BlockSec

📢 Attention, DeFi projects! Secure your protocol's entire lifecycle with BlockSec🛡️. From pre-launch security audits to post-launch attack monitoring and blocking (Phalcon), we've got you covered. Learn more about our full-stack security solution at blocksec.com/blog/new-websi….

Blockchain Security Award Ceremony  Pioneering blockchain security talent development to strengthen Hong Kong's Web3 industry. 🚀 BlockSec will award the BlockSec Blockchain Security Award at @HongKongPolyU, recognizing outstanding talent and celebrating the future of…

ALERT! Our system has detected a series of malicious transactions targeting an unverified contract (0x16d7c6f43df19778e382b7a84bcb8c763971a551) on the Binance Smart Chain (BSC), with losses exceeding $600K. Since the contract is not open-source, our investigation indicates the…

The submission deadline to the ACM CCS workshop on Decentralized Finance and Security has been extended to July 28, 2025 (AoE). Thanks to our incredible program committee & chairs. @yaish_aviv @christoftorres @alexcryptan @chendaLiu @PulpSpy @jgorzny @0xlf_ @manv_sc @pszalach…

Phalcon Explorer supports HyperEVM now @HyperliquidX You can see the call trace of HyperEVM to understand the transaction. A simple transaction: app.blocksec.com/explorer/tx/hy…

Thrilled to partner with @InterlaceMoney, a true innovator bridging Web2 and Web3 finance. We're excited to work with a team that places such a high priority on security and compliance. This is precisely why we built our Phalcon Compliance App. It empowers partners like…

Friday night is hack night. 🧪🕵️‍♂️ Let’s analyze an attack (happened a couple of hours ago) no one really talks about. app.blocksec.com/explorer/tx/bs…

x.com/i/article/1943…

Our system has detected a series of attacks targeting @Bankroll_Status across both Ethereum and BSC, resulting in total losses of ~$400K since Sep 2024. Attempts to contact the project team have received no response. These attacks exploit the same root vulnerability in the…

URGENT: for all GMX V1 forks, GMX V1 has been exploited. The issue could potentially be mitigated by doing the below: 1. Disable leverage: this can be done by setting Vault.setIsLeverageEnabled(false) or, if Vault Timelock is used, by setting…

x.com/i/article/1942…

Our initial analysis indicates that GMX’s order-keeper account (0xd4266f8f82f7405429ee18559e548979d49160f3) issued a transaction, which passes a contract address as the first parameter of executeDecreaseOrder, and then the attacker leveraged a reentrancy to carry out the attack.

app.blocksec.com/explorer/tx/ar… Worth a further analysis @GMX_IO

. @PeapodsFinance’s Ethereum contracts have reportedly been attacked due to a price oracle issue. It looks like the original attacker successfully executed the first exploit, but its second attempt was front-run by Yoink—a well-known MEV frontrunner. It may be possible to contact…

Best DeFi Papers Award 2024 – Call for Nominations! We honor research advancing Decentralized Finance across: * Track A: Best Theoretical Paper * Track B: Best Practical Paper * Track C: Best Industry Paper For the nominations aim for industry track, one of the authors should…

A hack in the weekend: app.blocksec.com/explorer/tx/bs… around 204k loss

x.com/i/article/1941…

We published our in-depth analysis and reflections on the Resupply protocol attack incident See: blocksec.com/blog/in-depth-…

Stay safe.

“Moving Bricks”: Inside the Scam Industry’s Secret Logistics Network 1/ Imagine you send your life savings to what you think is a safe investment. Ten minutes later, that money is split into dozens of smaller transfers, wired across continents, converted into crypto, and gone…