🛡 In-depth smart contract audits, DApp audits, security advisory & full-stack development. Securing Web3 since 2021, one audit at a time. 🇩🇪

Germany
We’re pleased to announce that we’ve successfully completed a security assessment for @HeyAnonAI, an AI-powered DeFi protocol that simplifies interactions, aggregates real-time project data, and executes complex actions through natural language processing. This audit was carried out on @Ethereum and @Solana, as well as other EVM-based Layer 2s, including @base, @SonicLabs, @arbitrum, @MetisL2, and @KAVA_CHAIN. No critical issues were found during the audit. 🛡️ View the security dashboard here: app.chainaudits.io/project/h…
10
28
166
34,793
We are pleased to announce the completion of a security audit for @Spectre__AI, an on-chain search engine leveraging machine learning to provide detailed data insights, including sentiment analysis, technical analysis, and token information, all accessible through customizable dashboards and a dynamic UI for investors and researchers. No security flaws were identified during the audit of $SPECT. ChainAudits is committed to keeping the audit dashboard updated by including any future smart contracts released by Spectre. 🛡️ View the security dashboard here: app.chainaudits.io/project/s…
22
17
67
7,417
The most accurate scanner teams up with leading German blockchain security! 🇩🇪🛡️ We've officially partnered with @quickintel_ai to deliver developers in-depth audit reports via Quick Intel’s new #VeriFi service, ensuring top-tier security and reliability for its users. 👥
We're thrilled to announce our partnership with @ChainAudits_io! 🚀 ChainAudits ensures robust security, pinpointing vulnerabilities and offering tailored solutions for a trust-filled decentralized future. Together, we're stepping up the game in crypto safety and transparency. Learn more about this partnership in our blog! quickintel.io/blog/quick-int…
9
10
45
4,471
ChainAudits has successfully completed a security assessment of @TrebleSwap’s staking contracts. Following an in-depth audit and testing process, no security flaws were identified. 🛡️ Security Dashboard: app.chainaudits.io/project/t…
14
19
48
4,315
We’re pleased to announce the successful completion of a security assessment for @CasinoBetMore, a utility meme featuring an operational casino, sportsbook and more. No critical issues were found during the audit. We will be performing further audits and updating the security dashboard as additional products are released. 🛡️ View the security dashboard here: app.chainaudits.io/project/b…
9
15
38
530
We’re pleased to announce that we’ve successfully completed a security assessment for @secretcoin1848's token contract. 🛡️ View the full report here: github.com/ChainAudits/Proje…
17
20
35
777
We’re pleased to announce that we’ve successfully completed a security assessment for @KeyboardCatBase's token contract. 🛡️ View the full report here: github.com/ChainAudits/Proje…
5
8
39
13,288
Treble’s launch this month not only introduces V4 to @base but also brings added user security through an extensive audit by our team. This includes a security assessment of the mentioned farming mechanisms and their underlying smart contracts. Once these go live on main-net, the existing @TrebleSwap security dashboard will be updated accordingly. View Treble's security dashboard here: app.chainaudits.io/project/t…
🌾 Eat, sleep, farm, repeat. Out of the gates, Treble will be launching a diversified set of liquidity pools on @base to meet various investor needs: • TREB/ETH • TREB/USDC • ETH/USDC • USDC/axlUSDC With a transparent 24-hour farming cycle, deposits start earning at the next cycle, and rewards continue until you exit. Withdrawals are simple and user-controlled. 📑 Find more information about Treble's farming mechanics in our whitepaper!  🔵 trebleswap.com
3
9
28
1,959
The cost of an exploit far outweighs the investment in prevention. Taking proactive steps now can save your project from irreversible consequences later. Security first. ✔️
1
3
25
1,351
🛡 $AUTOS Security Snapshot 🛡 📊 ChainAudits Code Score: 97 🔍 Findings: 1 Low, 2 Informational 🪙 Liquidity: 99% Locked | 0% Burned ✅ Audit Status: Completed Check the full security assessment on the ChainAudits security dashboard!  ➡️ app.chainaudits.io/project/c…
6
28
1,459
As an addition to our recent audits, ChainAudits has completed the security assessment for @wagmicom (formerly known as Popsicle Finance), a DEX featuring limited TVL, advanced liquidity provision strategies, GMI mechanics, and leverage capabilities. During the audit of $WAGMI across 13 chains, no security flaws were identified. 🛡️ View the security dashboard here: app.chainaudits.io/project/w…
We’re pleased to announce that we’ve successfully completed a security assessment for @HeyAnonAI, an AI-powered DeFi protocol that simplifies interactions, aggregates real-time project data, and executes complex actions through natural language processing. This audit was carried out on @Ethereum and @Solana, as well as other EVM-based Layer 2s, including @base, @SonicLabs, @arbitrum, @MetisL2, and @KAVA_CHAIN. No critical issues were found during the audit. 🛡️ View the security dashboard here: app.chainaudits.io/project/h…
2
5
24
956
Congratulations to our partners at @TrebleSwap for hitting this milestone! As expected, they’re well on track to fill their hardcap before the IDO wraps up in the final hours. Further audits on the Treble ecosystem will be released soon on their security dashboard. 🖥️ app.chainaudits.io/project/t…
✅ That's half a million raised! The momentum is undeniable as we hit $500,000 on Treble's Public IDO. Just over 2 hours left to go. ⤵️ 🔴 app.trebleswap.com/treblesta…
2
4
30
1,280
A single vulnerability can undo years of progress, causing lost funds, damaged trust, and irreversible consequences. Secure your code with a professional audit before deploying. Your project’s future depends on it, and your investors deserve nothing less. 🟡 chainaudits.io
5
21
2,226
We’re pleased to announce that we’ve successfully completed a security assessment for @TrebleSwap’s IDO contracts, which will be utilized as the backend of their upcoming Public IDO sale starting tomorrow! 🖥️ View the security dashboard here: app.chainaudits.io/project/t…
1
3
20
4,762
We’re on the same page with @LeftyChris13 from @ProjectPi314. AI can be a powerful tool for developers, but it doesn’t replace the need for human-led security reviews. Automated checks can miss nuances, logic flaws, and unexpected vulnerabilities that only experienced auditors can catch. … that’s why manual auditing, in-depth testing, and real-world simulations remain critical in Web3 security. AI assists, but humans secure. 🔍🛡️
The important of AI x NFT in Crypto @PulseChainTour Our CTO, @LeftyChris13, breaks down different use-cases, security, and the future of the industry.
1
5
12
1,038
📢 PDF Downloads Now Available! Projects and investors can now download conventional PDFs alongside our user-friendly security dashboards. In this example, our based cat @KeyboardCatBase with a high security score, already has this enabled! 🎹😼 💻 app.chainaudits.io
8
8
24
889
🛡️ In 2024, over $1.63B was lost purely to access control issues. Access control exploits aren’t just code-level failures. They stem from systemic oversight and operational mismanagement. Don’t wait for an attack to highlight gaps. Reach out for professional security advisory, beyond just the code. 🛡️
2
4
16
2,116
The first ChainAudits security dashboards are live! ☑️ Introducing the dark themed @KeyboardCatBase dashboard for our based cat that never stops tapping! 🎹 Visit here: app.chainaudits.io/project/k… #ChainAudits #BlockchainSecurity
8
8
27
365
🤝 ChainAudits x @Nadmah_co ChainAudits has partnered with Nadmah, a leading incubator and consultancy firm based in Dubai, offering top-tier expertise in tokenomics, marketing, fundraising and more! Strategy meets #BlockchainSecurity 🛡️
1
3
16
575
🖥️ Introducing the "Onboarded" section on the ChainAudits Security Dashboard! Verify onboarded projects with pending audit releases directly through the new tab on app.chainaudits.io
2
1
18
2,109
🚨 DeepSeek Database Exposed @wiz_io just uncovered a critical security lapse, dubbed “DeepLeak”, revealing a publicly accessible ClickHouse database belonging to DeepSeek. This database contained highly sensitive data, including secret keys, chat logs, backend configurations and system logs. AI security starts at the infrastructure level. Databases and access controls must be properly secured. Security oversights like these put entire ecosystems and your users at risk. Ensure your systems are locked down before attackers find the gaps.
5
14
563
📑 With 2024 behind us and the security breach data now in, it’s time to look back one last time. The results are eye-opening. #BlockchainSecurity has never been stronger, and we’re proud to have contributed to a safer #Web3 ecosystem. Read more here ⬇️ chainaudits.io/blog/crypto-s…
4
3
17
931
Documentation is a critical part of any audit process, not just nice-to-have. Clear docs help auditors understand intent, logic, and design much faster, eliminating guesswork and uncovering flaws in the code far more efficiently. In short: Clean docs = faster audits, fewer bugs, stronger security.
1
6
15
1,764
Just a quick glance through the ChainAudits security dashboards can help you identify red flags in a smart contract’s security. 🚩 Instantly review vulnerabilities and general findings to make smart investment decisions! 🧠 Visit app.chainaudits.io to access the security dashboards!
1
2
17
772
We’re pleased to announce that we’ve successfully completed a security assessment for @Kondux_KNDX's ecosystem of smart contracts. 🖥️ View the security dashboard: app.chainaudits.io/project/k…
3
10
26
8,362
ChainAudits recently audited @apescreener’s DeRisk Router, responsible for helping investors manage risk by securing their initial investments. Want to know how it works? Check out the full breakdown in our blog! 👇 🔗 Read here: chainaudits.io/blog/chainaud…
Good evening, Apes! We have completed the security audit of our Derisk router contract with @ChainAudits_io! We value the safety of our users and make it one of our top priorities. View the full report here: github.com/ChainAudits/Proje… Team #Apescreener
5
4
20
11,382
🚨 Abstract Wallet Exploit Alert! If you’ve connected your @AbstractChain wallet to Cardex, disconnect immediately and revoke any existing approvals. So far, 180+ $ETH has been drained. Only wallets linked to Cardex are at risk. dune.com/artemisrsch/abstrac… Stay safe!
4
14
825
Great to see our partners @quickintel_ai expanding to new chains like @inkonchain and @SonicLabs! 🫡 #BlockchainSecurity is often overlooked, but collaborating with experts who prioritize safety is essential, especially on new networks where the “wild west” can loom without trusted auditors and scanners. Always leading the charge! 🤝 When it comes to fast and reliable scanner results across all chains, we vouch for @quickintel_ai.
Ep. 3 ⛓️⛓️
1
5
19
347
🛡️ We’ve partnered with @BitMartExchange to strengthen security for listed projects! Our audit reports and security dashboard play a key role in validating and securing projects throughout the listing process. More security, more trust. ✅
5
4
18
940
📲 ChainAudits Security Dashboard Now Supports 18 Chains! We're committed to making security accessible across the entire Web3 ecosystem, ensuring projects on every chain have access to real-time insights, audit results, and soon more. 🛡️ app.chainaudits.io More chains, more features, and more security updates are on the way.
3
6
17
733
ChainAudits has recently observed a rise in on-chain address poisoning attacks. Just this week, a user lost $2.7 million worth of assets to this attack! Learn more about this attack and how to protect yourself in our latest blog post. 📑👇 chainaudits.io/blog/address-…
1
15
159
ChainAudits is here to sniff out any risks. 👃 The security assessment of @doginme is complete, and you can now check out the security dashboard below. 🛡️ app.chainaudits.io/project/d… When it comes to security, we’ve got that dog in us too!
5
3
22
4,662
We recently released our V1 audit dashboards, designed to be easily accessible, providing a clear overview of audit findings and ensuring transparency for all investors. 🔳 Visit last week’s blog post below to learn more!  chainaudits.io/blog/introduc…
10
136
✨ Happy New Year to all readers, but especially our amazing partners and clients, including those that have been supporting us since day one. This year, we are determined to continue leaving no stone unturned while delivering trusted security services to the sectors that need it most. 2025, we have work to do. 🤝
2
5
13
536
We’re happy to sponsor tomorrow’s “Bullish on Base” series hosted by @based_elnen, featuring a massive lineup of builders on @base! Looking forward to that signature based energy. ⚡️
🎙BULLISH ON BASE 📈 🔹WEDNESDAY 26.3. 17:00 UTC ⌛️ 💵GIVEAWAY -> 100 USD 🧾RULES 👇 1️⃣LIKE & RETWEET. 2️⃣TAG 2 FRIENDS. 3️⃣FOLLOW @based_elnen 4️⃣JOIN SPACES👉x.com/i/spaces/1yNxaLMRzddJj Special guests🏆-> @locked_money @MLeeJr $DRB Sponsored by -> @ChainAudits_io
1
2
18
1,002
ChainAudits is now listed on @magicstore_xyz and validation voting is open! The first blockchain security company on the platform, bringing audits, advisory, and development to the @MagicSquareio ecosystem. 🧙‍♂️ Security advocates, cast your vote below! 🔗 magic.store/app/chainaudits
Voting is now active for new projects on the Magic Store! 🎉 Check them out: @WelfFinance @eopenio @Gatto_game @hype_protocol @solarena_io @ChainAudits_io @TrebleSwap @MindAI_io @pktcash @RangoExchange @ENKIProtocol @iFluxGlobal @dagama_world @ButtcoinTNB @DigNow_io @ethplorer @bombpixel_xyz Have your say—Vote now! 🗳️✨
1
3
21
1,446
📄 One of the largest exploits in history exposed critical flaws in multi-sig wallets & front-end security. Even with strong defenses, attackers found a way in. What happened, and what can we learn from it? Full breakdown of the @Bybit_Official hack 👇 chainaudits.io/blog/inside-t…
1
3
14
875
We’re pleased to announce that we’ve successfully completed a security assessment for @BasedKendu_'s token contract $KENDU. 🛡️ View the security dashboard here: app.chainaudits.io/project/b…
6
4
16
1,120
We’re pleased to announce that we’ve successfully completed a security assessment for @Kangamoon_P2E's token contract. 🛡️ View the full report here: github.com/ChainAudits/Proje…
8
2
16
9,982
We have conducted a security assessment of the $BMR bridge tokens, with no issues found. Solana and Base have now been added to @CasinoBetMore's security dashboard. 🛡️ View all audit reports here: app.chainaudits.io/project/b…
9
8
17
827
ChainAudits is proud to join @quickintel_ai as an official security partner for the recently revamped VeriFi service. 🛡️ Showcase your ChainAudits audit report on one of the most trusted and widely used scanners in the market! Apply for #VeriFi today 👉 support.quickintel.io/verifi
Exciting opportunity for projects! 🚀 With today’s update of our Telegram bot, VeriFi now has greater exposure! 🎯 For a limited time, get 48 hours of FREE ad space when your project gets Quick Intel VeriFi’d. Don’t miss out on this exclusive offer to boost your visibility in front of over 300,000 users! Link to VeriFi 👇 quickintel.io/developers
5
4
15
692
📄 Tokenizing real-world assets opens new opportunities, but without proper security, it can become a major risk. From smart contract vulnerabilities to asset custody concerns, here’s why RWA security should be a top priority. 👇 chainaudits.io/blog/the-impo…
2
3
7
956
🎅 The ChainAudits team wishes you a Merry Christmas! While you enjoy the holiday season, we remain committed to ensuring the integrity and security of the blockchain sector. In the case of an emergency or any inquiries, we remain available during the holiday season. 🎄🔒 Stay safe 🛡️
1
6
12
215
We’re pleased to announce that we’ve successfully completed a security assessment for @AweboToken's contract. 🛡️ View the full report here: github.com/ChainAudits/Proje…
5
7
16
485
Incident Report Yesterday on 13.09.2024, @BaseBrosFi, a DeFi project on @base, executed a rug pull by gaining control of and draining ecosystem funds via an unaudited and unverified Vault contract. The BaseBrosFi team exploited the unverified Vault Contract by overriding critical functions in the Strategy Contract, allowing them to withdraw funds and “retire” all Strategy Contracts. This attack led to the draining of multiple pools associated with BaseBrosFi, while the Seamless protocol was mistakenly believed to be affected due to the contract titles. ChainAudits had no involvement with the unverified contracts used in the exploit, and the contracts deployed after the audit were not provided to ChainAudits, therefore not audited and not included in our audit report. For full clarification including how the team was able to gain access to ecosystem funds, please view the full report on our GitHub repository: github.com/ChainAudits/Proje… Any updates regarding this incident will be posted below this tweet. - ChainAudits chainaudits.io
Final Update This morning, several security parties flagged suspicious transactions. @SeamlessFi was not exploited. @ChainAudits_io will publish a post-mortem. All further details will come from their official comms.
2
3
15
1,594
📄 DEX vulnerabilities are costing projects millions. From smart contracts to front-end security, exploits can happen at any layer. We broke down the biggest risks DEXs face and how to stay protected. 👇 chainaudits.io/blog/decentra…
3
3
15
950
We’re pleased to announce that we’ve successfully completed a security assessment for @BaseBrosFi's brewery contracts. 🛡️ View the full report here: github.com/ChainAudits/Proje…
7
4
12
550
ChainAudits has entered the @monad_xyz ecosystem! We’re pleased to announce our partnership with @AtlantisDEX_xyz, the first V4 DEX on Monad. ChainAudits will be handling all security assessments for Atlantis, along with projects launching through their launchpad dubbed Stargate Atlantis. 🛡️
We welcome @ChainAudits_io to Atlantis as our official security partners, responsible for securing and approving the integrity of the Atlantis platform. Our ancient technology has withstood the test of time, and we are committed to proving its reliability through high-end audits!
4
5
23
1,187
📄 A hacker managed to drained $5M from @1inch, exploiting a long-overlooked vulnerability, even after 9 audits.. How did a simple integer trick bypass multiple security checks? We're breaking it all down here 👇 chainaudits.io/blog/breaking…
2
4
15
829
We’re pleased to announce that we’ve successfully completed a security assessment for @apescreener's Derisk router contract. 🛡️ View the full report here: github.com/ChainAudits/Proje…
12
7,045
We’re pleased to announce that we’ve successfully completed a security assessment for @whoisebert's token contract. 🛡️ View the full report here: github.com/ChainAudits/Proje…
2
3
12
1,509
We are joining a Spaces today at 2PM UTC hosted by our DEX partners over at @TrebleSwap. See you in a few hours! 🛡️
🎙️ This week's #Treble spaces is set! We're excited to welcome @ChainAudits_io, a German blockchain security company that has begun auditing the Treble ecosystem! 🔵 ⏲️ Friday, 2 PM UTC 📍 x.com/i/spaces/1djxXrzojWRGZ Set your reminders below! 👇
1
13
290
We are pleased to announce that we have partnered with @ProBit_Exchange to extend our security services to new areas within #Web3 while granting ChainAudits clients access to top-tier listings. Visit ▶️ probit.com More details soon. #DeFiSafety #BlockchainSecurity
1
4
12
1,108
🚨 Attention Security Researchers! Bug bounty platform @Hacker0x01 has allegedly leaked user credentials, including platform access passwords. If you’ve ever participated in a bug bounty on HackerOne, we strongly advise you to change your login credentials across the board immediately to prevent any form of unauthorized access to your accounts. Stay safe. Security starts with you! 🛡️
1
5
1,117
🚨 @GMX_IO & @MIM_Spell connected contracts have just been drained of around 3,260 $ETH, currently valued at $6.5M. arbiscan.io/tx/0xed17089aa6c… The attacker transfered funds through @StargateFinance arbiscan.io/address/0xaf9e33… More information will be shared as research progresses.
4
3
13
1,063
What's the difference between a smart contract audit and @quickintel_ai's tools? In our security partners recent blog, they go over the benefits of our collaboration and how combining Quick Intel’s tools with official audits adds an extra layer of security in #Web3! 🛡️🤝
🤔 Wondering what’s the difference between Quick Intel’s tools & official audits? We’re breaking it all down on the blog! Plus, check out the official audit report for $QKNTL from our partner @ChainAudits_io quickintel.io/blog/the-benef…
2
4
12
494
👆 Statistics sourced from @Cyvers_ As blockchain matures, the need for security audits and improved cross-chain security measures grows. 🧑‍💻 User funds must be protected at all costs. Security audits by registered and proven security companies should always be prioritized. /4
1
3
10
1,523
🛡 $NORMIE Security Snapshot 🛡 📊 ChainAudits Code Score: 98 🔍 Findings: 1 informational 🪙 Liquidity: 0% Locked | 86.25% Burned ✅ Audit Status: Completed Check the full security assessment on the ChainAudits security dashboard! ➡️ app.chainaudits.io/project/n…
1
1
11
251
We’re pleased to announce that we’ve successfully completed a security assessment for @Invpepe69420's token contract. 🛡️ View the full report here: github.com/ChainAudits/Proje…
3
4
10
706
Security researchers play a crucial role in strengthening Web3 by actively participating in bug bounties. Every vulnerability discovered and responsibly disclosed prevents potential exploits, protecting users, funds, and ecosystems. Without their expertise, countless attack vectors would remain unchecked. History, and even recent events have clearly shown that even the biggest protocols aren’t immune. At ChainAudits, we encourage security researchers to keep pushing the limits. Congratulations to @thel4stc0de, well deserved! 🛡️
POV: You’re @thel4stc0de. You've just earned a $𝟱𝟬𝟬,𝟬𝟬𝟬 bounty on Immunefi, and you’re ready for a long night drive.
2
2
10
1,074
We're pleased to announce our new partnership with @TrebleSwap, the first full-suite #DeFi Hub to bring a V4 #DEX and much more to @base. 🛡️ ChainAudits will be responsible for auditing and securing the entire #Treble ecosystem of smart contracts. 🌐 trebleswap.com
3
3
10
3,411
Finally! Congratulations team 🛡️🤝
11
96
🚨 The crypto industry faced massive security breaches in Q2 of 2024, with losses totalling $629.7M across 49 incidents alone. Despite recovery efforts, only 24% of stolen funds were retrieved back. 🧵👇 1/
1
9
909
Your protocol has millions in TVL, but you skipped an audit? That’s like leaving a vault full of cash with the door wide open. Security isn’t optional. No audits, no trust. Simple. 🔍 Lock it down: chainaudits.io/request-quote
1
1
10
986
We are pleased to announce our strategic partnership with @StarterLabsHQ, a decentralized incubator, IDO launchpad, and fundraising platform. 🤝 ChainAudits will be enhancing the platform's security and supporting early-stage projects that utilize the Starter launchpad. 🛡️
We’re proud to announce that Starter on Base is partnering with @ChainAudits_io, a leading blockchain security company specializing in smart contract audits and development. ChainAudits will be our official audit partner, providing top-tier security services for our platform and the projects we launch. With their extensive experience, our projects can ensure the highest standards of trust and safety in their smart contracts. This collaboration strengthens our commitment to helping projects working with Starter achieve their full potential with the highest security standards.
2
1
10
28,165
❌ You can’t “hope” your smart contracts are secure. ❌ You can’t assume devs got it 100% right. ❌ You can’t afford a $X million exploit. ✅ You CAN get a professional audit. ✅ You CAN prevent costly mistakes. ✅ You CAN protect your project & investors.

ALT Crusader Kings3 Matthew GIF

2
1
8
1,541
We are pleased to announce our strategic partnership with @flooz_xyz, the #1 growth stack for the on-chain economy, rewarding users for their attention across 100k+ Telegram communities and 50M+ users on 23+ EVM chains. ChainAudits will extend its security services to projects verified on flooz.xyz, while also giving our security clients access to the wide range of benefits Flooz has to offer. More specific information on this strategic partnership will soon be released via our blog page on chainaudits.io/blog.
2
9
1,533
Replying to @doginme
🐶🫡
9
71
As initially covered in our breakdown, the @zothdotio breach stemmed from a malicious proxy upgrade following unauthorized access to the deployer wallet. Zoth confirms the attacker had been preparing for weeks, with multiple failed attempts before succeeding. In the teams latest update, they shared: - 73% of TVL was secured - $500K bounty for recovery leads - @CrystalPlatform onboarded to assist 🛡️ Full Original Report by ChainAudits: chainaudits.io/blog/zoth-dra…
1
2
9
1,022
The ChainAudits security dashboards have been deployed! 🛡️ Moving forward, all ChainAudits clients will receive their own personal security dashboard in addition to the PDF audit report, providing more transparency and easier access to audit details. 📑 app.chainaudits.io
2
2
9
198
We’re pleased to announce that we’ve successfully completed a security assessment for @DegenFood's token contract $DEGEN. 🛡️ View the full report here: github.com/ChainAudits/Proje…
1
8
669
We’re excited to share that the @AtlantisDEX_xyz platform audit has officially begun. ChainAudits will be carrying out this audit in several phases, making sure the Atlantis DEX is fully audited prior to the @monad_xyz mainnet. #BlockchainSecurity #Monad
1
1
10
944
Chain Audits strives to build the best partner network to cover every aspect of #Web3 our clients need. ☑️ That's why we've teamed up with @CIKontheBlock to grant clients access to a full suite of #marketing services, including growth hacking, listings, and consulting. View our partners ⤵️ chainaudits.io/partners #BlockchainSecurity #SmartContracts #Web3Security
2
4
1,025
Yet another significant exploit to kick off the year. Bad actors are more active than ever. Prioritize your project’s safety and take proactive measures to protect your users and investors. Contact us today 👉 chainaudits.io
Some reflections are better left unseen. @TheIdolsNFT found out the hard way - never trust a mirror. A flaw in their reward system let an attacker drain 97 stETH ($324k) by setting sender and receiver to the same address. Rekt Investigates rekt.news/theidolsnft-rekt/
1
8
590
New @flooz_xyz button spotted 👀 Navigate to projects Flooz Hub directly through the security dashboard to view chart data and access their swap and fiat on/off ramp add-on! app.chainaudits.io
6
204
Replying to @PiPoolsxyz
We have an exciting year ahead! Looking forward to our continued collaboration. Wishing the @ProjectPi314 team and community a Merry Christmas and a joyful holiday season. 🎄✨
1
2
7
318
Replying to @Ski_CTO
Pretty based!
6
170
We are pleased to announce that the @TrebleSwap audit is currently underway. ChainAudits will be conducting this audit in multiple stages and will release updates as each individual component is audited to keep the community informed throughout the process.
7
2,404
📄 Smart contract audits are essential for blockchain security, but when it comes to DApps, security must go beyond the contracts. Frontends, APIs, and infrastructure all carry risks that go beyond the blockchain. Why full-stack audits matter 👇 chainaudits.io/blog/beyond-s…
2
13
851
🚨 @M2Exchange experienced a cybersecurity incident on October 31, 2024, at 3:16 AM (GMT+4), resulting in the theft of approximately $13.7 million in assets across multiple chains. The incident was swiftly addressed just over 15 minutes later at 3:32 AM (GMT+4). Attacker's Addresses: ETH: 0x968b6984cba14444f23ee51be90652408155e142 BTC: bc1qu4kh7wa38xpkrp8frgxl4sak88wx0jug8n3vfj SOL: EKko14NvgqdvNttUb8JjXkVGuUs6BTikjfN3hqW4LQoL In an official statement from early this morning, M2 confirmed that the situation has been resolved, customer funds restored and additional security controls implemented. The exchange expressed its commitment to safeguarding customer interests and all services have now resumed full operations. Source: explore.m2.com/newsroom/secu… Further developments will be posted under this thread.
1
3
7
421
🚨 @eigencloud's social media has been hacked and has started posting phishing links! DO NOT CLICK ON ANY LINKS SHARED BY EigenLayer until further notice!
1
6
186
An optimized audit request design aimed at facilitating all customers in seamlessly requesting a comprehensive quote inclusive of all necessary data required by an auditor. You can also select an additional service during the request.
1
1
5
357
If you're looking for an experienced security partner to support you every step of the way, from smart contract audits to development assistance, don't hesitate to reach out to us. 🟡 Contact us today at chainaudits.io #BlockchainSecurity #SmartContracts #Web3 /5
1
5
209
🚨 @RDNTCapital has been exploited for over $48M due to an access control breach. Multiple pools including $USDC, $USDT, $WETH, and others have been drained. 🛡️ The attacker compromised Radiant’s MultiSig by transferring control of the Pool Provider contract to a malicious one, planning the exploit for over two weeks. 🔗 Malicious Contract on @BNBCHAIN bscscan.com/address/0xF0C0a1… 🔗 Malicious Contract on @arbitrum arbiscan.io/address/0xF0C0a1… Please revoke all approvals across your connected wallets to prevent further loss of funds. Relevant updates will be shared under this post.
2
5
381
📊 The "General Findings" section offers a fast way to identify risks like: 🚨 Minting Ability: Potential for rug pulls. ⚠️ Unexpected Burns: Risk of losing tokens. 🛑 Transfer Pauses: Assets could be frozen. Keep your investments secure! 🛡️ ▶️ app.chainaudits.io
2
6
182
🚨 Revoke approval to these contracts asap until further notice: ETH: 0xA950974f64aA33f27F6C5e017eEE93BF7588ED07 BSC: 0xd50Cf00b6e600Dd036Ba8eF475677d816d6c4281 ARB: 0xF4B1486DD74D07706052A33d31d7c0AAFD0659E1 BASE: 0x30798cFe2CCa822321ceed7e6085e633aAbC492F
5
145
This latest exploit highlights why it’s crucial for larger protocols to get multiple audits from registered blockchain security companies before deploying contracts on main-net and for every update. github.com/cosmos/ibc-go/sec… Often, changes after deployment are impossible without relaunching the entire protocol, making quality security audits a step that should be mandatory for all. chainaudits.io Stay safe out there! 🛡️
So yes, appears this is the IBC hooks exploit from back in April. github.com/cosmos/ibc-go/sec… Terra isn't patched, which allowed the exploit to occur. The exploiter could mint tokens that had been IBC transferred onto Terra by utilising a contract, IBC call (with IBC hooks), and a timeout. 3.5 Million axlUSDC 500k USDT 2.7BTC 60m ASTRO tokens Terra and Neutron IBC relayer need to stop.
1
3
6
295
Showcasing the light version of the ChainAudits dashboard for @AweboToken! 🤝
1
1
5
193
📉 Since the start of the year, over $1.38B has been lost to malicious actors, primarily due to access control breaches. CEX's were the main targets, with two major incidents accounting for over 57% of total losses, marking a dramatic 900% increase compared to Q2 2023. 💢 /2
1
3
74