ALERT! Our system detected multiple attacks on #BSC targeting unidentified contracts (suspected MEV bots), resulting in ~$2M in stolen assets (e.g., vTokens) value. While rumors suggest the victim is Venus Protocol, our investigation confirms no association with the protocol

Our system detected several attack transactions targeting Silo Labs's smart contracts on different chains, with the root cause identified as flawed parameter validation logic in the flashloan callback function. By exploiting this vulnerability, the attacker could borrow assets

Bypassing insolvency checks—a classic attack vector for lending protocols—demands attention!

As previously mentioned, EIP-7702 renders the sole condition "msg.sender == tx.origin" ineffective; the size/length of the code must also be taken into account!

x.com/i/article/1941…

x.com/i/article/1942…

Just curious why users are still interacting with Bankroll Network? Every transaction here is basically lining the attackers’ pockets. Do yourself a favor: Stay far away.

All You Need to Know About USDT Blacklisting—But Were Too Hesitant to Ask!

.BlockSec's Crypto Payment Compliance Handbook is here! Your essential guide to crypto regulations, risk mitigation, and compliance best practices—now live!

The submission deadline to the ACM CCS workshop on Decentralized Finance and Security has been extended to July 28, 2025 (AoE). Thanks to our incredible program committee & chairs. Aviv Yaish @christoftorres Alex Biryukov Chen-Da Jeremy Clark Jan Gorzny Zhe Ye Manvir Schneider Paweł Szałachowski

Blockchain Security Award Ceremony  Pioneering blockchain security talent development to strengthen Hong Kong's Web3 industry. 🚀 BlockSec will award the BlockSec Blockchain Security Award at The Hong Kong Polytechnic University (PolyU), recognizing outstanding talent and celebrating the future of

Now live: @Monad testnet on Phalcon Explorer 🚀 Enter any tx hash to see fund flow, balance changes & invocation flow — all in one intuitive view. Take a test drive: app.blocksec.com/explorer/tx/mo…

Cross-chain arbitrary minting: A new attack pattern?

🚀 为什么我们决定开放 BlockSec 链上反洗钱（KYT）平台 在今年半年度Review前夕，彼时我刚从产假回来不久——每天都像同时抛十个锅、手里却只有两个锅盖一样焦头烂额。而期间最亮眼的正反馈，是我们的 Phalcon Compliance（KYT 链上反洗钱平台） 第一版正式上线，并迅速得到了 imToken

Hit and shock… what a bad day!

.Balancer and several forked projects were attacked a few hours ago, resulting in losses exceeding $120M across multiple chains. This was a highly sophisticated exploit. Our initial analysis suggests the root cause was an invariant manipulation that distorted the BPT price

Here it is, the in-depth analysis of the recent Balancer V2 exploit.

The root cause appears relatively straightforward, but the exploit is sophisticated and deserves closer investigation.

x.com/i/article/1990…

.yearn’s stableswap pool (the yETH weighted stableswap pool) was reportedly attacked on #Ethereum, with losses around $9M. This appears to be another sophisticated exploit in recent days. A key observation is a so called "infinite mint", where the attacker was able to mint