Thread Reader
Share this page!
×
Post
Share
Email
Enter URL or ID to Unroll
×
Unroll Thread
You can paste full URL like: https://x.com/threadreaderapp/status/1644127596119195649
or just the ID like: 1644127596119195649
How to get URL link on X (Twitter) App
On the Twitter thread, click on
or
icon on the bottom
Click again on
or
Share Via icon
Click on
Copy Link to Tweet
Paste it above and click "Unroll Thread"!
More info at
Twitter Help
Channi Greenwall
@ChanniGreenwall
Talk cyber to me @OlympixSecurity
Subscribe
Save as PDF
Jan 14
•
6 tweets
•
1 min read
What does it mean when one of the most security-conscious teams in DeFi loses $121M to a vulnerability that passed multiple audits?
It means the security model is broken. 🧵
2/
Balancer did everything right: comprehensive audits, security-first culture, experienced team.
They still lost $121M to a rounding error that required 100 billion simulation iterations to find.
That's not a Balancer problem. That's an industry problem.
Save as PDF
Dec 15, 2025
•
11 tweets
•
2 min read
🧵 Most security reviews focus on what's there.The code that exists.
The functions that run.
The checks that execute. But 80% of exploits come from what's missing.The check that should exist but doesn't.
The validation that was assumed but never coded.
The safeguard the design required but implementation skipped.
2/
Auditors read code line by line.
They check for:
Reentrancy guards
Access control modifiers
Input validation
Math overflow protection
All critical. All necessary.
But they miss the silent killers: the protections that should be there but aren't.
