{"id":468585,"date":"2025-03-06T19:31:58","date_gmt":"2025-03-06T19:31:58","guid":{"rendered":"https:\/\/cryptoslate.com\/?p=468585"},"modified":"2025-12-13T00:59:50","modified_gmt":"2025-12-13T00:59:50","slug":"safes-internal-investigation-reveals-developers-laptop-breach-led-to-bybit-hack","status":"publish","type":"post","link":"https:\/\/cryptoslate.com\/safes-internal-investigation-reveals-developers-laptop-breach-led-to-bybit-hack\/","title":{"rendered":"Safe’s internal investigation reveals developer’s laptop breach led to Bybit hack"},"content":{"rendered":"

Safe<\/a> published a<\/span> preliminary report<\/a><\/strong> on Mar. 6 attributing the breach that led to the Bybit<\/a> hack to a compromised developer laptop. The vulnerability resulted in the injection of malware, which allowed the hack.<\/span><\/p>\n

The perpetrators circumvented multi-factor authentication (MFA) by exploiting active Amazon<\/a> Web Services (AWS) tokens, enabling unauthorized access.<\/span><\/p>\n

This allowed hackers to modify Bybit\u2019s Safe multi-signature wallet interface, changing the address to which the exchange was supposed to send roughly $1.5 billion worth of Ethereum (ETH<\/a>), resulting in the largest hack in history.<\/span><\/p>\n

Compromise of developer workstation<\/strong><\/h2>\n

The breach originated from a compromised macOS workstation belonging to a Safe developer, referred to in the report as \u201cDeveloper1.\u201d<\/span><\/p>\n

On Feb. 4, a contaminated Docker project communicated with a malicious domain named \u201cgetstockprice[.]com,\u201d suggesting social engineering tactics. Developer 1 added files from the compromised Docker project, compromising their laptop.<\/span><\/p>\n

The domain was registered via Namecheap on Feb. 2. SlowMist later identified getstockprice[.]info, a domain registered on Jan. 7, as a known indicator of compromise (IOC) attributed to the Democratic People's Republic of Korea (DPRK).\u00a0<\/span><\/p>\n

Attackers accessed Developer 1\u2019s AWS account using a User-Agent string titled \u201cdistrib#kali.2024.\u201d Cybersecurity firm Mandiant, tracking UNC4899, noted that this identifier corresponds to Kali Linux usage, a toolset commonly used by offensive security practitioners.\u00a0<\/span><\/p>\n

Additionally, the report revealed that the attackers used ExpressVPN to mask their origins while conducting operations. It also<\/span>\u00a0highlighted that the attack resembles previous incidents involving UNC4899, a threat actor associated with TraderTraitor, a criminal collective allegedly tied to DPRK.\u00a0<\/span><\/p>\n

In a prior case from September 2024, UNC4899 leveraged Telegram to manipulate a crypto exchange developer into troubleshooting a Docker project, deploying PLOTTWIST, a second-stage macOS malware that enabled persistent access.<\/span><\/p>\n

Exploitation of AWS security controls<\/strong><\/h2>\n

Safe\u2019s AWS configuration required MFA re-authentication for Security Token Service (STS) sessions every 12 hours. Attackers attempted but failed to register their own MFA device.\u00a0<\/span><\/p>\n

To bypass this restriction, they hijacked active AWS user session tokens through malware planted on Developer1\u2019s workstation. This allowed unauthorized access while AWS sessions remained active.<\/span><\/p>\n

Mandiant identified three additional UNC4899-linked domains used in the Safe attack. These domains, also registered via Namecheap, appeared in AWS network logs and Developer1\u2019s workstation logs, indicating broader infrastructure exploitation.<\/span><\/p>\n

Safe said it has implemented significant security reinforcements following the breach. The team has restructured infrastructure and bolstered security far beyond pre-incident levels. Despite the attack, Safe\u2019s smart contracts remain unaffected.<\/span><\/p>\n

Safe\u2019s security program included measures such as restricting privileged infrastructure access to a few developers, enforcing separation between development source code and infrastructure management, and requiring multiple peer reviews before production changes.<\/span><\/p>\n

Moreover, Safe vowed to maintain monitoring systems to detect external threats, conduct independent security audits, and utilize third-party services to identify malicious transactions.<\/span><\/p>\n","protected":false},"excerpt":{"rendered":"

Safe published a preliminary report on Mar. 6 attributing the breach that led to the Bybit hack to a compromised developer laptop. The vulnerability resulted in the injection of malware, which allowed the hack. The perpetrators circumvented multi-factor authentication (MFA) by exploiting active Amazon Web Services (AWS) tokens, enabling unauthorized access. This allowed hackers to […]<\/p>\n","protected":false},"author":1511,"featured_media":468586,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1,39,77968,16041],"tags":[],"post_folder":[],"acf":[],"yoast_head":"\nSafe's internal investigation reveals developer's laptop breach led to Bybit hack<\/title>\n<meta name=\"description\" content=\"The developer's macOS was infected, allowing unauthorized access to Safe's AWS repository.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/cryptoslate.com\/safes-internal-investigation-reveals-developers-laptop-breach-led-to-bybit-hack\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Safe's internal investigation reveals developer's laptop breach led to Bybit hack\" \/>\n<meta property=\"og:description\" content=\"The developer's macOS was infected, allowing unauthorized access to Safe's AWS repository.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/cryptoslate.com\/safes-internal-investigation-reveals-developers-laptop-breach-led-to-bybit-hack\/\" \/>\n<meta property=\"og:site_name\" content=\"CryptoSlate\" \/>\n<meta property=\"article:published_time\" content=\"2025-03-06T19:31:58+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2025-12-13T00:59:50+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/cryptoslate.com\/wp-content\/uploads\/2025\/03\/hack-bybit.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1200\" \/>\n\t<meta property=\"og:image:height\" content=\"630\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Gino Matos\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@cryptoslate\" \/>\n<meta name=\"twitter:site\" content=\"@cryptoslate\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Gino Matos\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"3 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"NewsArticle\",\"@id\":\"https:\/\/cryptoslate.com\/safes-internal-investigation-reveals-developers-laptop-breach-led-to-bybit-hack\/#article\",\"isPartOf\":{\"@id\":\"https:\/\/cryptoslate.com\/safes-internal-investigation-reveals-developers-laptop-breach-led-to-bybit-hack\/\"},\"author\":{\"@type\":\"Person\",\"@id\":\"https:\/\/cryptoslate.com\/author\/gino-matos\/#person\",\"name\":\"Gino Matos\",\"url\":\"https:\/\/cryptoslate.com\/author\/gino-matos\/\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/cryptoslate.com\/author\/gino-matos\/\"},\"image\":{\"@type\":\"ImageObject\",\"@id\":\"https:\/\/cryptoslate.com\/author\/gino-matos\/#authorimage\",\"url\":\"https:\/\/cryptoslate.com\/wp-content\/uploads\/2025\/12\/profile-photo-gino-300x300.jpg\",\"contentUrl\":\"https:\/\/cryptoslate.com\/wp-content\/uploads\/2025\/12\/profile-photo-gino-300x300.jpg\",\"caption\":\"Gino Matos\"},\"jobTitle\":\"Reporter\",\"description\":\"Gino Matos is a seasoned crypto journalist and law graduate covering Brazil\u2019s blockchain ecosystem and DeFi developments.\",\"worksFor\":{\"@id\":\"https:\/\/cryptoslate.com\/#organization\"},\"sameAs\":[\"https:\/\/x.com\/pelicamatos\",\"https:\/\/www.linkedin.com\/in\/ginomatos\",\"https:\/\/muckrack.com\/gino-matos\"]},\"headline\":\"Safe’s internal investigation reveals developer’s laptop breach led to Bybit hack\",\"datePublished\":\"2025-03-06T19:31:58+00:00\",\"dateModified\":\"2025-12-13T00:59:50+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/cryptoslate.com\/safes-internal-investigation-reveals-developers-laptop-breach-led-to-bybit-hack\/\"},\"wordCount\":468,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/cryptoslate.com\/#organization\"},\"articleSection\":[\"Crypto\",\"Exchanges\",\"Featured\",\"Hacks\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/cryptoslate.com\/safes-internal-investigation-reveals-developers-laptop-breach-led-to-bybit-hack\/#respond\"]}],\"copyrightYear\":\"2025\",\"copyrightHolder\":{\"@id\":\"https:\/\/cryptoslate.com\/#organization\"}},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/cryptoslate.com\/safes-internal-investigation-reveals-developers-laptop-breach-led-to-bybit-hack\/\",\"url\":\"https:\/\/cryptoslate.com\/safes-internal-investigation-reveals-developers-laptop-breach-led-to-bybit-hack\/\",\"name\":\"Safe's internal investigation reveals developer's laptop breach led to Bybit hack\",\"isPartOf\":{\"@id\":\"https:\/\/cryptoslate.com\/#website\"},\"datePublished\":\"2025-03-06T19:31:58+00:00\",\"dateModified\":\"2025-12-13T00:59:50+00:00\",\"description\":\"The developer's macOS was infected, allowing unauthorized access to Safe's AWS repository.\",\"breadcrumb\":{\"@id\":\"https:\/\/cryptoslate.com\/safes-internal-investigation-reveals-developers-laptop-breach-led-to-bybit-hack\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/cryptoslate.com\/safes-internal-investigation-reveals-developers-laptop-breach-led-to-bybit-hack\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/cryptoslate.com\/safes-internal-investigation-reveals-developers-laptop-breach-led-to-bybit-hack\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/cryptoslate.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Safe’s internal investigation reveals developer’s laptop breach led to Bybit hack\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/cryptoslate.com\/#website\",\"url\":\"https:\/\/cryptoslate.com\/\",\"name\":\"CryptoSlate\",\"description\":\"Cryptocurrency News and Real-time Coin Data\",\"publisher\":{\"@id\":\"https:\/\/cryptoslate.com\/#organization\"},\"inLanguage\":\"en-US\"},{\"@type\":\"NewsMediaOrganization\",\"@id\":\"https:\/\/cryptoslate.com\/#organization\",\"name\":\"CryptoSlate\",\"url\":\"https:\/\/cryptoslate.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/cryptoslate.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/cryptoslate.com\/wp-content\/uploads\/2018\/05\/c-logo.jpg\",\"contentUrl\":\"https:\/\/cryptoslate.com\/wp-content\/uploads\/2018\/05\/c-logo.jpg\",\"width\":1000,\"height\":1000,\"caption\":\"CryptoSlate\"},\"image\":{\"@id\":\"https:\/\/cryptoslate.com\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/twitter.com\/cryptoslate\",\"https:\/\/www.instagram.com\/cryptoslate\",\"https:\/\/www.linkedin.com\/company\/cryptoslate\",\"https:\/\/www.youtube.com\/c\/cryptoslate\",\"https:\/\/cryptoslate.substack.com\",\"https:\/\/t.me\/cryptoslatenews\",\"https:\/\/www.crunchbase.com\/organization\/cryptoslate\",\"https:\/\/iq.wiki\/wiki\/cryptoslate\",\"https:\/\/news.google.com\/publications\/CAAqKggKIiRDQklTRlFnTWFoRUtEMk55ZVhCMGIzTnNZWFJsTG1OdmJTZ0FQAQ\",\"https:\/\/muckrack.com\/media-outlet\/cryptoslate\",\"https:\/\/www.tiktok.com\/@cryptoslatenews\"],\"publishingPrinciples\":\"https:\/\/cryptoslate.com\/editorial-policy\/#editorial-principles\",\"ownershipFundingInfo\":\"https:\/\/cryptoslate.com\/disclaimers\/how-cryptoslate-makes-and-spends-money\/\",\"correctionsPolicy\":\"https:\/\/cryptoslate.com\/editorial-policy\/#corrections-feedback\",\"ethicsPolicy\":\"https:\/\/cryptoslate.com\/editorial-policy\/#editorial-principles\",\"foundingDate\":\"2017-08-04\",\"founder\":[{\"@type\":\"Person\",\"name\":\"Nate Whitehill\"},{\"@type\":\"Person\",\"name\":\"Matthew Blancarte\"}],\"contactPoint\":[{\"@type\":\"ContactPoint\",\"contactType\":\"customer support\",\"url\":\"https:\/\/cryptoslate.com\/contact\/\",\"availableLanguage\":\"en-US\"},{\"@type\":\"ContactPoint\",\"contactType\":\"sales\",\"url\":\"https:\/\/cryptoslate.com\/advertising\/\",\"availableLanguage\":\"en-US\"},{\"@type\":\"ContactPoint\",\"contactType\":\"newsroom\",\"url\":\"https:\/\/cryptoslate.com\/editorial-policy\/#corrections-feedback\",\"email\":\"tips@cryptoslate.com\",\"availableLanguage\":\"en-US\"}],\"masthead\":\"https:\/\/cryptoslate.com\/about\/#masthead\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/cryptoslate.com\/#\/schema\/person\/f03754c9e579651795caf77a2b00c49c\",\"name\":\"Gino Matos\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/cryptoslate.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/cryptoslate.com\/wp-content\/uploads\/2025\/12\/profile-photo-gino-150x150.jpg\",\"contentUrl\":\"https:\/\/cryptoslate.com\/wp-content\/uploads\/2025\/12\/profile-photo-gino-150x150.jpg\",\"caption\":\"Gino Matos\"},\"description\":\"Gino Matos is a law school graduate and a seasoned journalist with six years of experience in the crypto industry. His expertise primarily focuses on the Brazilian blockchain ecosystem and developments in decentralized finance (DeFi).\",\"url\":\"https:\/\/cryptoslate.com\/author\/gino-matos\/\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Safe's internal investigation reveals developer's laptop breach led to Bybit hack","description":"The developer's macOS was infected, allowing unauthorized access to Safe's AWS repository.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/cryptoslate.com\/safes-internal-investigation-reveals-developers-laptop-breach-led-to-bybit-hack\/","og_locale":"en_US","og_type":"article","og_title":"Safe's internal investigation reveals developer's laptop breach led to Bybit hack","og_description":"The developer's macOS was infected, allowing unauthorized access to Safe's AWS repository.","og_url":"https:\/\/cryptoslate.com\/safes-internal-investigation-reveals-developers-laptop-breach-led-to-bybit-hack\/","og_site_name":"CryptoSlate","article_published_time":"2025-03-06T19:31:58+00:00","article_modified_time":"2025-12-13T00:59:50+00:00","og_image":[{"width":1200,"height":630,"url":"https:\/\/cryptoslate.com\/wp-content\/uploads\/2025\/03\/hack-bybit.jpg","type":"image\/jpeg"}],"author":"Gino Matos","twitter_card":"summary_large_image","twitter_creator":"@cryptoslate","twitter_site":"@cryptoslate","twitter_misc":{"Written by":"Gino Matos","Est. reading time":"3 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"NewsArticle","@id":"https:\/\/cryptoslate.com\/safes-internal-investigation-reveals-developers-laptop-breach-led-to-bybit-hack\/#article","isPartOf":{"@id":"https:\/\/cryptoslate.com\/safes-internal-investigation-reveals-developers-laptop-breach-led-to-bybit-hack\/"},"author":{"@type":"Person","@id":"https:\/\/cryptoslate.com\/author\/gino-matos\/#person","name":"Gino Matos","url":"https:\/\/cryptoslate.com\/author\/gino-matos\/","mainEntityOfPage":{"@id":"https:\/\/cryptoslate.com\/author\/gino-matos\/"},"image":{"@type":"ImageObject","@id":"https:\/\/cryptoslate.com\/author\/gino-matos\/#authorimage","url":"https:\/\/cryptoslate.com\/wp-content\/uploads\/2025\/12\/profile-photo-gino-300x300.jpg","contentUrl":"https:\/\/cryptoslate.com\/wp-content\/uploads\/2025\/12\/profile-photo-gino-300x300.jpg","caption":"Gino Matos"},"jobTitle":"Reporter","description":"Gino Matos is a seasoned crypto journalist and law graduate covering Brazil\u2019s blockchain ecosystem and DeFi developments.","worksFor":{"@id":"https:\/\/cryptoslate.com\/#organization"},"sameAs":["https:\/\/x.com\/pelicamatos","https:\/\/www.linkedin.com\/in\/ginomatos","https:\/\/muckrack.com\/gino-matos"]},"headline":"Safe’s internal investigation reveals developer’s laptop breach led to Bybit hack","datePublished":"2025-03-06T19:31:58+00:00","dateModified":"2025-12-13T00:59:50+00:00","mainEntityOfPage":{"@id":"https:\/\/cryptoslate.com\/safes-internal-investigation-reveals-developers-laptop-breach-led-to-bybit-hack\/"},"wordCount":468,"commentCount":0,"publisher":{"@id":"https:\/\/cryptoslate.com\/#organization"},"articleSection":["Crypto","Exchanges","Featured","Hacks"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/cryptoslate.com\/safes-internal-investigation-reveals-developers-laptop-breach-led-to-bybit-hack\/#respond"]}],"copyrightYear":"2025","copyrightHolder":{"@id":"https:\/\/cryptoslate.com\/#organization"}},{"@type":"WebPage","@id":"https:\/\/cryptoslate.com\/safes-internal-investigation-reveals-developers-laptop-breach-led-to-bybit-hack\/","url":"https:\/\/cryptoslate.com\/safes-internal-investigation-reveals-developers-laptop-breach-led-to-bybit-hack\/","name":"Safe's internal investigation reveals developer's laptop breach led to Bybit hack","isPartOf":{"@id":"https:\/\/cryptoslate.com\/#website"},"datePublished":"2025-03-06T19:31:58+00:00","dateModified":"2025-12-13T00:59:50+00:00","description":"The developer's macOS was infected, allowing unauthorized access to Safe's AWS repository.","breadcrumb":{"@id":"https:\/\/cryptoslate.com\/safes-internal-investigation-reveals-developers-laptop-breach-led-to-bybit-hack\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/cryptoslate.com\/safes-internal-investigation-reveals-developers-laptop-breach-led-to-bybit-hack\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/cryptoslate.com\/safes-internal-investigation-reveals-developers-laptop-breach-led-to-bybit-hack\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/cryptoslate.com\/"},{"@type":"ListItem","position":2,"name":"Safe’s internal investigation reveals developer’s laptop breach led to Bybit hack"}]},{"@type":"WebSite","@id":"https:\/\/cryptoslate.com\/#website","url":"https:\/\/cryptoslate.com\/","name":"CryptoSlate","description":"Cryptocurrency News and Real-time Coin Data","publisher":{"@id":"https:\/\/cryptoslate.com\/#organization"},"inLanguage":"en-US"},{"@type":"NewsMediaOrganization","@id":"https:\/\/cryptoslate.com\/#organization","name":"CryptoSlate","url":"https:\/\/cryptoslate.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/cryptoslate.com\/#\/schema\/logo\/image\/","url":"https:\/\/cryptoslate.com\/wp-content\/uploads\/2018\/05\/c-logo.jpg","contentUrl":"https:\/\/cryptoslate.com\/wp-content\/uploads\/2018\/05\/c-logo.jpg","width":1000,"height":1000,"caption":"CryptoSlate"},"image":{"@id":"https:\/\/cryptoslate.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/twitter.com\/cryptoslate","https:\/\/www.instagram.com\/cryptoslate","https:\/\/www.linkedin.com\/company\/cryptoslate","https:\/\/www.youtube.com\/c\/cryptoslate","https:\/\/cryptoslate.substack.com","https:\/\/t.me\/cryptoslatenews","https:\/\/www.crunchbase.com\/organization\/cryptoslate","https:\/\/iq.wiki\/wiki\/cryptoslate","https:\/\/news.google.com\/publications\/CAAqKggKIiRDQklTRlFnTWFoRUtEMk55ZVhCMGIzTnNZWFJsTG1OdmJTZ0FQAQ","https:\/\/muckrack.com\/media-outlet\/cryptoslate","https:\/\/www.tiktok.com\/@cryptoslatenews"],"publishingPrinciples":"https:\/\/cryptoslate.com\/editorial-policy\/#editorial-principles","ownershipFundingInfo":"https:\/\/cryptoslate.com\/disclaimers\/how-cryptoslate-makes-and-spends-money\/","correctionsPolicy":"https:\/\/cryptoslate.com\/editorial-policy\/#corrections-feedback","ethicsPolicy":"https:\/\/cryptoslate.com\/editorial-policy\/#editorial-principles","foundingDate":"2017-08-04","founder":[{"@type":"Person","name":"Nate Whitehill"},{"@type":"Person","name":"Matthew Blancarte"}],"contactPoint":[{"@type":"ContactPoint","contactType":"customer support","url":"https:\/\/cryptoslate.com\/contact\/","availableLanguage":"en-US"},{"@type":"ContactPoint","contactType":"sales","url":"https:\/\/cryptoslate.com\/advertising\/","availableLanguage":"en-US"},{"@type":"ContactPoint","contactType":"newsroom","url":"https:\/\/cryptoslate.com\/editorial-policy\/#corrections-feedback","email":"tips@cryptoslate.com","availableLanguage":"en-US"}],"masthead":"https:\/\/cryptoslate.com\/about\/#masthead"},{"@type":"Person","@id":"https:\/\/cryptoslate.com\/#\/schema\/person\/f03754c9e579651795caf77a2b00c49c","name":"Gino Matos","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/cryptoslate.com\/#\/schema\/person\/image\/","url":"https:\/\/cryptoslate.com\/wp-content\/uploads\/2025\/12\/profile-photo-gino-150x150.jpg","contentUrl":"https:\/\/cryptoslate.com\/wp-content\/uploads\/2025\/12\/profile-photo-gino-150x150.jpg","caption":"Gino Matos"},"description":"Gino Matos is a law school graduate and a seasoned journalist with six years of experience in the crypto industry. His expertise primarily focuses on the Brazilian blockchain ecosystem and developments in decentralized finance (DeFi).","url":"https:\/\/cryptoslate.com\/author\/gino-matos\/"}]}},"_links":{"self":[{"href":"https:\/\/cryptoslate.com\/wp-json\/wp\/v2\/posts\/468585"}],"collection":[{"href":"https:\/\/cryptoslate.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cryptoslate.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cryptoslate.com\/wp-json\/wp\/v2\/users\/1511"}],"replies":[{"embeddable":true,"href":"https:\/\/cryptoslate.com\/wp-json\/wp\/v2\/comments?post=468585"}],"version-history":[{"count":3,"href":"https:\/\/cryptoslate.com\/wp-json\/wp\/v2\/posts\/468585\/revisions"}],"predecessor-version":[{"id":468612,"href":"https:\/\/cryptoslate.com\/wp-json\/wp\/v2\/posts\/468585\/revisions\/468612"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cryptoslate.com\/wp-json\/wp\/v2\/media\/468586"}],"wp:attachment":[{"href":"https:\/\/cryptoslate.com\/wp-json\/wp\/v2\/media?parent=468585"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cryptoslate.com\/wp-json\/wp\/v2\/categories?post=468585"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cryptoslate.com\/wp-json\/wp\/v2\/tags?post=468585"},{"taxonomy":"post_folder","embeddable":true,"href":"https:\/\/cryptoslate.com\/wp-json\/wp\/v2\/post_folder?post=468585"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}