after India gave the Maldives a $760 million bailout to help prevent a default. But the numbers are still ugly. Moody’s Ratings flagged major liquidity problems in December, pointing to external debt payments of around $600 million to $700 million due this year, and another $1 billion in 2026, including a $500 million sukuk, a debt instrument compliant with Islamic finance. Zameer said that both India and China have been important “development partners,” but this new deal with MBS is different. “With MBS we are getting into business, it’s going to be a business which is totally different from the traditional models of borrowings that we do,” he said. The country is now banking on its political stability, location, and access to major markets like India and the Gulf as advantages. Cryptopolitan Academy: Coming Soon - A New Way to Earn Passive Income with DeFi in 2025. Learn More

A social engineering scam has resulted in the loss of over $330 million in BTC from an elderly investor based in the United States. The stolen amount, totaling 3,520 BTC, was drained from a wallet that has been mainly inactive since 2017. According to findings shared by blockchain detective ZachXBT on April 28, following the theft, the stolen crypto was moved through at least six centralized exchanges before being converted into Monero (XMR), a privacy-focused digital currency that makes tracking transactions difficult. Further, the large volume of the transaction caused the token’s price to spike by 50% due to limited liquidity. The on-chain investigator later revealed that the victim was an elderly individual living in the United States. The theft took place over the weekend through a highly deceptive social engineering attack that led the target to give up access to their wallet unknowingly. Such scams often use emails or phone calls to fraudulently extract personal or confidential information. The investigation into the theft remains ongoing, with ZachXBT actively tracking the situation. He previously noted that the stolen BTC originated from “interesting” sources, raising suspicions about how the funds were initially acquired. Further, while some X users speculated that North Korea’s Lazarus Group may have been involved, the sleuth has ruled them out. He instead suggested that independent bad actors were the most likely culprits. This isn’t the first major social engineering attack in the crypto space this year. In February, ZachXBT also uncovered a scheme that involved Coinbase users getting their crypto stolen through such exploits. Between December 2024 and January 2025, these individuals collectively lost $65 million in such incidents. Overall, the crypto industry has been heavily hit in the first quarter of 2025. According to a recent report by blockchain security firm PeckShield, over $1.6 billion in digital assets were stolen through hacks during the period. Most of those losses came from the Bybit exploit, which accounted for more than 92% of the total, making the case one of the largest crypto thefts on record. In January, bad actors made off with over $87 million, but February saw a surge in activity, with $1.53 billion stolen. Further incidents added another $126 million in losses, including a $50 million exploit targeting Infini, a $9.5 million hack on zkLend, and an $8.5 million breach at Ionic.

The crypto industry was victim to $92.5 million worth of losses from hacks across 15 separate incidents in April 2025 alone. This marks a 27.3% increase compared to the $72.6 million reported last year in the same month. Compared to previous months in 2025, the figure more than doubled from March’s total of $41.4 million. According to the latest report from the blockchain security platform Immunefi, the year-to-date total stands at $1.74 billion. This is already higher than the full-year total of $1.49 billion in 2024, which was previously considered the worst hit year in crypto-related hacks. Further, the survey highlighted that the figure represents a fourfold increase from the $420 million recorded during the same period last year. Most of April’s setbacks came from just two incidents; blockchain payments platform UPCX suffered the largest single hit, losing $70.0 million, while decentralized exchange KiloEx followed with $7.5 million in losses. Other affected platforms included Loopscale ($5.8 million), ZKsync ($5.0 million), and Term Labs ($1.5 million). Additional cases were recorded across Bitcoin Mission ($1.3 million), The Roar ($790,000), Impermax ($152,200), Zora ($140,800), and ACB ($84,100). Hacks continue to be the predominant cause of losses as opposed to fraud, with 100% of the attacks being exploits. Notably, no incident recorded in April targeted centralized platforms. The affected players were exclusively from the Decentralized Finance (DeFi) sector. Ethereum and BNB Chain were the most targeted blockchain networks, together accounting for 60% of the total. The former recorded five incidents, representing 33.3% of the total, while the latter followed with four, or 26.7%. Base experienced three incidents (20%), while Arbitrum, Solana, Sonic, and ZKsync each recorded one. Outside of April, the crypto industry has been heavily hit in the first quarter of 2025, with the Bybit hack standing out as the largest. In this incident, bad actors took advantage of a vulnerability in the exchange’s hot wallet infrastructure, executing multiple transactions to steal $1.46 billion. Infini was also targeted , with the attackers making away with $50 million after they manipulated vulnerabilities in its smart contracts. The exploit caused major disruptions, leaving users unable to access their funds for several days. Meanwhile, DeFi lending platform zkLend fell victim to a $9.5 million flash loan attack that drained its liquidity pools. Ionic also experienced an $8.5 million loss after exploiters compromised a private key, gaining unauthorized access to wallets and transferring funds externally.