PA Daily News | Binance Alpha to list Block Street (BSB); Bitcoin spot ETF saw net inflows of $458 million yesterday.

Today's top news highlights:

Amazon's multiple data centers in the Middle East were attacked, causing business disruptions.

Binance will delist four spot trading pairs, including CHZ/BNB and ENA/BRL.

Binance Alpha will list Block Street (BSB).

Reports indicate that Walsh's balance sheet reduction plan faces resistance and will only proceed slowly.

DWF Labs co-founder: The company accumulated a large number of tokens last month in anticipation of a market rebound.

Bitcoin spot ETFs saw a total net inflow of $458 million yesterday, with none of the twelve ETFs experiencing net outflows.

PA Data: Polymarket's Khamenei betting platform has over 500 profitable addresses, but these are actually controlled by a very small number of entities.

The largest ETH long whale on Hyperliquid opened a long position of 550 BTC today, bringing its total position value to $277 million.

Regulation & Macro

Iran says it will shoot down ships attempting to pass through the Strait of Hormuz

Iranian Islamic Revolutionary Guard Corps commander Jabari stated that any ship attempting to pass through the Strait of Hormuz would be shot down, and that Iran would not allow a single drop of oil to flow out of the region. However, according to Fox News, a senior U.S. military officer stated that Iran has not patrolled the Strait of Hormuz, nor has it implemented any blockade measures. Currently, there is no evidence of mines in the area, although merchant ships are navigating cautiously.

Amazon's multiple data centers in the Middle East were attacked, causing business disruptions.

According to CCTV News, on March 2 local time, Amazon Web Services said that three of its data centers in the Middle East were attacked by drones, causing serious business disruptions.

In a statement released on its website, the company said that two attacks directly hit its data centers in the UAE, while another facility in Bahrain was affected by a nearby drone explosion. The company did not name the attackers. The company stated, "These attacks caused structural damage, affected power supplies to our infrastructure, and in some cases triggered fire suppression systems, resulting in additional water damage. We are working closely with local authorities and prioritizing employee safety during the recovery process." The company said the damage has affected multiple Amazon services, and given the extent of the physical damage, recovery efforts may "take a considerable amount of time."

Project Updates

Binance will delist four spot trading pairs, including CHZ/BNB and ENA/BRL.

Binance announced that it will delist four spot trading pairs—CHZ/BNB, ENA/BRL, NEIRO/JPY, and RLC/BTC—on March 6, 2026 at 11:00 (UTC+8).

GoPlus: Beware of 26 malware packages released by North Korean hackers that can remotely download and execute Trojans.

The GoPlus Chinese community issued a warning on the X platform stating that North Korean hackers have released a set of 26 malware packages to the npm registry. These packages all include an installation script ("install.js") that executes automatically during package installation, running malicious code located in "vendor/scrypt-js/version.js". This malicious code downloads and executes a Remote Access Trojan (RAT) via a malicious URL, performing actions such as keylogging, clipboard theft, browser credential collection, TruffleHog secret scanning of Git repositories, and SSH key theft. This incident is related to a North Korean hacking activity called "Famous Chollima".

Hackers impersonated venture capitalists and hijacked the QuickLens plugin, using ClickFix technology to steal crypto assets.

Hackers are using the "ClickFix" attack technique to steal cryptocurrency, with the two latest attacks involving impersonating venture capital firms and hijacking browser extensions. Cybersecurity firm Moonlock Lab reported that scammers impersonated fake VCs such as SolidBit, MegaBit, and Lumax Capital, contacting users via LinkedIn with offers of collaborations and then directing them to click on fake Zoom and Google Meet links. After clicking the links, users were redirected to a page with a fake Cloudflare "I'm not a robot" verification box. Clicking this box copied malicious commands to the clipboard and prompted users to open their terminals and paste a purported verification code, thus executing the attack. Moonlock Lab pointed out that this method turns victims into execution mechanisms, bypassing security industry defenses.

Meanwhile, hackers also spread malware by hijacking the Chrome extension QuickLens. This extension allowed users to run Google Lens searches directly in their browsers; after ownership was transferred, the new version contained malicious scripts that could launch ClickFix attacks and steal information. With approximately 7,000 users, the hijacked extension would search encrypted wallet data and mnemonic phrases to steal funds, as well as scrape Gmail inbox contents, YouTube channel data, and login credentials or payment information entered into web forms. The extension has been removed from the Chrome Web Store. ClickFix technology, which has been popular among hackers since last year, forces victims to manually execute malicious payloads and has affected thousands of businesses and industries worldwide.

Binance Alpha will list Block Street (BSB).

Binance Alpha will list Block Street (BSB) on March 4th. Eligible users can claim an airdrop using Binance Alpha Points on the Alpha event page after trading opens on Alpha.

Curve: We are investigating the attack on the sDOLA LlamaLend market; lenders were not affected.

Curve Finance announced on its X platform that it is investigating an attack on the sDOLA LlamaLend market. Preliminary investigations indicate the attack exploited a combination of vulnerabilities: the price oracle features used by sDOLA and the amount of sDOLA existing in the market outside of the collateral. The attacker's gains were relatively small, but this attack highlights the importance of handling vulnerabilities in LlamaLend using specific methods. Borrowers using sDOLA as collateral were liquidated, lenders were unaffected, and sDOLA holders received some returns. The team is further investigating whether other similar existing markets could be affected and ensuring LlamaLend V2 remains secure even when facing vulnerabilities vulnerable to donation attacks across all market sizes.

Opinions & Analysis

Reports indicate that Walsh's balance sheet reduction plan faces resistance and will only proceed slowly.

Analysis: Demand for Bitcoin futures has fallen to its lowest level since 2024.

Warning: A Chrome vulnerability allows malicious extensions to escalate privileges via the Gemini panel. Please upgrade to the patched version immediately.

GoPlus has issued a security alert: a vulnerability in the Chrome browser allows malicious extensions to escalate privileges through the Gemini panel. Please upgrade your Chrome browser to version 143.0.7499.192 or later immediately.

This vulnerability allows malicious extensions to control the Gemini Live panel in the Chrome browser and thereby escalate privileges, enabling them to access the camera and microphone, take screenshots, and access local files without user permission. The vulnerability is identified as CVE-2026-0628. Google patched this vulnerability in early January 2026 in Windows/Mac versions 143.0.7499.192/.193 and Linux version 143.0.7499.192. Please check and upgrade your Chrome version immediately.

VanEck CEO: Bitcoin is "bottoming out," which is a very positive sign of recovery.

ACI founders question the voting results of the "Aave Will Win" proposal.

DWF Labs co-founder: The company accumulated a large number of tokens last month in anticipation of a market rebound.

DWF Labs co-founder Andrei Grachev posted on the X platform that the company accumulated a large number of various tokens last month, including Bitcoin, BNB, and several altcoins. He stated that they are waiting for a market rebound, at which point they will see unprecedented market activity.

Core Scientific plans to sell approximately 2,500 bitcoins in Q1 2026 to support its AI transformation.

Bitcoin mining company Core Scientific stated in its annual report that it expects to sell all of its approximately 2,500 Bitcoin holdings in the first quarter of 2026 to enhance liquidity and fund capital expenditures related to its AI computing hosting expansion. As of December 31, 2025, Core Scientific held 2,537 Bitcoins with a fair value of $222 million, or $101,639 per Bitcoin based on an average price of $101,639 per Bitcoin in 2025. This holding represents a significant increase from 256 Bitcoins at the end of 2024, all from the company's own mining output.

Previously reported, CoreScientific's Q4 revenue fell to $79.8 million due to a decline in Bitcoin mining revenue .

Important data

Bitcoin spot ETFs saw a total net inflow of $458 million yesterday, with none of the twelve ETFs experiencing net outflows.

According to SoSoValue data, Bitcoin spot ETFs saw a total net inflow of $458 million yesterday (March 2nd, Eastern Time). The BlackRock ETF (IBIT) saw the largest single-day net inflow of $263 million, bringing its historical total net inflow to $263 million. The Fidelity ETF (FBTC) followed with a net inflow of $94.7956 million, also bringing its historical total net inflow to $94.7956 million.

As of press time, the total net asset value of Bitcoin spot ETFs was $88.341 billion, with an ETF net asset ratio (market capitalization as a percentage of Bitcoin's total market capitalization) of 6.39%, and a historical cumulative net inflow of $55.258 billion.

Ethereum spot ETFs saw a total net inflow of $38.6912 million yesterday, with none of the nine ETFs experiencing net outflows.

Daily trading volume of WTI crude oil on Hyperliquid surpasses $100 million, with cryptocurrencies accounting for only four of the top ten contracts by trading volume.

According to HyperInsight monitoring, the trading volume of the CL-USDC (WTI crude oil futures mapping contract) trading pair on the Hyperliquid platform has exceeded $100 million in the past 24 hours, with open interest reaching $52.5 million.

Furthermore, among the top ten trading pairs in the current real-time trading volume rankings, cryptocurrencies account for four (BTC, ETH, SOL, HYPE), while commodities (silver, gold, crude oil) and US stocks (S&P 500, Nasdaq 100, Nvidia) each account for three.

A Matrixport-linked whale opened a new long position of 400 BTC with 20x leverage.

PA Data: Polymarket's Khamenei betting platform has over 500 profitable addresses, but these are actually controlled by a very small number of entities.

According to PANews' on-chain cross-comparison analysis, the more than 500 suspicious addresses that profited in the Polymarket Khamenei betting platform are actually a systematic network controlled by a very small number of entities. Analysis of dimensions such as the number of common markets and directional consistency clearly identifies at least three highly correlated address clusters operating in concert. Some of these correlated addresses simultaneously placed bets in as many as 150 derivative betting platforms with astonishingly consistent movements, building a decentralized network through dozens of small bets of tens of dollars each to conceal their fund flows and evade risk control.

Furthermore, based on a comprehensive screening of abnormal data across eight dimensions, the top 15 suspicious addresses alone generated a total profit of up to $900,000 from this gambling platform.

Data: 38% of altcoins are near all-time lows, exceeding market levels after the FTX crash.

Analyst Darkfost, citing CryptoQuant data, stated that as of March 2026, 38% of altcoins were near their all-time lows, higher than the 37.8% after the FTX crash, reflecting the largest drawdown for altcoins in this cycle. Darkfost believes that market liquidity remains fragile and is mainly flowing into more volatile stock or commodity markets. He suggests that when market conditions deteriorate to such extreme levels, it often foreshadows a rebound opportunity, and recommends paying attention to potential bottoming signals.

The largest ETH long whale on Hyperliquid opened a long position of 550 BTC today, bringing its total position value to $277 million.

According to on-chain analyst Ember, as the price of ETH rebounded to near its cost price of $2,000, the "largest long position" holder on Hyperliquid, holding 120,000 ETH, began simultaneously going long on BTC. Today, he established a new long position of 550 BTC (approximately $37.45 million) at a price of $68,267. Currently, he holds a total of 120,000 ETH and 550 BTC long positions, with a total position value of $277 million.

thomasg.eth sold 10,000 ETH in the last half hour to repay its debt on Aave.

The two new wallets received a total of 1,124.57 BTC from BitGo, equivalent to approximately $77.09 million.