You might like
‼️‼️Please share for visibility.‼️‼️ ONGOING Open Source Phishing attack!! There is a new scam running around. You get a fake grants github tag by fake bot which says that it targets OS projects for a gitcoin grant. They create a fake github account with a fake project and…
It gets even more fancy: the way Etherscan was tricked showing the wrong implementation contract is based on setting 2 different proxy slots in the same frontrunning tx. So Etherscan uses a certain heuristic that incorporates different storage slots to retrieve the implementation…
We @VennBuild just discovered a critical backdoor on thousands of smart contracts leaving over $10,000,000 at risk for months Along with the help of security researchers @dedaub @pcaversaccio, the seals team @seal_911 and others, we managed to rescue the majority of funds…
So someone contacts you on LinkedIn with a promising job opportunity. Sounds nice, innit? They seem legit (after checking them for 1 min) and after some short convo they send you a GitHub repo with a simple Next.js "recruiting task". You clone it, run it… and 10 mins later, your…
This is the problem that needs to be solved. If you've been on both sides of this you understand why it's not easy to solve.
patience + escalation mastery = top ranks ⚔️ I had findings disputed/confirmed/rejected multiple times in Velvet. soul-draining but unavoidable. you have to learn the game of escalations. stand your ground with solid evidence, never reply with emotions - analyze critically,…
We have published our post-mortem on the exploit in the wstUSR market as well as the recovery plan. Please use the links below. Post-mortem: mirror.xyz/0x521CB9b35514… Recovery Plan: gov.resupply.fi/t/resupply-rec…
1/4 Big progress for #Telcoin Network We’ve completed a full audit of core infrastructure with @lovethewired and @_RustyRabbit of @cantinaxyz - a major step toward mainnet!
I recently read some comments here by security researchers and noticed a severe lack of empathy for customers. Within the Cantina core team, I make sure everyone hears directly from our customers. This is crucial for building empathy and understanding customer needs. Without…
@code There is a new solidity extension impersonating mine, my name etc. This extension has just been published today, and has managed to even fake a whopping 20 million downloads. This might include malware.
Recently I was targeted by an extremely sophisticated phishing attack, and I want to highlight it here. It exploits a vulnerability in Google's infrastructure, and given their refusal to fix it, we're likely to see it a lot more. Here's the email I got:
folks, can we please fucking stop normalising `curl | bash` as an installation method (yes, I'm also looking at you Foundry)? It's a _massive_ footgun that blindly executes remote code with zero verification. You're literally giving arbitrary internet bytes root access to your…
Meet Nick Franklin @0xNickLFranklin - Blockchain Security Engineer…. or RGB operative hacking for DPRK? Seemingly this guy has had the entire industry fooled for years.
Security’s about to get pumped up. The biggest Solana competition in history has landed in the Cantina 🪐 @pumpdotfun just dropped a massive $2,010,000 prize pool to help secure PumpSwap, their new DEX. 💰 $2,010,000 USDC 📅 Live now - April 4th 🔗 Below
how to gain code execution on millions of people and hundreds of popular apps and of course, firebase was (partially) the cause kibty.town/blog/todesktop/
1/ On the EU Giving Up I watched a panel on AI (machine learning) at a conference hosted by the European Commission. 9 people on the panel Everyone agreed that the USA was 100 miles ahead of EU in machine learning and China was 99 miles ahead except for those who believed...
When we say crypto takes security seriously, this is what we mean 🪐 @Eigenlayer is relentlessly pursuing the pinnacle of security standards with the largest-ever, $2,500,000 code review competition starting in February. More info coming soon.
This is pretty interesting Never thought of using the identity precompile to bypass external checks that expect the function selector to be returned Also, this is the first time I've seen a precompile used in an exploit
ALERT! Our system detected a series of attacks targeting the @odosprotocol protocol on #ETH #Base, resulting in ~$50k in losses. The root cause is arbitrary call vulnerability caused by unverified user input. We notice that the attacker exploited the precompile contract (0x4)…
Building secure smart contracts is tough—risks are high, audits are costly, and your treasury is at stake. Sablier has 5+ years of hack-free operations, billions in volume, and rigorous audits. Trust the proven standard, don't use a custom vesting contract.
🚨 Heads up all—some dudes have a slick, new way of dropping some nasty malware. Feels infostealer-y on the surface but...its not.🫠 It'll really, deeply rekt you. Pls share this w/ your friends, devs, and multisig signers. Everyone needs to be careful + stay skeptical. 🙏
I've worked closely with @tayvano_ for... *checks notes* over seven years. Each and every day, without fail, for the entirety of those seven years, she has ONLY worried about the wellbeing of those around her, including her family, her friends, her employees, the users of her…
United States Trends
- 1. Ugarte 15.9K posts
- 2. Sesko 45.8K posts
- 3. Gameday 31.4K posts
- 4. #SaturdayVibes 4,818 posts
- 5. Richarlison 21.4K posts
- 6. De Ligt 25.8K posts
- 7. #Caturday 5,017 posts
- 8. Good Saturday 33.4K posts
- 9. Texas Tech 7,803 posts
- 10. Calen Bullock N/A
- 11. Amorim 65.4K posts
- 12. Cunha 25.2K posts
- 13. Vicario 1,987 posts
- 14. Trump Stadium 1,903 posts
- 15. #TOTMUN 18K posts
- 16. Casemiro 24K posts
- 17. Goretzka 1,728 posts
- 18. Lando 43.3K posts
- 19. #COYS 2,662 posts
- 20. Luis Diaz 21.7K posts
You might like
-
Adri
@0xadrii -
HickupHH3
@HickupH -
DadeKuma
@DadeKuma -
reentrant
@0xreentrant -
Cantina 🪐
@cantinaxyz -
0xladboy | Sparkware
@Xc1008Cui -
another anon
@eugenioclrc -
nemveer
@nem_veer -
hake (independent arc)
@hake_stake -
blockdev
@blockdeveth -
ABA
@abarbatei -
0xkato
@0xkato -
franfran
@franfraneth -
0xKitetsu.eth | For Hire
@0xKitetsu -
Xiaoming9090
@xiaoming9090
Something went wrong.
Something went wrong.