Happy New Year!

gmgm, the $4 billion wake-up call

While the culture is shifting toward utility, the threats have scaled to a terrifying level. 2025 was the most devastating year on record for digital theft, as nearly four billion dollars in crypto assets were stolen. Over 50% of these losses were caused by state actors such as the North Korean Lazarus group, targeting the OpSec Achilles’ Heel.

Our 2026 security predictions: The AI offensive

In 2026, the battlefront is moving from the code to the user.

• AI-Enhanced Social Engineering: Attackers are using LLMs to generate voice clones and hyper-personalized phishing campaigns.

• The “Vibe Coding” Debt: AI assistants allow for rapid shipping, but “vibe coding” increases the attack surface. Also, it is more susceptible to introducing outdated, vulnerable dependencies. We expect 2026 to be the year of the AI-driven supply-chain attack.

Don’t get rekt: Invest in Operational Security and build a security-first culture

We offer an Operational Security course for Web3 teams that addresses the most critical security threats in the ecosystem, emphasizing quality over quantity with real-world examples and actionable takeaways. The training starts at $5000 for a full team.

We are here to fight those trends with our 2026 Security Strategy Sessions

Meet our senior team to harden your defenses.

• Buidl Lisbon | Jan 7–8 | Focus: Personal Security

• Consensus HK | Feb 10–12 | Focus: Institutional Scaling

• EthCC[9] Cannes | Mar 30–Apr 2 | Focus: ZK-Primitives & Privacy

• Paris Blockchain Week | Apr 15–16 | Focus: Compliance & RWA

• Consensus Miami | May 5–7 | Focus: State-Sponsored Defense

• Devcon 8 Mumbai | Nov 3–6 | Focus: Securing the Next Billion

Want to partner for an event? Write to us at info@oaksecurity.io

We’re hiring: ZK auditors

We are looking for elite ZK Researchers to help us build the privacy primitives that will define the next decade of finance. If you live at the intersection of math and security, [Apply here].