Share this page!

SlowMist Profile picture
Twitter logo
Aug 8 β€’ 6 tweets β€’ 2 min read
Week 13 of our "What is Series"πŸ§‘β€πŸŽ“

What is a #Rugpull???πŸ€”
A rug pull happens when developers suddenly abandon a project and disappear with the investors' funds. The name is derived from the expression "pull the rug out from under someone".

So how do they work???
Rug pulls typically happen when projects take advantage of their hype and sell the majority of their liquidity. With low liquidity, the price of the token plummets and investors are forced to sell theirs at a significant loss.
Types of Rug Pulls:

Hard Rug Pull

A hard rug pull is a deceptive scheme in which the creators of a project intentionally deplete their liquidity reserves in order to make a profit at the cost of the investors who backed the venture.
Soft Rug Pull

Developers will often implement a time-lock on the liquidity pool or send their LP tokens to a burn address.
Typically, majority of their tokens are held in several wallets that they can sell if the price increases, resulting in significant losses for investors.
Example of a Rug Pull

One of the most notorious rug pulls in crypto history was the squid game rug pull. It was a play to earn token inspired by the popular Netflix series Squid game.

In total more than $3.3 million were lost after developers sold the majority of their tokens
Follow us next week in our β€œWhat is Series” as we go over what is a #multsig wallet and how they can be used to protect your funds.

β€’ β€’ β€’

Missing some Tweet in this thread? You can try to force a refresh
γ€€

Keep Current with SlowMist

SlowMist Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @SlowMist_Team

SlowMist Profile picture
Aug 11
Recently, the topic of DNS hijacking has recently come back into the spotlight. Many well-known projects, including MyEtherWallet, PancakeSwap, SpiritSwap, KLAYswap, Convex Finance, and most recently @CurveFinance, have been affected by this attack.
However, many individuals may not understand why it was hijacked in the first place, let alone how to defend it from the user's and the project's perspectives.

We'll be covering this briefly here:
πŸ§΅πŸ‘‡
DNS allows us to find the corresponding IP when we visit the target domain:

Domain - > IP_REAL

If this relationship is replaced by an attacker:

Domain - > IP_BAD (attacker controlled)
Read 18 tweets
SlowMist Profile picture
Aug 8
On May 6, the U.S. Treasury Department placed sanctions on Blender, a bitcoin mixer. Today, sanctions were also imposed on Tornado Cash, an Ethereum mixer.

home.treasury.gov/news/press-rel…
Reasons for the Sanctions

The #Bitcoin mixer, Blender, acted as a tool for the North Korean LAZARUS GROUP hacker group to launder @Ronin_Network funds.

Funds were first sent to @TornadoCash on Ethereum to avoid detention before being bridged to the Bitcoin network.
According to @MistTrack statistics, 175,100 ETH were transferred to @TornadoCash, far exceeding the 439.7818 BTC that the U.S. Treasury Department is known to have transferred to Blender. ImageImage
Read 9 tweets
SlowMist Profile picture
Aug 3
Analysis on the Recent Solana Exploit

On August 3, 2022, a large-scale attack on the Solana caused thousands of wallets to be compromised. Funds within the wallets were transferred without its users knowledge.

Here's our analysis of the incident
πŸ‘‡
Using the data provided by the Solana foundation, we discovered that ~60% of the stolen users use the Phantom wallet, ~ 30% use the Slope wallet, and the rest used Trust wallet, coin98 wallet, etc. Both iOS and Android versions of the application were used.
We began our investigation by focusing on the possible risk from wallet applications.

When analyzing Slope Wallet(Android, Version: 2.2.2), we found that it used sentry's service. Sentry is a widely used service, running on "o7e. slope[.]finance".
Read 12 tweets
SlowMist Profile picture
Aug 2
Brief Analysis of Nomad Bridge Exploit
The cross-chain interoperability protocol Nomad Bridge has been hacked, resulting in the unexpected withdrawal of funds. Details are as follows🧡:
1/7 In the Replica contract of Nomad, users can initiate cross-chain transactions through the send function and execute them on the target chain through the process function.
2/7 During process operations, it checks that the user submitted message must belong to an acceptable root via the acceptableRoot function. This root will be set in prove function. Therefore, the user must submit a valid message in order to operate.
Read 8 tweets
SlowMist Profile picture
Aug 1
Week 12 of our "What is Series"πŸ§‘β€πŸŽ“
What is a DAO???πŸ€”

A #DAO or a Decentralized autonomous organization is governed by code to ensure it's transparent, democratic and not influenced by a central entity.

So how do they work???
DAOs are created using smart contracts, allowing members to vote on initiatives by simply owning tokens of the DAO.

As a result, decisions can be implemented from the ground up, making all transactions transparent and secure once it's broadcast to the blockchain.
So why use a #DAO?

1. Decentralization- Collective decision making
2. Participation - Anyone can join or create proposals
3. Publicity- All votes and transactions are public
4. Community- Working together for a common goal
Read 6 tweets
SlowMist Profile picture
Jul 18
Week 10 of our "What is Series" πŸŽ“
What is a 𝗗eFi???

DeFi or Decentralized finance refers to financial applications that allows users to gain access to financial services without the need for intermediaries such as banks or other financial institutions.

πŸ‘‡
Traditional Finance vs Decentralize Finance

Traditional financial systems rely on a central entity to govern all operations.

Being the middleman, they take a small cut each step of the way. DeFi helps drastically cut down these costs since there is no middle man.
Use Cases
Here are some services in traditional finance and their counterparts in DeFi.

Borrowing & Lending - @AaveAave @compoundfinance
Banking - @MetaMask @phantom @TrustWallet
Exchanges - @Uniswap @SushiSwap @PancakeSwap
Insurance - @NexusMutual @InsurAce_io
Read 8 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us on Twitter!

:(