🎉 "Learn EVM Attacks" repository just reached 1024 ⭐️ Stargazers! 🥳 Thank you for joining us on this learning journey.
🚀 Prepare for liftoff! We're sharing top-notch tips on securing crypto projects, threat modeling techniques, and so much more!
We're using insights from these
Just noticed MetaMask has improved the readability of Permit and Uniswap Permit2 signatures, helping users clearly recognize these approvals.
Make sure to update your MetaMask to the latest version! 🔄🦊
🫰📈 Many crypto wallet rankings are influenced by paid promotions, affiliate programs, or SEO-driven priorities, making it hard for users to assess proper security.
🔎We need objective rankings rooted in standards and alignment with Web3 values.
IT IS WEB3 WALLET'S FAULT
We believe many wallets are phishing traps putting users at risk. Since we can't prove who's behind them, we've created an objective Wallet Security Ranking to help protect everyone.
What if you could easily know which crypto wallets are the most secure? 🤔
Over the years, we’ve developed a comprehensive threat model and checklists for crypto wallet security audits.
However creating a maintainable Wallet Ranking framework isn't easy.
What if you could easily know which crypto wallets are the most secure? 🤔
Over the years, we’ve developed a comprehensive threat model and checklists for crypto wallet security audits.
However creating a maintainable Wallet Ranking framework isn't easy.
What if you could easily know which crypto wallets are the most secure? 🤔
Over the years, we’ve developed a comprehensive threat model and checklists for crypto wallet security audits.
However creating a maintainable Wallet Ranking framework isn't easy.
💯 Impressive work by 15yo Daniel!
Unfortunately,
@Hacker0x01
and
@Zendesk
's handling shows bounty platforms triage teams struggling.
In my xp, triage quality is now frustrating for researchers (uninformed downplay) and clients (poor spam filtering)
Another day, more victims of ERC20 approve phishing scams.
🚫This has to stop!
Crypto wallets can step up and protect users. Let's demand better web3 wallet security features 💪
#Crypto
#wallet
#Security
#StopPhishing
I just became a victim of cybercrime. All of my wallets were compromised, and my life savings, everything I earned as an artist in Web3 are gone. This happened during a 14-hour flight from Korea to New York, coincidentally in mid-flight when I had no internet access. I have no
Wallet vendors must do more to stop phishing, and bug bounty platforms (the 'official' report channels) aren't helping either.
Often unaware of the real threat, Triage teams filter out critical reports, and the bounties offered are hardly worth it for researchers.
#infosec
Same issue: Some wallets only show the transaction 'envelope' 📨.
🎣How can users evaluate when phishing sites ask for signatures like this?
It may transfer 0 native tokens, but the signed message grants attackers unlimited ERC20 token spending, potentially draining wallets.
👀This is the ERC20 approve request screen of a wallet with:
⏬more than 10k downloads
⭐️4.4 score from 1k reviewers
💬 review comments repeat "..security features gives me peace of mind"
👀This is the ERC20 approve request screen of a wallet with:
⏬more than 10k downloads
⭐️4.4 score from 1k reviewers
💬 review comments repeat "..security features gives me peace of mind"
We're fucking drowning in SEAL 911 tickets every damn day, with people getting drained left and right. It's brutal, and the reality is we're nowhere near fixing this. The harsh truth? Most of these tickets are coming from basic web2 issues—phishing, malware, the usual bullshit.
🫳✨Smart Contract 'God Mode' isn't just about admin keys.
Upgradability functions enable the rewriting of blockchain reality by directly modifying smart contract storage. What does this mean for DeFi's promise of immutability?
This wallet gets a 0 on our Intent Verification checklist.
🔎🐛How many problems can you spot?
⚖️Does your wallet do better?
📸Post a screenshot and let's compare!
🔎🧑🏭We've built a
#security
checklist and testing system to evaluate ALL
#crypto
#wallets
systematically.
📖📊We'll provide resources so you can make informed decisions.
Want to see the results? Follow us for updates! 🛡️