TheDinarian
News • Business • Investing & Finance
Tool used in Ledger hack altered file domains since November
thedinarian
December 15, 2023
post photo preview

Since late November, Angel Drainer, the tool used in the Ledger hack, has been leveraging a smart contract to modify static file domains.

Angel Drainer, in essence, is a type of malicious software, or malware, that specializes in draining cryptocurrency assets from wallets. Etherscan data shows that the tool has been used since last month to update five static file domains to redirect users to compromised versions of software or web pages, thereby enabling unauthorized access to their crypto assets. 

Event Background

Since 2022, various phishing gangs with the “Drainer” moniker have been emerging. For example, Pink Drainer obtained Discord Tokens through social engineering techniques for phishing purposes. Venom Drainer, a phishing service provider, tricked users into giving permissions or approvals to steal their assets. Monkey Drainer is a cyber phishing organization that lures victims through fake KOL Twitter accounts and Discord channels, releasing counterfeit NFT-related sites with malicious Mint functions, robbing tens of millions of dollars, check out our states here: Monkey Drainer statistics. Then there’s Inferno Drainer, which specializes in multi-chain scams.

As time progressed, some Drainers have stepped away from the cryptocurrency spotlight. However, two recent incidents have brought a previously low-profile phishing gang — Angel Drainer — to the forefront of public attention.

Event One: Balancer DNS Hijacking Attack

On September 19, 2023, Balancer issued an urgent warning asking users to stop accessing its official website, as its DNS had been hijacked, leading to its interface being compromised by malicious actors. Upon accessing the website’s link, wallets would be subjected to a phishing attack. According to MistTrack analysis, the funding behind the attackers came from the cyber phishing organization Angel Drainer. The current stolen amount from victims stands at a minimum of $350,000.

In other words, the attacker (Angel Drainer) lured users to “Approve” after compromising the Balancer website, and then used “transferFrom” to transfer funds to themselves (Angel Drainer). Based on the intelligence we have gathered, the attacker might have ties with Russian hackers. After analysis, it was discovered that the front-end of app.balancer.fi contained malicious JavaScript code.

Upon users connecting their wallets to the app.balancer.fi site, the malicious script would automatically assess the connected user’s balance and execute a phishing attack.

Event Two: Galxe DNS Hijacking Attack

On October 6, 2023, several community members reported that their assets were stolen after signing and authorizing Web3 credential data on the Galxe platform using their wallets. Subsequently, Galxe’s official team announced that their website was shut down and they were addressing the issue. According to MistTrack’s analysis, there were multiple interactions between the Galxe Hacker’s address and the Angel Drainer’s address, suggesting they might be the same hacker or group.

On October 7, Galxe released a statement indicating that their website had been fully restored. The detailed sequence of the event is as follows: On October 6, an unidentified individual contacted the domain service provider, Dynadot, pretending to be an authorized Galxe member. Using forged documents, this impersonator bypassed security procedures. Subsequently, the imposter gained unauthorized access to the domain account’s DNS. They used this access to redirect users to a fraudulent website where transactions were signed to siphon off their funds. Approximately 1,120 users who interacted with this malicious site were affected, with an estimated theft amounting to $270,000.

Below is an analysis specifically focused on some of the phishing materials and wallet addresses associated with this gang:

Phishing Website and Tactics:

Upon analysis, we found that the gang’s primary method of attack is social engineering targeted at domain service providers. Once they obtain relevant domain account permissions, they modify the DNS resolution direction and redirect users to fake websites. Data provided by SlowMist’s partner, ScamSniffer, indicates that this gang’s phishing attacks targeting the crypto industry involve over 3,000 domains.

By examining the related information of these domains, it was found that the earliest registration dates trace back to January 2023:

The website impersonated a Web3 game project called “Fight Out,” which is currently inaccessible. Interestingly, under Fight Out’s official social media platforms, multiple users reported that the project itself seemed to be a scam.

Upon inspecting the phishing website’s related address 0x00002644e79602F056B03235106A9963826d0000 through MistTrack, it was shown that the first transaction from this address took place on May 7.

We discovered that this address is associated with 107 phishing sites, encompassing not only NFT projects, authorization management tools like RevokeCash, and exchanges like Gemini, but also cross-chain bridges such as Stargate Finance, among others.

Tracing back further from this address to March 16, 2023, we identified an address labeled as Fake_Phishing76598: 0xe995269255777303Ea6800bA0351C055C0C264b8. This address is associated with 17 phishing sites, primarily focusing on the NFT project Pollen and the public chain Arbitrum. All of these phishing websites are currently inaccessible.

Reviewing one of the gang’s recently deployed phishing websites, blur[.]app-io.com.co:

By investigating the Access Key, we linked to another phishing website: unsiwap[.]app.se.net. The correct spelling is “Uniswap,” but the attacker confused users by swapping the positions of the letters ‘s’ and ‘i’.

This website also exists in our dataset and began its operation in August.

Below are screenshots of a series of websites linked to this domain:

A global search using ZoomEye revealed that 73 phishing sites are concurrently running and deployed under this domain.

Further tracking showed that Angel Drainer conducts sales in both English and Russian. The offerings include 24/7 support, a deposit of $40,000, a 20% fee, support for multiple chains and NFTs, and an automatic site cloning tool.

Here’s an overview of the seller:

Following the contact details provided on the page, we found a Bot. The addresses involved in the image below currently have no transaction records, leading us to speculate that it might be a bot impersonating Angel Drainer.

Selecting a site at random for inspection, when users click on “Claim”, the website evaluates whether the user has a balance. Depending on the tokens and balance held by each victim’s address, it employs a combination of attacks: Approve — Permit/Permit2 signature — transferFrom.

For users with a lower sense of security awareness, they might inadvertently grant the attacker unlimited permission to their addresses. If new funds are transferred to the user’s address, the attacker will immediately transfer those funds away.

Due to space constraints, we won’t delve further into the analysis here.

MistTrack Analysis

By analyzing the aforementioned 3,000+ phishing URLs and correlating them with the SlowMist AML malicious address database, we identified a total of 36 malicious addresses (on the ETH blockchain) associated with the Angel Drainer phishing gang. Of these, there are two hot wallet addresses belonging to Angel Drainer, spanning multiple chains, with the ETH and ARB chains involving significant amounts of funds.

Based on the 36 malicious addresses linked and set as our on-chain analysis dataset, we derived the following conclusions about this phishing group on the Ethereum (ETH) chain:

  • The earliest activity time of the on-chain address set dates back to April 14, 2023. (Transaction ID: 0x664b157727af2ea75201a5842df3b055332cb69fe70f257ab88b7c980d96da3)
  • Stolen funds: According to preliminary estimates, the gang has profited approximately 2 million USD via phishing. This includes a profit of 708.8495 ETH, equivalent to approximately 1,093,520.8976 USD. They are also involved with 303 ERC20 Tokens, valued at around 1 million USD, primarily consisting of LINK, STETH, DYDX, RNDR, VRA, WETH, WNXM, APE, and BAL. (Note: Prices are based on the rates as of October 13, 2023, with data sourced from CoinMarketCap.)
  • Analyzing the related malicious addresses’ Ethereum data post-April 14, 2023, for the first two layers, we observed that out of the profit funds, a total of 1652.67 ETH was transferred to Binance, 389.29 ETH to eXch, 116.57 ETH to Bybit, 25.839 ETH to OKX, and 21 ETH to Tornado Cash. The remaining funds were transferred to other individual addresses.
We would like to extend our gratitude to ScamSniffer for helping us gather this data

Conclusion

This article, pivoting on the Balancer Hack and Galxe Hack incidents, delves into the phishing group Angel Drainer, extrapolating several characteristic features of this organization. As Web3 continues to innovate, the methodologies targeting Web3 phishing are also diversifying, catching many off-guard.

For users, it’s imperative to be informed about the risk profile of the target address before making on-chain transactions. Platforms like MistTrack can be used to input the target address and check its risk score and malicious labels. This can significantly reduce the risk of financial losses.

For wallet project developers, a holistic security audit is paramount. Emphasis should be on enhancing the user interaction security segment, fortifying the ‘what you see is what you sign’ mechanism, thereby minimizing the users’ susceptibility to phishing. Here are some specific measures to consider:

  • Phishing Site Alerts: Harness the power of the ecosystem or community to compile various phishing sites. Prominently warn and alert users when they interact with these phishing sites.
  • Signature Recognition and Alerts: Identify and alert requests for signatures such as eth_sign, personal_sign, and signTypedData. Emphasize the risks associated with eth_sign blind signing.
  • What You See Is What You Sign: Implement an extensive parsing mechanism within the wallet for contract calls. This will prevent ‘Approve’ phishing and inform users of the detailed content constructed during DApp transactions.
  • Pre-execution Mechanism: By using a transaction pre-execution system, users can understand the effects after the transaction broadcast. This aids users in predicting the outcome of transaction executions.
  • Same Suffix Scam Alerts: When displaying addresses, prominently remind users to check the complete target address, preventing scams that utilize identical suffixes. Implement a whitelist address mechanism, allowing users to add frequently used addresses to a whitelist and avoid attacks that exploit identical suffixes.
  • AML Compliance Alerts: During transactions, utilize AML (Anti-Money Laundering) mechanisms to alert users if the target address for their transfers might trigger AML rules.

SlowMist, as a leading blockchain security company, has been deeply involved in threat intelligence for many years. We primarily serve our vast clientele through security audits and anti-money laundering tracing services, establishing a solid network for threat intelligence collaboration. Security audits not only reassure users but also serve as a means to reduce potential attacks. However, due to data silos among various institutions, it’s challenging to identify money laundering gangs that operate across different platforms, presenting a significant challenge for anti-money laundering efforts. For project owners, promptly blocking and preventing the transfer of funds from malicious addresses is of paramount importance.

Our MistTrack anti-money laundering tracing system has accumulated labels for more than 200 million addresses, capable of identifying various wallet addresses from major global trading platforms. This includes more than a thousand address entities, over 100,000 threat intelligence data sets, and over 90 million risk addresses. If needed, you can contact us to access our API. In conclusion, we hope that everyone can join hands to make the blockchain ecosystem safer and better.

About SlowMist

SlowMist is a blockchain security firm established in January 2018. The firm was started by a team with over ten years of network security experience to become a global force. Their goal is to make the blockchain ecosystem as secure as possible for everyone. They are now a renowned international blockchain security firm that has worked on various well-known projects such as Huobi, OKX, Binance, imToken, Crypto.com, Amber Group, Klaytn, EOS, 1inch, PancakeSwap, TUSD, Alpaca Finance, MultiChain, Cheers UP, etc.

SlowMist offers a variety of services that include by are not limited to security audits, threat information, defense deployment, security consultants, and other security-related services. They offer AML (Anti-money laundering) software, Vulpush (Vulnerability monitoring) , SlowMist Hacked (Crypto hack archives), FireWall.x (Smart contract firewall) , Safe Staking and other SaaS products. They have partnerships with domestic and international firms such as Akamai, BitDefender, FireEye, RC², TianJi Partners, IPIP, etc.

By delivering a comprehensive security solution customized to individual projects, they can identify risks and prevent them from occurring. Their team was able to find and publish several high-risk blockchain security flaws. By doing so, they could spread awareness and raise the security standards in the blockchain ecosystem.

💬Website 🐦Twitter ⌨️GitHub

 

community logo
Join the TheDinarian Community
To read more articles like this, sign up and join my community today
0
What else you may like…
Videos
Podcasts
Posts
Articles
thedinarian@thedinarian
1 hour ago
🚨NEW: Watch @BoHines sit down with @CryptoAmerica_

Watch @BoHines sit down with @CryptoAmerica_ to discuss key details of the White House crypto report including anticipated new DOJ guidance, as well as fresh commentary on the @rstormsf trial, and the nomination of @BrianQuintenz to lead the @CFTC.

00:28:43
Reply
thedinarian@thedinarian
1 hour ago
Why Invest In XRP?

Because Ripple Is EVERYWHERE!

This is on Wall Street... NY

00:00:06
Reply
thedinarian@thedinarian
2 hours ago
👉"You're gonna be told that there is a craft on its way to Earth.

"That 100 fxxxing percent is the lie you are going to be told."

Jeremy Corbell in January 2025

00:02:38
Reply
thedinarian@thedinarian
October 31, 2024
👉 Coinbase just launched an AI agent for Crypto Trading

Custom AI assistants that print money in your sleep? 🔜

The future of Crypto x AI is about to go crazy.

👉 Here’s what you need to know:

💠 'Based Agent' enables creation of custom AI agents
💠 Users set up personalized agents in < 3 minutes
💠 Equipped w/ crypto wallet and on-chain functions
💠 Capable of completing trades, swaps, and staking
💠 Integrates with Coinbase’s SDK, OpenAI, & Replit

👉 What this means for the future of Crypto:

1. Open Access: Democratized access to advanced trading
2. Automated Txns: Complex trades + streamlined on-chain activity
3. AI Dominance: Est ~80% of crypto 👉txns done by AI agents by 2025

🚨 I personally wouldn't bet against Brian Armstrong and Jesse Pollak.

👉 Coinbase just launched an AI agent for Crypto Trading
Reply
thedinarian@thedinarian
1 hour ago

Big news: @Nasdaq Chair and Chief Executive Officer, @adenatfriedman, is joining us in NYC as a keynote speaker at Ripple Swell 2025.🚨

She’ll explore:

⭐️ The future of the financial system
⭐️ The potential of digital assets and blockchain
⭐️ The evolving role of tokenization and emerging technologies

Don’t miss it!

https://x.com/Ripple/status/1950640088469176761

Reply
thedinarian@thedinarian
1 hour ago

Trump Administration = Favorable for UTILITY DRIVEN CRYPTO INITIATIVES.✅

XRP = A functional Utility Cryptocurrency ✅

Clear?😶‍🌫️

OP Smqkedqg

post photo preview
post photo preview
Reply
thedinarian@thedinarian
2 hours ago

There will be a LOT of spam, scam, uncertainty and crime surrounding the Midnight airdrop (@midnightfdn).

There is currently no action required.

While @XamanWallet is self custodial and technically no one needs us to participate, we will digest information about the airdrop as it becomes available, and make sure to make it as easy as possible for
@XamanWallet users to participate in the airdrop.

We will communicate about this in-app, through an xApp to prevent confusion and scammers taking advantage of the uncertainty on social media.

When users can take action to participate, we will inform our users though in-app communication.

Trust NO SOCIAL MEDIA.
Trust NO WEBSITE.
Trust NO DM-MESSAGES.
Trust NO (potentially fake) XRPL Labs / Xaman staff on social.

Trust only our in app support xApp, and the in app Midnight Airdrop information we will communicate once more information is made available by the Midnight/Glacier/... team.

https://x.com/WietseWind/status/1950548314392326354

Reply
thedinarian@thedinarian
July 28, 2025
post photo preview
PYTH: We'll Always Have Coldplay

Welcome back to The Epicenter, where crypto chaos meets corporate cringe.

But surprisingly, crypto has not been the most chaotic corner of the internet as of late.

That honor goes to the startup Astronomer, whose CEO’s cheating scandal broke the web in a glorious meme-fueled media frenzy. The company’s damage control? Hiring Gwyneth Paltrow as a “temporary spokesperson.” Do we think they’re grasping at straws or setting a new standard for PR?

Meanwhile, the markets didn’t blink. BTC is still flexing near its all-time highs. Michael Saylor’s bringing a bitcoin-adjacent money-market product to Wall Street. A pharma company just earmarked $700M to stack BNB, and analysts are calling time of death on the four-year crypto cycle. It’s a steady boom now, kittens.

A few things that are also worth noting: Winklevoss vs. JPMorgan, Visa’s take on stablecoins, and Robinhood’s Euro drama that defies the chillness of eurosummer.

Let’s get into it 👇

⛓️ The On-Chain Pulse: What’s Happening on the Front Lines of Finance

This week’s biggest news in crypto and all things digital assets

🗣️ Word on the Street: What the Experts are Saying

Stuff you should repost (or maybe even cough reword and take credit for)

Meme of the Week

🏦 Kiss my SaaS: What’s Changing the Game for Fintech

Things you should care about if you want to impress your coworkers

Closing Thoughts

From meme-fueled PR stunts to Bitcoin-backed money-market funds, this week reminded us that markets move fast—and headlines move faster. With Wall Street automating itself, fintechs beefing with banks, and even your smartphone becoming a miner, anything is possible. Stay curious, stay cynical, and as always—stay sharp and stay liquid. We’ll see you back here in two weeks.

— The Epicenter, powered by Pyth Network

 

🙏 Donations Accepted 🙏

If you find value in my content, consider showing your support via:

💳 PayPal: 
1) Simply scan the QR code below 📲
2) or visit https://www.paypal.me/thedinarian

🔗 Crypto – Support via Coinbase Wallet to: [email protected]

 

Read full Article
Reply
thedinarian@thedinarian
July 27, 2025
post photo preview
4 Fintech Companies 💸& Things To Know About 🤔

The fintech revolution is reshaping the way we manage, invest, and move money, breaking down traditional barriers and empowering individuals worldwide. As financial technology continues to evolve at a rapid pace, a select group of innovative companies are leading the charge by offering groundbreaking solutions that redefine banking, payments, and digital assets. Whether you’re a savvy investor, an industry professional, or simply curious about the future of finance, discovering these trailblazing fintech companies is essential to understanding today’s dynamic financial landscape.

 

  1.  Alina Invest - The AI Wealth Manager for GenZ Women

Alina is aimed at women under 25 who identify as beginner investors. They're an SEC-registered investment advisor that charges $120/year for membership. The service "buys and sells for you" and gives up notification updates of recent transactions like a wealth manager would.

👉 Getting people to invest early is crucial to building long-term wealth. One thing that holds them back is a lack of confidence and experience. Being targetted "for beginners" and people who live on TikTok should appeal. I love the sense of "we're buying and selling for you." Funds always do that, but making it an engagement mechanic is very smart. The risk here is that building a wealth business will take decades for the AUM to compound. But the next generations, Wealthfront or Betterment, will look something like Alina.

2. Blue layer - The Carbon project funding platform

Bluelayer allows Carbon project developers to take from feasibility studies to issuing credits, tracking inventory, and managing orders. Developers of reforestation, conservation, direct air capture, and other projects can also directly report to industry registries. 

👉 Carbon investing and tax credits are heavily incentivized but need transparent data. By focusing on the developers, Bluelayer can ensure the data, reporting, and credits lifecycle is all managed at the source. This is smart.

3. Akirolabs - Modern Procurement for enterprise

Akiro is a "strategic" procurement platform aiming to help enterprise customers identify risks, value drivers, and strategic levers before issuing an RFP. It aims to bring in multiple stakeholders for complex purchasing decisions at multinationals. 

👉 Procurement is a great wedge for multinational corporate transformation. Buying anything in an enterprise that uses large-scale ERPs is a nightmare of committees and spreadsheets. Turning an oil tanker-sized organization around is difficult, but the right suppliers can have a meaningful impact in the short term. That only works if you can buy from them. Getting people on the same page with a single platform is a great start.

4. NeoTax - Automated Tax R&D Credits

NeoTax allows companies to connect their engineering tools to calculate available tax advantages automatically. Once calculated, the tax fillings are clearly labeled with supporting evidence for the IRS.

👉 AWS and GCP log files and data are a goldmine. Last week, I covered Bilanc, which uses log files to figure out per-account unit economics. Now, we calculate R&D tax credits. The unlock here is LLM's ability to understand unstructured data. The hard part is understanding the moat, but time will tell.

In an era where technology and finance are increasingly intertwined, these four fintech companies stand out as catalysts for positive change. By driving progress in digital payments, asset management, lending, and decentralized finance, they are not only making financial services more accessible and efficient—they are also paving the way for a more inclusive and empowered global economy. Staying informed about their innovations can help you seize new opportunities and take part in the future of finance.

 

👀Things to know 👀

 

PayPal issued low guidance and warned of a “transition year.” The stock is down 8% in extended trading despite PayPal reporting a 9% growth in revenue and 23% EBITDA. Gross profit is down 4% YoY. PayPal's total revenues were $29Bn for the year

Adyen reported 22% revenue growth and an EBITDA margin of 46% for the full year. Adyen's total revenues were $1.75bn for the full year. The margin was down from 55% the previous year, impacted by hiring ahead of growth.

🤔 PayPal’s Braintree (unbranded) is losing market share in the US, while Adyen is winning it. eCommerce is growing ~9 to 10% YoY, and PayPal’s transaction revenue grew by 6.7%. The higher interest rate environment meant interest on balances dragged up the total revenue figure. Their core business is losing market share. Adyen is outgrowing the market by ~12%.

🤔 The PayPal button (branded) is losing to SHOP Pay and Apple Pay. The branded experience from Apple and Shopify is delightful for users; it’s fast and helps with small details like delivery tracking. That experience translates to higher conversion (and more revenue) for merchants.

🤔 The lack of a single global platform hurts PayPal, but it helps Adyen. In the earnings call, the new CEO admitted their mix of platforms like Venmo, PayPal, and Braintree are holding them back. They aim to combine and simplify, but that’s easier said than done.

🤔 Making a single platform from PayPal, Venmo, and Braintree won’t be easy. There’s a graveyard of payment company CEOs who tried to make “one platform” from things they acquired years ago. It’s crucial if they’re going to grow that they get their innovation edge back. Adyen has one platform in every market.

🤔 PayPal’s UK and European acquiring business is a bright spot. The UK and EU delivered 20% of overall revenue, growing 11% YoY. Square and Toast don’t have market share here, while iZettle, which PayPal acquired in 2018, is a strong market player. Overall though, it’s yet another tech stack and business that’s not part of a single global platform.

The two banks provided accounts to UK front companies secretly owned by an Iranian petrochemicals company. PCC has used these entities to receive funds from Iranian entities in China, concealed with trustee agreements and nominee directors. 

🤔 This is the headline every bank CEO fears. Oof. Shares of both banks have been down since the news broke, but this will no doubt involve crisis calls, committees, appearing in front of the regulator, and, finally, some sort of fine.

🤔 The "risk-based approach" has been arbitraged. A UK company with relatively low annual revenue would look "low risk" at onboarding. One business the FT covered looked like a small company at a residential address to compliance staff. They'd likely apply branch-level controls instead of the enterprise-grade controls you'd see for a large corporation. 

🤔 Hiring more staff won't fix this problem; it's a mindset and technology challenge. In theory, all of the skill and technology that exists to manage risks with large corporate customers (in the transaction banking divisions) are available to the other parts of a bank. In practice, they're not. Most banks lack a single data set and the ability for compliance officers in one team to see data from another part of the org. Getting the basics right with data and tooling is incredibly hard and will involve a multi-year effort. 

🤔 These things are rarely the failure of an individual or department; the issue is systemic. While two banks are named in this headline, the issue is everywhere. Banks need more data and better data to train better AI and machine learning. That all needs to happen in real-time as a compliment to the human staff. Throwing bodies at this won't solve the visibility issue teams have.

 🙏 Donations Accepted 🙏

If you find value in my content, consider showing your support via:

💳 PayPal: 

1) Simply scan the QR code below 📲
2) or visit https://www.paypal.me/thedinarian

🔗 Crypto – Support via Coinbase Wallet to: [email protected]

Or Buy me a coffee: https://buymeacoffee.com/thedinarian

Your generosity keeps this mission alive, for all! Namasté 🙏 Crypto Michael ⚡  The Dinarian

 

Read full Article
Reply
thedinarian@thedinarian
July 27, 2025
post photo preview
What is XAH and Xahau?

If you're new to XRP, you may have noticed some of us discussing another network named 'Xahau'.

It's Like XRP ... But Different

The Xahau network was created in 2023, and its starting point was the open-source code for the XRP Ledger. A small team of researchers and entrepreneurs decided to add smart contracts to the network code.


The XRP Ledger has no smart contract capabilities, by default.

To integrate smart contracts, the team decided to use an architecture that includes 'WASM' or 'web assembly' code. Each account can have up to 10 'hooks' installed that are triggered for transactions that match specific criteria. They can run before or after a transaction is processed. This enables a variety of use cases that do not involve the need to change the network's core code.

Hooks

A 'hook' is what is known as a smart contract that can be triggered in relation to a specific account and its transactions.

The term arises from the programming world, where it generally means "code that runs based on triggering conditions." In Xahau's case, it indicates code that is run before, or after, a transaction is processed.
 
Each hook must be installed on a specific account by the party that controls the account - i.e., the secret key holder.
 
What Can XAH Do That XRP Cannot?
 
The primary benefit from the use of hooks, is that the core network code does not need to be changed every time a new use case is identified. This means that additional use cases can be addressed immediately, with no requirement for intervening steps, such as:
  • Community review
  • Community approval
  • Amendment voting
All of those steps are eliminated with the use of hooks; new use cases can be addressed as fast as the code can be developed.
 
To read more about how hooks enables Xahau to handle more use cases than even the XRPL, you can read this article:
 
Key Differences From XRP
 
Other unique differences from the XRP Ledger include:
  • Much smaller supply ~612 million coins vs. 100 billion coins
  • XAH hodlers are rewarded at 4% of their account balance. There are no rewards for XRP.
  • Governance participants are incentivized
  • Payment channels available for user-created tokens (IOUs)
  • URI tokens instead of NFT tokens
Who's Who of Xahau?
 
The list of those that are either founders, or closely associated with the founding organizations, is extensive. Here are the names of three organizations mentioned in the whitepaper, or their current moniker:
  • Xaman (a.k.a. XRPL Labs)
  • Gatehub
  • InFTF (Inclusive Financial Technology Foundation)
There exists a long list of impressive developers, architects, and technologists among the Xahau inner circle. But the three names that people associate most prominently with the leadership of the Xahau network are Wietse Wind, Richard Holland, and Denis Angell. The links to their 'X' accounts are:
 
Friend Or Foe?
 
This topic is one of the most contentious.
 
While Ripple, the company with the largest stake of XRP, showed interest in hooks early on, they ultimately decided to advocate for a different approach; the use of an EVM-based solution (Ethereum Virtual Machine) to handle smart contracts on the XRP Ledger. This decision was met with consternation by the Xaman team that had worked with them for several years to advocate for the use of hooks.
 
You can read more about the 'business politics' part of this topic here:
 
So how do Xahau fans view the relationship between XRP and XAH?
 
The Xahau team - and many of its community members - advocate for the use of a 'dual-chain' solution to implement smart contracts. This can be accomplished by the use of 'listener' software, along with native Xahau hooks.
 
A proof of concept, developed by Denis Angell, has demonstrated that bi-lateral communication can work with a simple approach.
 
From an economic standpoint, every chain that has its own digital asset is a competitor; but the simple way to think about Xahau, is that a 'bunch of XRP geeks' decided to implement smart contracts on their own version of the XRP Ledger.
 
The team emphasized transparency along the way, and initially received support from the primary XRP stakeholder, Ripple. They published Xahau as open-source code that could, in theory, be back-engineered and integrated with the XRP Ledger. You can clearly observe the team's idealistic mindset in early marketing mistakes, where they named their digital asset 'XRP Plus' in an effort to emphasize the way that they viewed their creation. While this resulted in confusion - and even suspicion - in its early days, the team quickly pivoted, and named their digital asset 'XAH', which became its ticker symbol.
 
Synergy effects between the two camps speak to a genuine camaraderie, with many Xahau developers being open and willing to help with changes to the core XRP Ledger protocol. You can find many examples of this open dialogue on the 'X' platform.
 
How To Purchase XAH
 
If you wish to speculate by buying XAH directly, it is available in a variety of convenient locations, depending on where you are located. If you're in a country that is supported by Bitrue, you can directly purchase or trade XAH by using that exchange.
 
On January 20th, 2025, Bitmart announced that it supports trading of XAH for customers in their list of supported countries; And in late March, another major exchange announced that they would be supporting XAH trading pairs: Coinex.
 
If you're located in the United States, you can purchase XAH directly from a vendor known as 'C14'. The xApp for C14 is located in the Xaman wallet.
 
XRP Ledger geeks can also purchase XAH IOUs on the XRPL Dex and then convert them to 'real' XAH using a Gatehub bridge. This is available in countries that Gatehub supports.
 
Which XAH Accounts Should I Follow?
 
On the 'X' platform, there exists two major community groups for XAH fans:
In addition to the Xahau notables I've already mentioned in this article, my advice is to take a look at who is posting in the above two communities. There are many impressive leaders and entrepreneurs included. You should be able to find multiple 'X' accounts that reflect your interests.
 
Xahau Development Roadmap
 
Xahau leaders have published a roadmap for 2025 that lists their various goals for the ecosystem:
 
To read a detailed explanation for each item, refer to this: Xahau Roadmap Super Thread
 
One of the most incredible waypoints listed is 'JavaScript Hooks Implementation.' 🤯
JavaScript!
 
With the 'JavaScript Hooks Implementation', Xahau is making history; it will enable anybody that knows JavaScript to easily create and install a smart contract. While networks like Ethereum are impressive early movers, they require developers to learn a new language and syntax.
 
Xahau will soon open 'crypto smart contracts' to a group of developers that number in the tens of millions.
 
Project L-10K
 
Project L-10K is one of the most important items in the pipeline. L-10K refers to the effort to boost the throughput of Xahau consensus to over 10,000 transactions per ledger! This will benefit hosted projects such as Evernode, and future issued assets. Heading up the effort is Richard Holland, who provided a progress update to the community in late May of 2025:
 
To learn more about this ambitious effort, you can watch his full presentation here:
The Future Of Defi And Payments
 
Once you've seen the extensive list of use cases that XAH easily handles, it's truly inspiring. Xahau is everything that you love about XRP, plus a long list of more things to love. ❤️
 
Be an early adopter of XAH and the Xahau network! Join the community groups listed and follow the accounts that seem to reflect your own interest - speculator, developer, or crypto fan. You have a place in our community, no matter what your background or interests are. Welcome to the future of crypto Defi and Payments
 
Sources:
 
 
NOTE: Payment channels for IOUs is currently in amendment status for the XRP Ledger, authored by Denis Angel here:
 
 

🙏 Donations Accepted 🙏

If you find value in my content, consider showing your support via:

💳 PayPal: 

1) Simply scan the QR code below 📲
2) or visit https://www.paypal.me/thedinarian

🔗 Crypto – Support via Coinbase Wallet to: [email protected]

Or Buy me a coffee: https://buymeacoffee.com/thedinarian

Your generosity keeps this mission alive, for all! Namasté 🙏 Crypto Michael ⚡ The Dinarian

 
 
Read full Article
Reply
See More
Available on mobile and TV devices
google store google store app store app store
google store google store app tv store app tv store amazon store amazon store roku store roku store
Powered by Locals