Web3Sec
@Web3__Security
Followers
273
Following
901
Media
11
Statuses
115
Web3SecHub | A community for exploring Web3 security, sharing insights, tackling vulnerabilities, and collaborating to build a safer digital ecosystem. 🛡️🚀
Singapore
Joined January 2025
MITRE AADAPT Framework as a Red Team Roadmap -
bishopfox.com
Learn how to operationalize MITRE AADAPT with red teaming to secure digital-asset systems, strengthen detection, and reduce economic risk.
0
0
1
Blockchain Security Brief: Math Meltdown · Synthetic Crime · Global Raids - https://t.co/P3oFpl25pc
#DeFi #SmartContracts #RoundingErrors #ExploitPatterns #OnChainForensics #IncidentResponse #RiskManagement #CryptoCrime #Web3Security #AttackSurface
newsletter.rekt.news
November 10, 2025
0
0
2
Explained: The Hyperliquid Hack (November 2025) - https://t.co/Ljthidp2EO - @HalbornSecurity
#Hyperliquid #PerpsDEX #RiskEngine #SmartContracts #Exploit #OnChainTrading #Derivatives #AttackPath #DeFi #Web3Security
halborn.com
In November 2025, Hyperliquid was the victim of a $4.9M price manipulation attack. Halborn explains.
0
0
2
Oracles matter: what we can learn from the Moonwell hack - https://t.co/FTzPFOwDN8 - @witnet_io
#Moonwell #Oracle #PriceFeed #DeFi #Exploit #Chainlink #SmartContracts #Risk #Postmortem #Web3Security
medium.com
When data breaks, DeFi breaks. The Moonwell hack shows why oracles matter — and how Web3 must evolve to secure its truth.
0
0
2
Immunefi and Shield3 partner to strengthen incident response and preparedness in web3 - https://t.co/Nx1l6NGOqE - @immunefi
#IncidentResponse #Web3Security #Monitoring #DeFi #OnChain #Detection #SecurityOps #Bounty #Mitigation #Ops
0
0
2
Malicious Chrome Extension Exfiltrates Seed Phrases, Enabling Wallet Takeover - https://t.co/gGrg5TEChV
@SocketDotTech
#ChromeExtension #WalletSecurity #SeedPhrase #Phishing #Malware #Web3Security #SupplyChain #BrowserSecurity #IncidentResponse #Crypto
socket.dev
A malicious Chrome extension posing as an Ethereum wallet steals seed phrases by encoding them into Sui transactions, enabling full wallet takeover.
0
0
2
Breaking Balancer: One rounding error to drain them all - https://t.co/nUmdlVksom - @trailofbits
#Balancer #Rounding #PrecisionLoss #SmartContracts #Exploit #DeFi #Ethereum #FormalVerification #Postmortem #SecurityResearch
blog.trailofbits.com
A retrospective on the $100M Balancer hack that occurred in November 2025, including long-term, strategic guidance on how to avoid similar bugs.
0
0
2
Balancer exploit drains $129M from DeFi liquidity pools via vulnerable pool logic - https://t.co/IBNdGsl8iC - @Protos
#DeFi #Ethereum #Web3Security #SmartContracts #Exploit #OnChainForensics #IncidentResponse #DEX #LiquidityPools #CryptoSecurity
protos.com
The exploit, which hit Balancer's v2 liquidity pools on multiple blockchains, reportedly affected projects that "forked" the exchange's code.
0
0
2
DeFi karma: Garden Bitcoin bridge hacked for $11M after bridging Lazarus-linked funds - https://t.co/xPrTpG3dHn - @Protos
#DeFi #Bitcoin #BridgeHack #Web3Security #OnChainForensics #LazarusGroup #Exploit #CrossChain #CryptoCrime #CryptoSecurity
protos.com
Garden was criticized for profiting from proceeds of other hacks, which investigators claim make up a quarter of the bridge's volume.
0
0
2
MIM Spell third exploit: Abracadabra CauldronV4 cook() bug enables undercollateralized MIM borrowing (~$1.7M) - https://t.co/Dkk6WEANFD
#DeFi #Stablecoins #SmartContracts #Exploit #Liquidations #OnChainForensics #Solidity #RiskManagement #LendingProtocol #Web3Security
threesigma.xyz
Deep dive into the third Abracadabra hack. Learn how a CauldronV4 cook() flaw led to a $1.7M loss, attack flow, root cause, and key smart contract security lessons.
0
0
2
Stream Finance risk curator protocol halts after $93M loss and xUSD depeg - https://t.co/gU5EkwgLM3
#DeFi #Stablecoins #RiskManagement #SmartContracts #Exploit #Liquidity #OnChainForensics #Web3Security #YieldFarming #CryptoRisk
web3isgoinggreat.com
The Stream Finance defi yield project announced that "an external fund manager overseeing Stream funds disclosed the loss of approximately $93 million in Stream fund assets." Stream announced that...
0
0
2
Typus Finance Sui price oracle exploit drains structured vaults (~$3.4M) - https://t.co/9kNAizS9Ul - @HalbornSecurity
#Sui #DeFi #OracleAttack #SmartContracts #Web3Security #Exploit #OnChainForensics #RiskManagement #StructuredProducts #CryptoSecurity
halborn.com
In October 2025, Sui-based Typus Finance was the victim of a $3.4M hack. Halborn explains what happened.
0
0
2
A fragile solution: cross-chain bridge vulnerabilities with Force Bridge case study (~$3.9M loss) - https://t.co/L3ppasV302 - @1inch
#CrossChain #BridgeHack #DeFi #Web3Security #SmartContracts #Exploit #OnChainForensics #Interoperability #Blockchain #CryptoSecurity
0
0
2
Alex Protocol exploit on Stacks drains $8.3M from Bitcoin DeFi platform - https://t.co/4QEPyHRyYV
#Bitcoin #Stacks #DeFi #SmartContracts #Exploit #Web3Security #OnChainForensics #DEX #RiskManagement #CryptoSecurity
kryptostreettv.com
Alex Protocol loses $8.3M in June 2025 exploit. Victims await repayment. Can DeFi security be fixed? Guide for crypto investors recovering funds & assessing risks.
0
0
2
Explained: Phemex CEX hot wallet compromise steals $73M across 16 blockchains - https://t.co/1J6n063yj3 - @HalbornSecurity
#CEX #HotWallets #DeFi #Web3Security #Exploit #KeyManagement #IncidentResponse #Blockchain #CryptoExchanges #CryptoSecurity
halborn.com
In January 2025, Phemex, a CEX based in Singapore, became the victim of a $73M hack. Halborn explains.
0
0
2
Post-hack recovery and risks: Shibarium bridge validator compromise triggers multi-million loss - https://t.co/Uh9NUlbQ7X
#Shibarium #BridgeHack #DeFi #Web3Security #ValidatorKeys #Exploit #OnChainForensics #L2 #RiskManagement #CryptoSecurity
ainvest.com
Post-Hack Recovery Risks in Blockchain Bridges: Evaluating Investor Confidence and Capital Reallocation Strategies
0
0
2
Paxos accidentally mints more than twice global GDP in stablecoins due to misconfigured issuance logic - https://t.co/6dm5VIzmQH
#Stablecoins #Tokenization #SmartContracts #Web3Security #ConfigurationRisk #SupplyRisk #DeFi #RiskManagement #CryptoSecurity #Blockchain
web3isgoinggreat.com
Paxos, the issuer of PayPal's PYUSD stablecoin, accidentally minted 300 trillion of the supposedly dollar-pegged token. For context, this is approximately 2.5x the global GDP, and around 125x the...
0
0
2
Month in Review: Top DeFi Hacks of October 2025 (~$80M+ stolen across major protocols) - https://t.co/cMKrP4r3Rv - @HalbornSecurity
#DeFi #Web3Security #Exploit #OnChainForensics #RiskManagement #IncidentResponse #SmartContracts #ThreatIntel #Blockchain #CryptoSecurity
halborn.com
Halborn recaps the biggest DeFi hacks that occurred in October 2025.
0
0
2
Nominis Monthly Report: Crypto Attacks in October 2025 ($38M losses, attack trends and emerging threats) - https://t.co/FjBlmRidXw - @nominisio
#CryptoAttacks #ThreatIntel #DeFi #Web3Security #OnChainForensics #RugPulls #Exploit #Compliance #AML #CryptoSecurity
nominis.io
October 2025 saw over $38M lost to crypto exploits. Nominis reports on major hacks, EIP-7702 risks, DOJ takedowns, and global digital asset threats.
0
0
2
Emerging threats to cryptocurrency security: info stealers and wallet drainers targeting Web3 users - https://t.co/mJlwhG0hHF - @nominisio
#InfoStealers #WalletDrainers #Malware #Web3Security #ThreatIntel #DeFi #Phishing #CryptoWallets #AttackTrends #CryptoSecurity
nominis.io
Nominis Insights identifies emerging crypto threats, including info stealers and wallet drainers, with guidance for risk mitigation and security strategies.
0
0
2