Yajin (Andy) Zhou
@yajinzhou
Followers
2K
Following
501
Media
35
Statuses
403
Co-Founder @BlockSecTeam | Professor at Zhejiang University | Views are my own | @yajinzhou_cn https://t.co/9ohr7t922Z | https://t.co/EHXgfkTZp5
Web3
Joined July 2009
.@MetaDockTeam MetaSuites is now updated to v5.8.8! It’s a Chrome extension that upgrades your (Ether)scan experience and supports 20+ blockchains. * Address label and risk * Link to useful tools * Fundflow * .... Install here: https://t.co/AcLZoy7GNs
1
3
8
When X402 meets crypto compliance 👀 Just shipped a lightweight X402-based API for address labels + on-chain screening (both light and deep modes) -- for education and demo purposes at the current stage. Take a test drive: https://t.co/X3x3CTyopC More APIs:
1
0
5
.@Balancer announced that it successfully executed a rescue of ~$4.1M following a new exploit path. Although detailed information has not yet been disclosed, our initial analysis indicates that the root cause may stem from a rounding-down issue in the known _upscale function.
In connection with the recent Balancer V2 stable-pool incident, a new value-extraction path was identified in V2 meta-stable pools. In coordination with @CertoraInc and @_SEAL_Org , Balancer team initiated a whitehat recovery around 7PM UTC and has secured ~$4.1M to controlled
2
9
90
ALERT! Our system detected an attack transaction on #Base a few hours ago, targeting an unknown contract and resulting in a loss of approximately $219K (55 WETH). The root cause appears to be improper access control, which allowed arbitrary transferFrom calls. As a result, the
2
4
18
Current loss: eth: balancer, 70m base: balancer, 3.9m polygon: balancer, 117k sonic: beets, 3.4m arb: balancer, 5.9m op: beethoven, 283k a bad day!
0
1
3
Happy to release our dataset for the Drainer-as-a-Service on Ethereum. https://t.co/HK4gup2lAP This is the dataset of our IMC 2025 paper: Unmasking the Shadow Economy: A Deep Dive into Drainer-as-a-Service Phishing on Ethereum. See the paper: https://t.co/XoXInqTwUg Bowen
github.com
Contribute to blocksecteam/DaaS_dataset development by creating an account on GitHub.
0
3
5
Now we have 6 chapters. Chapter 1 Overview: https://t.co/06IxQRbMQ4 Chapter 2 Depeg: https://t.co/gDwKSy2Oyz Chapter 3 Oracle: https://t.co/S4k8oahXnu Chapter 4 Market Maker: https://t.co/4DSqx63DYi Chapter 5 ADL: https://t.co/oBHIBvxjmP Chapter 6 Hedge:
10
58
267
3/ "Blockchain Forensics: A Practical Guide to Tracing Stolen Funds" second article, where I cover detailed investigation methodology, showing how investigators trace stolen crypto, analyze transaction patterns, and uncover the flow of illicit funds. https://t.co/KwH3vq931G
1
1
3
Not happy with the default order in Phalcon Explorer? Want to see the invocation flow on top? No worries — you can now customize the module order to fit your workflow! 🚀
2
2
6
See you all at Token 2049
10-1 下午 BlockSec x Cobo 一起来聊聊稳定币、RWA、加密支付 😎 Let's make liquidity GREAT again! 报名链接: https://t.co/uFu5wzwQ6Y
@token2049 @Cobo_Global @alexzuo4
1
0
0
Yet another attack targeting @Griffin_AI similar to the @seedifyfund incident: fraudulent cross-chain messages from the source chain (in this case, #Ethereum) were accepted and executed on the destination chain (#BSC), allowing the attacker to profit from $GAIN tokens and
昨天才上线币安 Alpha 的项目 @Griffin_AI 在两小时前增发了 50 亿枚 $GAIN (原来总量是 10 亿枚),然后在链上疯狂抛售了 1.5 亿枚,导致 $GAIN 下跌了 80%。 目前这个地址已经把抛售 1.5 亿枚 $GAIN 换得的 2955 枚 BNB ($300 万) 通过跨链桥 deBridge 把 BNB 跨链兑换成了 ETH。 增发并抛售 $GAIN
0
3
8
.@seedifyfund was attacked across multiple chains, likely due to a private-key compromise. Specifically, after gaining ownership of the SFUND_OFTv1 contracts on certain destination chains (e.g., #Base), the attacker (0x8030f5bF186d69627aA220FF7d486fd8c8818c56) used the
Hello everybody, A drain bridge hack just happened on one of our $SFUND bridges. We are investigating the issue. We had audits on all these contracts, and been running the same bridge contracts for over 3 years. We already contacted Layerzero as well. We will be updating you
1
8
18
Now live: @Monad testnet on Phalcon Explorer 🚀 Enter any tx hash to see fund flow, balance changes & invocation flow — all in one intuitive view. Take a test drive: https://t.co/3GAKCyMJqs
41
12
126
🎉 MAJOR LAUNCH: BlockSec Security Incidents Library Introducing the industry's first comprehensive blockchain security incident library! Highlights of this library: ✅ Curated incidents with losses over $100K ✅ $2.9B+ total losses recorded across all incidents ✅ $500M+
1
5
11
It’s been an incredible journey at Virtual Asset Technical Exchange 2025 in New Orleans! 🇺🇸 Our cofounder @yajinzhou presented our team’s work on how crypto is used in Southeast Asia scam compounds and shared insights on tracing illicit funds. Excited to see our technology
0
4
10
1inch @1inch vs Sumsub @Sumsubcom support agent: “Not our fault, ask them.” Which one should I trust? Web3 innovation at its finest. 🚀😂
0
0
1
The submission deadline for ACM CCS Workshop on Decentralized Finance and Security (DeFi'25) was extended to July 28th, 2025 (AoE). Submissions are welcome :) https://t.co/DzSwGBadFY
defiwork.shop
The ACM Workshop on Decentralized Finance and Security brings together DeFi researchers, practitioners, developers, and users from all over the world to explore cutting-edge ideas and results.
0
1
7