Coinspect Security
@coinspectYou Build. We Defend. Since 2014 protecting critical decentralized systems: L1 nodes, smart contracts audits, wallets, web3 dApps, exchanges, bridges.
Similar User
@0xPaladinSec
@gpersoon
@Voi_Net
@code4rena
@KoalateeCtrl
@blockthreat
@Algo_Surf
@hansfriese
@WatchPug_
@realgmhacker
@0xBnke
@0xRajeev
@NomicFoundation
@zhang_matt
@algodevs
🚀 Wallet Security Ranking Launched! 🔎After months of thorough testing, our comprehensive crypto wallet security framework is live. ⚠️Which wallet do you use, and how did it score? ➡️We test, you decide. coinspect.com/wallets/
There are still many people that have not revoked their token approvals to the hacked contracts that were involved in the Radiant Capital hack last month. Our friends at @PocketUniverseZ have added a warning for this and are directing to our exploit checker to combat this.
People are still losing $$$ to the Radiant Capital hack 😵 It happens when you swap/bridge into a token that still has an open approval to the hacked contract If you see this notification in Pocket Universe Your assets are at risk, please revoke approvals! 👇
When someone falls for a web3 phishing scam, ask yourself: 🤔 What wallet were they using? Choose your wallet wisely! coinspect.com/wallets/
🚨 Another shocking story: Today, a user lost $341,103 by signing a phishing Permit2 signature. What’s wild? He has been in crypto for over 5 years - and this isn’t the first time he’s been scammed 👇
⚠️Update on Frontier Wallet The Frontier Wallet dev team is working on a fix and a postmortem. We strongly advise all Frontier users to create a new wallet and transfer funds. This bug has been present for over a year and can be silently exploited to obtain private keys.
We've confirmed latest Frontier Wallet Chrome extension allows websites to access your seed phrase. Thanks to @pcaversaccio, we are now in contact with @ravidsrk We've sent them the proof-of-concept exploit code and are awaiting their patch to verify it fixes the issue.
The Long Con: Pig Butchering, Drainers, and Job Scams MetaMask's @LuckyLuker2 covers the whole ass range of bad guys and how they're targeting you. Def watch to the very end—this also had a great Q&A. Livestream @ 2:48:15 youtu.be/0SISgw_37kc?t=… app.devcon.org/schedule/STMCNZ
Passkeys : the good, the bad, the ugly @BTChip, the OG of OG's & foremost expert on hardware wallets, talks about the latest flavor of shiny, problematic tech: Passkeys 4:43:52 on the livestream: youtu.be/lkCg4vfNKws?t=… Devcon: app.devcon.org/schedule/XFLPAR
Surprising to see the sudden interest in TEEs & SEs for blockchain security when @rootstock_io Powpeg has been bridging Bitcoin & smart contracts for years! Multisig custodians provide power and network, can disconnect HSMs but have no ability to sign arbitrary transactions.
⚠️Silent Web3 Wallet Attacks⚠️ 🔎Our ongoing web3 wallet security research has uncovered significant risks beyond what our public checklists cover: 😱Malicious websites can steal private keys from vulnerable browser extension wallets without user interaction. 💸Wallet-draining…
We've confirmed latest Frontier Wallet Chrome extension allows websites to access your seed phrase. Thanks to @pcaversaccio, we are now in contact with @ravidsrk We've sent them the proof-of-concept exploit code and are awaiting their patch to verify it fixes the issue.
🚨 Alert for Frontier Wallet Users! 🚨 ⏩Create a new seed in a secure wallet and transfer your funds ASAP.⏪ Any website can access your private keys. Despite our attempts to contact @FrontierDotXYZ over the past year, we have received no response. ⏳📣Tech details next week.
🚨 Alert for Frontier Wallet Users! 🚨 ⏩Create a new seed in a secure wallet and transfer your funds ASAP.⏪ Any website can access your private keys. Despite our attempts to contact @FrontierDotXYZ over the past year, we have received no response. ⏳📣Tech details next week.
The V2 codebase offers these teams an economically sound model for a collateralized, redeemable stablecoin that can supercharge their respective borrowing markets. It's also technically robust, having been audited by @dedaub @chain_security @getreconxyz @coinspect @CertoraInc
Does anyone have the security contact info for Frontier Wallet?
@SlowMist_Team can you help us contact Frontier's security team?
It is embarrassing!
Andrew mcPherson - 🔥 Happening now! Andrew McPherson from @privy_io dives into the hard truth about Web3 security flaws. From weak wallet practices to exploitable infrastructure, he’s exposing the biggest fails—and offering real solutions.💡 youtube.com/watch?v=dMp6jJ…
North Korean hackers use new macOS malware against crypto firms - @billtoulas bleepingcomputer.com/news/security/…">bleepingcomputer.com/news/security/… bleepingcomputer.com/news/security/…">bleepingcomputer.com/news/security/…
🚨 Fake Curve Finance App Returns to Apple Store, Scams Users Again A fake Curve Finance app has resurfaced on Apple’s App Store for the third time this year, scamming users and causing significant financial losses. Although previously removed, the app has reappeared, imitating…
🫰📈 Many crypto wallet rankings are influenced by paid promotions, affiliate programs, or SEO-driven priorities, making it hard for users to assess proper security. 🔎We need objective rankings rooted in standards and alignment with Web3 values.
⚠️Your Web3 wallet is not as safe as you think. 👻Web3 wallets have weaknesses that make you prone to attacks via malicious DApps. 🙌We need your help to create standardized security checks across all platforms. 👉coinspect.com/truth-about-we…
After a grace period for feedback (and improvements?) from wallet developers, we’ll be ready to publicly share the full details of our security assessments for all wallets tested. What do you think about this approach?
💹Wallet Security Ranking update: We’re starting to send detailed reports like this one directly to wallet vendors. 📨 We can work collaboratively to improve Web3 security standards, one feature at a time. 🔐💪 #Web3 #crypto #security WSR checklists: coinspect.com/wallets/testin…
A 12,600$ Bounty and a Software Supply Chain Attack that could have impacted millions 🤯 Let me share you those 2 stories in this article ! 🤟 Link in the thread 🧵
United States Trends
- 1. $CUTO 7.520 posts
- 2. $CATEX N/A
- 3. $XDC 1.124 posts
- 4. DeFi 103 B posts
- 5. #Caturday N/A
- 6. GAME DAY 12,2 B posts
- 7. Good Saturday 33 B posts
- 8. #saturdaymorning 2.730 posts
- 9. #Arcane 267 B posts
- 10. Jayce 69,4 B posts
- 11. #SaturdayVibes 4.118 posts
- 12. Pence 85,3 B posts
- 13. #MSIxSTALKER2 N/A
- 14. Senior Day 2.671 posts
- 15. McCormick-Casey 25,9 B posts
- 16. $XRP 93,4 B posts
- 17. Pennsylvania Democrats 113 B posts
- 18. Tyquan Thornton N/A
- 19. Fetterman 41 B posts
- 20. Mike Neu N/A
Who to follow
-
Paladin Blockchain Security
@0xPaladinSec -
Gerard Persoon
@gpersoon -
Voi Network
@Voi_Net -
Code4rena
@code4rena -
KoalateeCtrl
@KoalateeCtrl -
Blockchain Threat Intelligence
@blockthreat -
Algo Surf
@Algo_Surf -
hansfriese 🟪
@hansfriese -
WATCHPUG
@WatchPug_ -
gmhacker
@realgmhacker -
Bnke
@0xBnke -
RajΞΞv
@0xRajeev -
Nomic Foundation
@NomicFoundation -
Matt Zhang
@zhang_matt -
Algorand Developers 🐍
@algodevs
Something went wrong.
Something went wrong.