Wallet

Tether said on June 10 it will lead a Series C financing of up to $1.4 billion for Germany's NEURA Robotics. The plan includes integrating Tether's open-source Wallet Development Kit into NEURA's robots so they can hold self-custodial wallets and carry out crypto payments, including micropayments, under predefined rules. NEURA is also set to test and deploy Tether's QVAC edge AI runtime inside its Neuraverse software platform.

Travala said it has launched an end-to-end agentic AI travel protocol that lets autonomous agents search, book, and pay for access to more than 2.2 million hotels, with user approval required at payment. The company is offering developers a 10% cbBTC rebate for bookings executed through AI agents integrated via the Travala Travel MCP. The stack uses Base and the x402 payments standard, aiming to enable gasless USDC payments with roughly $0.01 per booking.

Ripple launched the XRPL AI Starter Kit on June 10, aiming to let AI agents create wallets, send payments, and track transactions on the XRP Ledger without human approval. The Phase 1 release adds X402 support for HTTP-native machine payments using XRP or RLUSD and highlights XRPL's 3–5 second settlement with fixed costs and no gas auctions. Ripple also cited XRPL's continuous operation since 2012 with zero transaction rollbacks as a reliability point for institutional use.

MetaMask has introduced Agent Wallet, a self-custodial product that allows AI agents to execute DeFi trades while users retain control through required checks and policy limits. The wallet includes transaction simulation, threat scanning, MEV protection, and loss coverage of up to $10,000 for eligible transactions. It launches with support for nine chains and is currently available via a CLI for a limited early-access group, with broader availability expected this summer.

A DeFi analyst is warning users to revoke lingering token approvals and tighten wallet hygiene ahead of Anthropic's expected public release of its Mythos AI model. In a June 9 X post, The DeFi Investor also recommended sticking to heavily audited dApps and distributing funds across multiple wallets to limit single points of failure.

MetaMask said on June 8 it introduced Agent Wallet, a self-custodial product that lets AI agents trade and use DeFi protocols under user-set rules. The early-access release supports swaps, perps, prediction markets and liquidity actions across EVM networks, plus Hyperliquid. MetaMask also includes transaction simulation, Blockaid threat detection, MEV protection and potential coverage for losses up to $10,000 under its terms.

MetaMask opened early access to its Agent Wallet on June 8, 2026, enabling AI agents to transact onchain across 10 supported networks. The CLI-based wallet lets users set spend caps, choose approved networks and protocols, and requires 2FA approvals when actions break rules or are flagged as malicious.

Reaper, a macOS infostealer, is spreading via fake download pages impersonating apps such as WeChat and Miro, then using Script Editor to execute hidden AppleScript. It targets desktop wallet software including Ledger Live, Trezor Suite, and Exodus, while also stealing browser passwords and sensitive files. Victims are prompted by a fake Apple security update dialog to enter their Mac password before data theft begins.

Wiz reported on May 27, 2026 that a threat group it tracks as JINX-0164 has been approaching crypto developers on LinkedIn and luring them into fake meeting links that install macOS malware. The campaign is designed to steal credentials and take over CI/CD pipelines, and it includes a confirmed supply-chain incident involving a trojanized npm package version released on April 7, 2026.

A Rust-based infostealer dubbed IronWorm was embedded in 36 npm packages connected to the Arweave/WeaveDB ecosystem, targeting developer credentials, SSH keys, and Exodus wallet files. The malware ran via a preinstall hook during npm install, searched 86 environment variables and 20 credential files, and used stolen GitHub tokens to spread through malicious commits. Security researchers advised anyone who installed the affected packages to rotate exposed secrets and harden npm/GitHub accounts.