Discover and read the best of Twitter Threads about #web3sec

Most recents (2)

Profile picture
SunSec
@1nf0s3cpt
📑Web3 security course for devs👀
Read only reentrancy - short intro.

This issue found by @chain_security

#web3 #web3sec Image
Read only reentrancy POC: github.com/SunWeb3Sec/DeF… Image
For more details:
chainsecurity.com/curve-lp-oracl…
chainsecurity.com/heartbreaks-cu…
euler.finance/blog/read-only…
Video:

Read 3 tweets
Profile picture
SunSec
@1nf0s3cpt
Governance attack! Attacker profited ~$1M. etherscan.io/tx/0x4227bca8e…
The bug was in Audius community treasury contract.
Exploited steps:
Tx (1): initialize + ProposalSubmitted + Staked.
Attacker called initialize() to modify configurations:
_votingPeriod to 3 blocks,
_executionDelay to 0 block
_guardianAddress

etherscan.io/tx/0xfefd829e2… Image
Tx (1), cont: submitted malicious proposal ID:85, which requested a transfer to attacker ~18M AUDIO tokens.
#AUDIO #web3 #web3sec Image
Read 7 tweets

Related hashtags

#web3 #web3sec #AUDIO

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!