Core Viewpoint - The company has significant expertise in blockchain security and is actively involved in the development of standards and solutions for Web3.0 applications, including RWA and stablecoins [1] Group 1: Blockchain Security Expertise - The company has years of technical accumulation in the blockchain security field [1] - It led the formulation of GM/T0111-2021, the first national standard for blockchain cryptographic application technology in China [1] - The company has developed the first batch of blockchain cryptographic machines that have passed national commercial encryption certification and are applied in multiple blockchain infrastructure projects in China [1] Group 2: Product and Solution Development - The company offers FIPSHSM certified services for secure digital asset custody and has hardware wallet products used in cryptocurrency exchanges [1] - It is actively laying out products and solutions for Web3.0 application scenarios, focusing on RWA data on-chain, cold and hot wallets, and asset custody [1] Group 3: Industry Participation - The company serves as the vice-chairman unit of the Hong Kong Web3.0 Standardization Association, participating in the formulation of standards and technical specifications [1]

Core Viewpoint - The company, Sanwei Xinan (688489.SH), has significant expertise in blockchain security and is actively involved in the development of Web3.0 applications, including RWA and stablecoins, leveraging its years of technological accumulation in the field [1] Group 1: Blockchain Security Expertise - The company has developed the first domestic blockchain cryptography industry standard, GM/T 0111-2021, which outlines technical requirements for blockchain cryptography applications [1] - It has produced the first batch of blockchain cryptographic machines that have passed national commercial encryption certification, which are now applied in various blockchain infrastructure projects in China [1] - The company offers FIPS HSM certified solutions for secure digital asset custody, and its hardware wallet products are utilized in cryptocurrency exchanges [1] Group 2: Involvement in Web3.0 Standards - As a vice-chairman unit of the Hong Kong Web3.0 Standardization Association, the company actively participates in the formulation of standards and technical specifications [1] - The company is focusing on the application scenarios of stablecoins and RWA, particularly in areas such as on-chain data for RWA, cold and hot wallets, and asset custody, providing products or solutions [1]

Core Viewpoint - The security of blockchain RWA (Real World Assets) systems is essential for protecting user assets and maintaining market trust, requiring a multi-layered defense system across five dimensions: smart contracts, underlying architecture, data interaction, compliance risk control, and operational management [1] Group 1: Smart Contract Security - Smart contracts serve as the "central nervous system" of RWA systems, and any vulnerabilities can lead to asset theft or rule failures [3] - Common risks include reentrancy attacks, overflow/underflow issues, loss of permissions, and oracle manipulation [5] - Code audits by third-party professionals and adherence to security development standards are crucial for mitigating risks [5] Group 2: Underlying Architecture Security - The choice and configuration of blockchain, along with network communication encryption, are vital for protecting the underlying architecture [4] Group 3: Data Security - Balancing on-chain data transparency with privacy is essential, utilizing techniques like data hashing and off-chain storage to protect sensitive information [4] - Redundant data storage and disaster recovery strategies are necessary to prevent data loss due to single points of failure [8] Group 4: Compliance and Risk Control - Establishing a legal compliance framework and business risk control mechanisms is critical for ensuring the system's integrity [7] - User protection clauses and monitoring for anti-money laundering (AML) and fraud are necessary to safeguard user interests [8] Group 5: Operational Security Management - Key and permission management, emergency response, and personnel security awareness are essential components of operational security [7] - A comprehensive security system must integrate technology, compliance, and operational practices to ensure user asset safety and market trust [7]

Core Viewpoint - Qianxin Technology (688561.SH) has recently won a bid for the IT infrastructure security assessment project for the Hong Kong Stock Exchange, focusing on attack and defense capabilities as well as threat intelligence capabilities [1] Group 1: Company Developments - The company has provided security products and services to regulatory agencies and major domestic stock exchanges in the financial sector [1] - Qianxin's business covers critical areas such as blockchain security, digital currency security, and cross-border payment security [1] - The company possesses innovative solutions and extensive successful practices in the field of blockchain security [1] Group 2: Future Opportunities - Qianxin will continue to focus on and actively seize development opportunities in the stablecoin and RWA digital asset security sectors [1]

Core Insights - The Web3.0 industry faced a significant increase in security incidents in Q1 2025, with a total of 197 on-chain security events resulting in approximately $1.669 billion in losses, marking a 303.38% increase compared to the previous quarter [1][9][20] - Wallet theft emerged as the primary threat, accounting for nearly 87% of total losses, with just three wallet-related incidents causing around $1.451 billion in damages [1][9][21] - Ethereum was identified as the most affected blockchain, with 98 incidents leading to losses of approximately $1.541 billion, driven by its extensive use in DeFi and smart contracts [1][9][23] Incident Breakdown - The Bybit exchange experienced the largest security breach in Web3.0 history on February 21, 2025, with approximately $1.45 billion stolen due to a sophisticated attack that manipulated transaction approvals [2][25] - Other notable incidents included Phemex, which lost about $71.7 million due to private key leakage, and 0xInfini, which suffered a loss of approximately $49.5 million due to an administrator privilege vulnerability [2][26][27] - Phishing attacks were prevalent, with 81 incidents resulting in losses of around $1.579 million, highlighting the need for improved user security education [3][21] Recovery and Regulatory Actions - The industry struggled with fund recovery, managing to recover only $6.39 million, which is 0.38% of total losses, significantly lower than the previous quarter's recovery rate of 42.09% [3][18][21] - Regulatory developments included the establishment of a Strategic Cryptocurrency Reserve by the U.S. government and the formation of a special task force by the SEC to provide clearer regulatory guidance [3][20][21] Security Challenges and Innovations - The Web3.0 sector is grappling with complex security challenges as attackers employ advanced techniques, including social engineering and AI [4][23] - Innovations such as zero-knowledge proofs, on-chain evidence tools, and multi-party computation wallets are being explored to enhance security measures [4][23]