Dani | Web3 Sec 🛡 @DaniWeb3Sec
Passionate about Web3 & Blockchain Security | Smart Contract Auditor | Get your code secured 🛡️ 👉🏽 DM for private audit Zürich Joined August 2012-
Tweets1K
-
Followers3K
-
Following704
-
Likes29
@Phalcon_xyz @Penpiexyz_io How can we still miss a reentrancy vulnerability in 2024? 🤦🏻♂️
A few hours ago, Penpie @Penpiexyz_io , a farming protocol built on the Pendle Protocol, suffered a reentrancy attack resulting in a loss of ~$27M. Since Penpie has been paused, we are now providing a detailed root cause analysis. This is a typical issue due to the lack of reentrancy guard. Specifically, the vulnerable contract (0xff51c6, the implementation contract of PendleStaking) fails to consider that the provided argument, i.e., markets, might be untrusted, which can abused to reenter into this contract. Attack preparation TX: app.blocksec.com/explorer/tx/et… The attacker initially created a counterfeit SY (standardized yield token, i.e., 0x4476b). Although the SY tokens themselves were worthless, the contract was set up with two high-value PENDLE-LPT market tokens (i.e., 0x6010_PENDLE-LPT, 0x038c_PENDLE-LPT) as the reward tokens. By doing so, the attacker then created a market on Pendle and registered it on Penpie. Attack TX: app.blocksec.com/explorer/tx/et… During the attack, the attacker executed the batchHarvestMarketRewards() function to harvest rewards, which were calculated based on the difference in balanceOf() before and after the redeemRewards() function was invoked. The redeemRewards() function, in turn, triggered the claimRewards() function of the specific market. As the protocol did not anticipate the possibility of a market being maliciously controlled, the attacker was able to re-enter the victim contract through the depositMarket() function. After that, the attacker deposited the two high-value LPT market tokens, which were mistakenly treated as rewards. Simultaneously, the attacker received minted shares corresponding to these deposits. Consequently, the attacker could withdraw the same valuable LPT market tokens along with the corresponding shares minted in depositMarket(), and claim the reward to realize a profit.
📜TX: 0x76a4a8467b6d27b9460b304b2624fadf4684a96fa7badb2253e291fbf6606b5d 💸Victim: 0xba1809Ab216562442B4F798D9DE0Be5452D60D49 👹Malicious smartcontract: 0x0000db5c8B030ae20308ac975898E09741e70000
🚨 Again another victim lost $72,857 (28.89 $stETH) 10 minutes ago, due to a malicious smart contract interaction. 🤦🏻♂️ 📩I've reached out to the victim via an on-chain message for more details on the incident and am currently monitoring the movements of the scammer...🔎 More details soon...👇🏻
📜TX: 0xfe1ebf81870a7799ff557e3f623198ae1a3c6fbd18f793d6d04fe236d2ab017e 💸Victim: 0x0D15c865c537683D797996EDdb5eF28e974B6F70 👹 Malicious Smart Contract: 0x0000db5c8B030ae20308ac975898E09741e70000
🚨 Alert: A user lost $809,851 (321 $stETH) just 2 hours ago due to a malicious smart contract interaction. 📩I've reached out to the victim via an on-chain message for more details on the incident and am currently monitoring the movements of the scammer...🔎 Stay tuned for further updates...👇🏻
@_nikolajankovic Google Ads can't auto-detect cloaking. For faster action, report the ad for trademark issues and urge @defisaver to report it too. Human review is needed.
🚨 ATTENTION WEB3 USERS! 🚨 Beware of fake dApp websites! Scammers are still using Google Ads to trick you. Example: Searching "defisaver" on Google? The top ad might lead you to "defissaver .com" - a scam site with Inferno drainer! 🔍 Always double-check URLs & never sign transactions hastily. Stay safe out there! 🔒 #Web3Security *BTW @DeFiSaver you should do something about it!
🚨 1 hour ago (sealgoodman.eth) lost $26,067 (1000 $PIXL) by interacting with a malicious smart contract. I’ve sent an on-chain message to the victim to understand what happened and am tracking the crypto scammer...🔎 More details below...👇🏻
📜TX: 0x1381e7c8ce7b424d4d014cb444facfac8e5063ce086954b28d03ce38d0daaff5 💸Victim: 0x439901eCaB06F75B14bC25fD60d53bB3A3b9e277 👹 Malicious Smart Contract: 0x0000db5c8B030ae20308ac975898E09741e70000
📜TX: 0xd74c5e58f6375c124fd7c8a4aa0383c78920a735b0e71351c6b9ba75ccddd8a1 💸Victim: 0x9453e7b8E0C83943938D40BA74117D1ae6a2bAe0 👹 Malicious Smart Contract: 0x000095c13a0354b7131769b6312F344930eb0000
🚨 Someone just lost 3.69 $ETH ($9,219.56) by interacting with a fake claim function in a malicious smart contract. I’ve sent an on-chain message to the victim to understand what happened and am tracking the scammers...🔎 More details below...👇🏻
🚨 Just uncovered a smart contract that’s been siphoning multiple approvals through interactions with wallets. Some of these wallets hold massive fortunes that could be at risk of being drained. 🕵️♂️ ⚠️ Users, be extremely cautious and make sure to revoke any unnecessary approvals immediately! Stay safe out there. More details soon...
🚨 1 hour ago someone lost $180,198 (67 $stETH) by interacting with a malicious smart contract. I’ve sent an on-chain message to the victim to understand what happened and am tracking the crypto scammer...🔎 More details below...👇🏻
@Cointelegraph Hodl is the best think to do.💎
@CryptoOnlyCoims I've never seen this type of scam before, is this new?
@realScamSniffer Everyday .... that's so crazy! 😪
@mochivault_eth Often, they don't even realize they've given an approval...😥
📜TX: 0xefdb08b6f25e18865cbc50372f0299fa4bf24156db1e7272e49c8ab189bf7ccb 💸 Victim: 0xc4239f64c1A4607fE5145a5b7F9945A592f2bF6F 👹 Malicious Smart Contract: 0xed0e416e0fEEA5b484ba5c95d375545AC2b60572
Bluekipper.com @bluekippercom
60K Followers 46K Following Blue Kipper was written by a gang of Everton fans for 15 years. #EFC #COYB #UTFT #AllTogetherNow Call Y'self An Evertonian? Follow the editor @kipper_efc
Glossifi @glossifi
42 Followers 217 Following Making proactive security work legible to capital markets https://t.co/CfRF46JKXv
I+ENBA @ienbaorg
483 Followers 40 Following I+ENBA — Institutional & Enterprise Network Builders Alliance Join our Telegram Chat!
Yusuf Orçun Özdemir @usufufus
13 Followers 159 Following
Jack Jordan @JackJ49923
0 Followers 8 Following
Macoblock @macoblock
2K Followers 105 Following #Crypto Gem Finder💎| Crypto #Marketing Specialist 📈 | #KOL Manager 🗣️ | DM for Partnership🎯
Just Rick 👋 @0xFurFall
2K Followers 4K Following Crypto & SOL NFT Degen XRP, HBAR, QNT, LINK, CSPR Web3 💻 Family First 🩵
0xAbsurdAlex @TheChatoff
710 Followers 1K Following Doodle #2015 | Thousand Oaks | Borderline shooting Survivor 🇺🇸 | Snowboarder, cat owner, EX-Resident Coordinator of @DeepBookonSui | Collecting internet PNGs
Saifu @web3_Saifu
39 Followers 342 Following Smart Contract Security learner. Student at #CyfrinUpdraft
Abraham Awaji-ikatele... @ik_atelem
54 Followers 207 Following Cybersecurity Intern | Graphic Designer | eCommerce Brand Specialist | Social Media Design, Ad Campaigns & Content Strategy for Visibility & Engagement.
Camila Jones @CamilaJones1313
7 Followers 173 Following Making fun security and AI videos on Youtube https://t.co/RJaqtSncik
Brigitte @Mwawjuk350540
72 Followers 2K Following Be a girl with a mind, a woman with attitude, and a lady with class.
Anastasia Kuvalis @AKuvalis16404
86 Followers 4K Following
VINCHI @iamvinchi
371 Followers 2K Following Alumni @CyfrinUpdraft | Web3 security researcher | Smart contract Auditor
Do Hai Dang @d4ngvn
1 Followers 146 Following
Dũng Nguyễn Huy V�... @t4n3or4
4 Followers 184 Following
Space @0xwavecloud
7 Followers 144 Following SOC Analyst by day, space explorer by night. I like my code like I like my galaxies - organized and constantly expanding. 🚀☁️
Muhammad Yazib @Yazib0310
43 Followers 711 Following
Jelly @Jelly_Li11
14 Followers 293 Following Headhunters specializing in the blockchain, fintech, and web3 industries.
Mr Rider (Active Goy ... @letsRidenCook
3K Followers 4K Following a kieth Nogger || Shit poster || Story Teller || FX and Crypto Maxi || No FA || Father of Cruise || take me serious || https://t.co/xKnIo32m4o
Emarcrypt @emarcrypt
14 Followers 462 Following
Ivan Glushenkov @conffused_soul
873 Followers 6K Following 17 hackathons, vibe-PhD in Personal Superintelligence, building "AI-native finance organisations", ex. @ton_blockchain @chatroulette
Siddarth Sisodia @SisodiaSid46216
2 Followers 76 Following Smart Contract Auditor |Web3 security researcher | Active on Cantina , code4rena and sherlock
redactd @RedactdEth
8K Followers 1K Following This shit is a game. You couldn't count how much I've respawned...
Web3Sec @Web3__Security
229 Followers 914 Following Web3Sec | A community for exploring Web3 security, sharing insights, tackling vulnerabilities, and collaborating to build a safer digital ecosystem. 🛡️🚀
Łukasz M @0xluk3
1K Followers 2K Following Security Researcher, EVM | Move | Rust | Web2 | ASR @spearbit | Senior Blockchain Auditor @SecurityOak | CTO @Monethic_io
Zinga Donald @Cryptonative707
15 Followers 505 Following
Thaudessm @ThaudessmiUVIP
42 Followers 5K Following
fbones212 @fbones212
3K Followers 7K Following Consulting Partner; Fraud Prevention/Detection/Investigation/Response; Digital Assets Risk Management; @DukeU Engineering; MIA/NYC; views expressed are my own;
Salty Ronnie @RonnieSalty
82 Followers 7K Following The only thing to fear is fear itself! A1M support staff US Navy Veteran 🇺🇸 International Minister of the gospel TRUMP BACK BEFORE 24!
realsung @howrealsung
330 Followers 2K Following Security Researcher / Pwn2Own 25,26 / TyphoonPWN 26
MarkR /// @MarkUKRestore
2K Followers 1K Following PROUD MEMBER OF RESTORE BRITAIN - Husband and father of 3 kids and a 🐶 - #Everton #Roma #Adidas #JiuJitsu - Blue Belt🥷🥋🟦🟦🟦⬛️🟦 @restorebritain 🇬🇧
CryptoDan @CryptooDan
249 Followers 2K Following
Pybast @Pybast
1K Followers 2K Following CTO @Corkprotocol | EVM engineer | DeFi & smart contracts | Ex-CTO @Nefture | Summiting peaks & building protocols
Kevin Wang @k3vin_wang
335 Followers 3K Following lover of d/acc, internet culture, science, and books building https://t.co/SwEUQd2We4. check out my newsletter 👇
𝗧𝗵𝗲 𝗧𝗼... @EvertonNewsFeed
85K Followers 4K Following Your Source For All Things @Everton | @TheToffeeBlues is an Everton Fansite, Podcast and Fan Channel! | 💙@EWFCNewsFeed | 🏫@EFCacademy_ | 🇨🇴@ToffeeBluesESP
Bluekipper.com @bluekippercom
60K Followers 46K Following Blue Kipper was written by a gang of Everton fans for 15 years. #EFC #COYB #UTFT #AllTogetherNow Call Y'self An Evertonian? Follow the editor @kipper_efc
Grand Old Team @grandoldteam
107K Followers 6K Following Running for nearly 20 years, we pride ourselves on offering @Everton fans a multi award-winning platform for respectful debate.
EFC People's Group @ThePeoplesGroup
23K Followers 7K Following “They've brainwashed you into thinking finishing 6th is good. Is it fuck”. Neville Southall 8/6/2013
Tony Bellew @TonyBellew
751K Followers 969 Following Fail To Prepare Prepare To Fail! ▪️ #EFC #JFT97 #UTFT▪️Eq - [email protected] ▪️https://t.co/Cko5qSYUHw
Everton FC News @LivEchoEFC
79K Followers 2K Following Everton FC news from the Liverpool Echo. Also on Facebook at https://t.co/LYjO9dPWj2… EFC content on YouTube https://t.co/rG7lBmQyVR
School of Science @SOS1878
29K Followers 105 Following Independent Everton fans website established in 2009.
Dark Web Informer @DarkWebInformer
217K Followers 76 Following One guy. Global cybercrime. Tracked so you don't have to. Ransomware, data breaches, dark web activity, darknet markets, IOCs & emerging threats. Stay informed!
Chai @chaikorn
76 Followers 147 Following 🚀 Crypto Investor & Consultant | Blockchain Enthusiast | DeFi Explorer 💼 | Let’s Dive into the Crypto Universe! 🌐 #Crypto #DeFi
Kevin Wang @k3vin_wang
335 Followers 3K Following lover of d/acc, internet culture, science, and books building https://t.co/SwEUQd2We4. check out my newsletter 👇
DeFi Saver @DeFiSaver
35K Followers 59 Following A better tool for Aave, Spark, Fluid, Compound, Morpho and more. DeFi app with yield and trading zaps, 1tx looping/leverage, collateral/debt swaps, automation.
goodman ⟐ @sealgoodman
12K Followers 8K Following we’re gonna win so much, you’ll be tired of winning
Dune @Dune
490K Followers 657 Following 📊 The onchain data platform for enterprises. Making crypto data accessible. Any dataset. Any use case. Any environment. Real-time wallet data API @DuneSim
designer.eth @designerdoteth
849 Followers 421 Following 067.eth | duke.eth | champagne.eth | forum.eth | humanoid.eth
Cointelegraph @Cointelegraph
2.9M Followers 2K Following Trusted crypto media since 2013 · News, research, podcasts & more · Explore: https://t.co/6IsiPge7RR
Blockchain Threat Int... @blockthreat
6K Followers 3 Following A weekly, independent newsletter to capture the latest security news, tools, events, vulnerabilities, and threats in the cryptocurrency landscape by @iphelix
PeckShieldAlert @PeckShieldAlert
95K Followers 1 Following Free Chrome Extension: https://t.co/yvXOjS8ZRI Telegram: https://t.co/qX5sVtdkFD
DeBank @DeBankDeFi
255K Followers 3K Following Your go-to portfolio tracker for Ethereum and EVM DM: https://t.co/puNWk5uUBM
Paladin Blockchain Se... @0xPaladinSec
8K Followers 60 Following Smart contract audits with a focus on safety from the user's perspective. Audited projects are not an endorsement nor financial advice. https://t.co/hm7CmgOr4t
CertiK Alert @CertiKAlert
68K Followers 6 Following #CertiKInsight Insights, crypto hacks, crypto scams, flashloans. Turn on notifications for automatic alerts 🕵🏼 @CertiK 🤝 @CertiKCommunity
CertiK @CertiK
557K Followers 1K Following The largest crypto security provider. Smart contract audits, on-chain monitoring, penetration testing & more. ➕ @CertiKCommunity 🚨 @CertiKAlert
shamdoo @TheShamdoo
117K Followers 9K Following
BlockSec MetaSleuth @MetaSleuth
35K Followers 122 Following Crypto Tracking by @BlockSecTeam / Monitor Movements / Track Crime / DYOR / TG: https://t.co/6a39wbNU24 / 🚀 NEW: Try Phalcon Compliance FREE @Phalcon_xyz
Beosin 🛡 Web3 Secu... @Beosin_com
32K Followers 1K Following Smart contract audit, crypto AML KYT, stolen crypto recovery | Invested by @fenbushi @Lenovo, @cyberport_hk incubatee | 📧[email protected] https://t.co/pCyqL6IKha
Beosin Alert @BeosinAlert
13K Followers 104 Following 🔔#Web3 real-time risk alerts including #Hacks, #Rugpulls, #Vulnerabilities. Smart contract audit service @Beosin_com
lmk.fun 🦜 (Prev. S... @lmkfun
50K Followers 149 Following 🦜LMK: The best way to copy-trade crypto🦜 (Now Private Beta) 🪞 Auto Copy Trade Top Crypto KOLs Ex-Scopescan, Made by @scopeprotocol
Coinbase 🛡️ @coinbase
7.0M Followers 171 Following The future of finance is on Coinbase. For support: @CoinbaseSupport
Litecoin @litecoin
1.3M Followers 1K Following Litecoin is decentralized money for the modern world. $LTC is the most used crypto for payments with fast, confidential & near-instant transactions.
Binance @binance
16.0M Followers 570 Following The world’s leading blockchain ecosystem and digital asset exchange | #Binance #BNB | Support: @BinanceHelpDesk | Posts are not directed towards UK users.
Ethereum @ethereum
4.3M Followers 0 Following The universal platform for crypto, blockchain apps, stablecoins & decentralized tech. An account about the Ethereum ecosystem maintained by @ethereumfndn.
Jon_HQ @Jon_HQ
20K Followers 4K Following Security, Marketing, Community My clients include @Circle, @Aptos, @JupiterExchange, @AbstractChain, @Berachain, and many more DM me for a Discord audit.
Watcher.Guru @WatcherGuru
4.3M Followers 3 Following Watcher Guru gives you unparalleled, unbiased coverage of all-things crypto & finance in real-time | Posts Are Not Financial Advice | @BTCPrice
vitalik.eth @VitalikButerin
6.6M Followers 547 Following I choose balance. First-level balance. mi pinxe lo crino tcati https://t.co/gCQrmCby7P
SlowMist @SlowMist_Team
89K Followers 406 Following SlowMist is a Blockchain security firm established in 2018, providing services such as security audits, security consultants, red teaming, and more.
MistTrack🕵️ @MistTrack_io
25K Followers 230 Following A crypto tracking and compliance platform for everyone. Built by @SlowMist_Team
BlockSec Phalcon @Phalcon_xyz
8K Followers 45 Following See Every Threat. Stop Every Hack. Stay Compliant. By @BlockSecTeam Debug Tx | Block Hack | AML Screening | Illicit Fund Alerting https://t.co/RT0FyaxsIE
ZachXBT @zachxbt
1.0M Followers 2K Following Scam survivor turned 2D investigator, Advisor @paradigm
Scam Sniffer | Web3 A... @realScamSniffer
90K Followers 46 Following Crypto Anti-Scam🛡️ | User-safety advocate 🌐 🧩 Extension: https://t.co/How2d4sL8b 📲 | ✈️ TG: https://t.co/qbfM5Z44mZ
Tony Williams @EllaMooks
128 Followers 2K Following Evertonian, dad, husband, and Human Resources Manager. Keen but average golfer if the above allow time. All views my own.
joanne boyle @boylej1
582 Followers 1K Following love my family all the world! but 1 day i gave twitter a try.....and now have a massive family to look our for :-@.
Phil jenner @Philjenner666
4K Followers 4K Following coaches womans +girls footy loves all sport+ ink+EFC #twitter92
Tricky @Danger_Rich
685 Followers 742 Following Staying awake is the cousin of life and for me sleep and death are now husband and wife. Everton Fans are born not manufactured. STH
Scouse Kitty @CrazyMofoBlue
183 Followers 224 Following #Scouser #Bluenose Mofo by name, mofo by nature!
christopher hailwood @Hailwood06
299 Followers 446 Following Everton 👌👌 Father of 2 kids CJ Nevaeh 😉
E @EvertonGS5
422 Followers 967 Following
Mitchell Clark @Mitchclark18
1K Followers 2K Following 30. Eastern suburbs. #Everton #StKildaFC ✈️☀️⚽️
neil griffiths @neilgriffiths4
375 Followers 948 Following Am single dad of a beautiful lttle girl i support everton fc coyb born a blue die a blue
You might like
