Citigroup released a report stating that bullish momentum in the U.S. stock market is weakening, with the normalization levels of positions in the S&P 500 Index and Russell 2000 Index continuing to decline, despite some new risk capital inflows into the market. In contrast, the Nasdaq Index positions have shown greater resilience, with bullish levels remaining high. Citi noted that this trend is also reflected in the European market, where European stocks are influenced by political uncertainty in France and expectations surrounding European Central Bank (ECB) policies. The ECB is expected to keep interest rates unchanged for the second consecutive time this Thursday. Additionally, recent weak U.S. labor market data has further heightened expectations that the Federal Reserve may cut interest rates.

OKX-BTC/USDT is currently trading at $110936, a decrease of 0.14% in 5 minutes. Please be aware of market fluctuations.

[Employment Data Revision May Drive Fed Rate Cut Expectations] Michael James, Managing Director at Rosenblatt Securities, stated that the revision of U.S. employment data shows a significant decline in labor force growth, which could prompt the Federal Reserve to initiate a rate-cutting cycle this month. Market expectations around this have driven a rebound in U.S. stock market performance.

[Single Entity Suspected of Exploiting $170 Million in Tokens from MYX Airdrop via Sybil Attack] Blockchain analytics platform Bubblemaps posted on X, pointing out that a single entity is suspected of exploiting $170 million worth of tokens from the MYX airdrop through a Sybil attack. Bubblemaps tracked approximately 100 addresses whose on-chain activities were completely identical, showing a high degree of coordination. According to the analysis, these addresses received funding via OKX one month prior to the airdrop, with all transactions concentrated around 6:50 AM on April 19. Each address received a similar amount of BNB. Subsequently, these addresses claimed approximately 9.8 million MYX tokens, accounting for 1% of the total token supply. Most of the addresses initiated claims simultaneously around 5:30 AM on May 7, and prior to this, there was no on-chain activity from these addresses, indicating that their behavior was not random. Bubblemaps stated that this could be the largest Sybil attack on an airdrop in history.

[DuckDB NPM Account Compromised, Malicious Versions Released] SlowMist Technology CISO stated that the DuckDB NPM account was compromised, and malicious versions of duckdb, duckdb-wasm, etc., released early this morning are consistent with the wallet-stealing software from yesterday's supply chain attack. Users are advised to be vigilant and take precautions against risks.