🚨SlowMist TI Alert🚨 The exchange BigONE was exploited due to a supply chain attack and loss exceeds $27 million. The production network was compromised, and the operating logic of account and risk control related servers was modified, enabling the attacker to withdraw

Hi everyone, At CoinDCX : India Ka Crypto Coach, we have always believed in being transparent with our community, hence I am sharing this with you directly. Today, one of our internal operational accounts - used only for liquidity provisioning on a partner exchange - was compromised due to a

💀 Pro tip for DeFi users: Stop using Google search for crypto sites unless you enjoy playing Russian roulette with your wallet! 🎲 Just checked: Aave, PancakeSwap, Pendle searches are ALL flooded with scam ads. One wrong click = game over!

It was a pleasure to work with ABDK to audit CMTAT v2.3.0 and several other related contracts.

OpenZeppelin Solidity Contracts 5.4 just dropped 💥 This release brings standard Account Abstraction primitives, advanced signature schemes (multisignature), interoperability features, and new utilities and data structures. 🧵👇

We're currently investigating a contained incident that occurred on WOO X earlier today While user funds and trading are unaffected, withdrawals have been temporarily paused while we complete the investigation. Stay tuned to this account for updates: support.woox.io/hc/en-us/artic…

Someone forgot to revoke approvals for Multichain Router V4, resulting in a 401 ETH instant hack by MEV bots. They first swapped 200ETH for WETH, which got immediately extracted. Then, they tested 1ETH and got extracted. Finally, they tried 200ETH and got extracted again.

BlockThreat - Week 31, 2025 💙 Sponsored by Coinspect Security 🧟 $3.5B stolen from LuBian miner in 2020! 🧑‍⚖️ Samourai Wallet defendants plead guilty. 💸 User lost 401 ETH to the old Multichain exploit ☹️ SuperRare typo. $730K stolen.

I've been in crypto for over 10 years and I’ve Never been hacked. Perfect OpSec record. Yesterday, my wallet was drained by a malicious Cursor extension for the first time. If it can happen to me, it can happen to you. Here’s a full breakdown. 🧵👇

Monero 51% attack (Qubic) details

🎣Our MistEye monitoring system recently detected a phishing site using Clickfix phishing techniques. These sites mimic common bot verification features to trick victims into executing malicious commands — leading to malware downloads. Such attacks often rely on social

ALERT! Our system has detected two attack transactions targeting an unknown contract (0x5a46c6) on #BSC, resulting in a loss of ~$85K. Specifically, the attacker utilized EIP-7702 on its own address to leverage the flash loan callback function, manipulating prices and

"The malware did more than just steal SSH keys, npm tokens, and .gitconfig files - it weaponized AI CLI tools (including Claude, Gemini) to aid in reconnaissance and data exfiltration." stepsecurity.io/blog/supply-ch…

#PeckShieldAert Ethereum's L2 blockchain network StarkNet has been down for over 4 hours due to a service outage. x.com/Starknet/statu…

best security token: CMTAT v3 github.com/CMTA/CMTAT/rel… insane level of documentation github.com/CMTA/CMTAT/blo… by AccessDenied403

x.com/i/article/1963…

A big thank you to the Halborn team for the clear and insightful audit report. Really appreciate the professionalism during the process! CMTAT is open source and available on GitHub: github.com/CMTA/CMTAT