Humanity, a protocol that ensures a blockchain address is a real human being and not a Sybil address, was hacked. 3 of their 6 multisig key holders were the same person. They did not apply their own protocol to their own multisig. $30M gone. Nice.

1 reply

1 recast

7 reactions

Shai-Hulud. Compromised npm packages. Vercel breach. rotki is a local app handling sensitive financial data. If we ship a compromised binary, our users carry the risk. @yabirgb wrote up how we defend the build pipeline. Locked deps, pinned actions, build attestations + more: https://blog.rotki.com/2026/05/22/rotki-security/

0 reply

0 recast

2 reactions

Dear followers, there are only a couple of days left to support the projects in the Giveth x TheDAO grant. Link to the projects: https://qf.giveth.io/qf/ethereum-security Donations starting from just $1 will work here! But it’s very important to first check your score on app.passport.xyz - and if it’s above 20, you can add the projects to your cart (this is important: you need to donate only through the cart, not directly to the address) and support them. Before donating, please do this first (this is for people that never donated on giveth): 1. Click Check eligibility 2. Click Go to app.passport.xyz 3. Connect a wallet you actually use 4. Complete the quick check 5. Go back to Giveth, click refresh score, then donate 6. Click Add to Cart and finish the donation from the cart. I recommend supporting projects that haven’t received many donations this year, as well as backing a variety of projects from the curated lists (for example, those from ZachXBT). I’d also be really happy if you support my own grant - it will let me write more articles and release DeFi Roadmap 2.0. Link to my grant page: https://qf.giveth.io/project/opsec-hub?roundId=16 Thank you!​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​​

0 reply

1 recast

1 reaction

If you enjoy my work, my articles, and the X threads I post during security incidents, and if you’d like to see DeFi Roadmap 2.0, please support my project on Round QF! TheDAO Fund × Giveth QF round is live. Small donations count! Support → https://qf.giveth.io/project/opsec-hub?roundId=16 Thank you so much!

0 reply

2 recasts

3 reactions

Dear God please give me the confidence to talk to girls, erhm I mean push Solidity cryptography libs to prod unaudited

0 reply

0 recast

4 reactions

So I am sure @vitalik.eth has seen this and Ethereum researchers are hard at work but we just had Q day move up a few years https://x.com/hosseeb/status/2038831850270126110?s=20

0 reply

0 recast

4 reactions

Essential Security Tactics to Implement After the Bybit Hack https://paragraph.com/@officercia/essential-security-tactics-to-implement-after-the-bybit-hack

0 reply

1 recast

5 reactions

Come listen to me explaining OpSec stuff on Rekt News voice room! https://twitter.com/i/spaces/1YqxolrQqNQKv

0 reply

2 recasts

3 reactions

stay noided https://x.com/_seal_org/status/1999953423672971318

0 reply

5 recasts

26 reactions

Come to listen to my voice on Wednesday, December 17th: https://x.com/rekthq/status/1999158122926022661?s=46

0 reply

2 recasts

10 reactions

Keystone 3 vs. GridPlus Lattice: Two Hardware Wallets That Actually Make Sense https://paragraph.com/@officercia/keystone-3-vs-gridplus-lattice-two-hardware-wallets-that-actually-make-sense

0 reply

1 recast

3 reactions

clever clever https://x.com/j222ad/status/1995816859254296636

3 replies

5 recasts

19 reactions

Staying Private in Crypto & Web3: Simple, Practical Tips That Actually Work https://paragraph.com/@officercia/staying-private-in-crypto-and-web3-simple-practical-tips-that-actually-work

0 reply

1 recast

3 reactions

There is another pretty bad Shai Hulud supply chain attack going on today. This time it hit a number of ENS related packages. Check your dependencies and stay safe out there! https://www.aikido.dev/blog/shai-hulud-strikes-again-hitting-zapier-ensdomains

2 replies

2 recasts

10 reactions

Final postmortem from Balancer https://x.com/Balancer/status/1990856260988670132

0 reply

0 recast

0 reaction