SOLO
3.7K posts
Universe I dropped it here!
HECKO's TrapNote Episode 24 Drosera Tech Is A Life Saving! it's high time builders in the web3 industry take their time to work more on the security part of the products to keep users safe and gain their trust. remembered the backlash relay protocol was getting last year, around october time.. users making awareness of getting drained after using the app. @RelayProtocol itself was not exploited. there was no bug, no smart contract vulnerability, and no protocol-level hack in relay. the exploit was EIP-7702 delegation scam, users had previously signed a malicious 7702 delegation (maybe days/weeks earlier) on: ➧ phishing site ➧ fake airdrop ➧ fake Relay frontend clone ➧ or other scam dApp that delegation gave the attacker permanent permission to execute transactions from the wallet without needing the user to sign again. relay just happened to be one of the more visible places where people noticed the drain because it frequently moves larger amounts across chains. all hacks and losses might have been mitigated before its birth, if and only if drosera's tech have been adopted into the system. traps can handle things like treasury protection, liquidity monitoring, or flagging malicious patterns without needing human intervention. EIP-7702 delegations are onchain events ( recorded when signed), so drosera's traps could be programmed to monitor for suspicious ones. For example: ➙ scan wallets interacting with relay for delegations to known malicious addresses. ➙ detect patterns like high-risk delegations or drain signatures that match common scam templates. ➙ flag unauthorized transfer setups which align with what happened in these cases. If integrated, relay could trigger a trap before/during a transaction: "Hey, this wallet has an active delegation to a shady address signed 2 weeks ago, high risk of auto drain. revoke it now via revoke (.cash) or withdraw funds immediately?" this would make the pre-existing compromise visible at the point of interaction, turning relay into a proactive gatekeeper. users might pause, check tools like eip7702 (.app), revoke the delegation, and avoid the drain. traps could enable real time mitigation: If a drain pattern is detected mid-transaction, it could save it by: ➬ auto pause the bridge/swap ➬ hold funds in escrow ➬ or redirect them to a safe multisig in broader defi use cases (per Drosera's docs), Traps have been used for things like treasury management ( block unauthorized transfers) so adapting this to user-wallet risks isn't a stretch. overall, if @RelayProtocol had adopted @DroseraNetwork early, it likely would've reduced the number of incidents significantly.. check-in @almondweb3 @0xkr8os
𝗬 ??? Janissaries ??? Y STANDS FOR YIELD When people enter a blockchain protocol, they’re usually not just clicking buttons for fun. They’re there for a reason to grow value, to earn rewards, to make their assets work for them. That’s what yield represents. But here’s the part many people forget: yield only exists as long as the system behind it is safe. One exploit, one unnoticed vulnerability and that reward can disappear in seconds. This is where security becomes personal. Because yield shouldn't just be numbers on a screen, it’s someone’s effort, time and trust. Drosera helps protect that trust by watching how protocols behave onchain, spotting risks early and responding before value is lost. So when we talk about yield, we’re really talking about confidence. The confidence that what you earn today will still be there tomorrow. Your YIELD should grow in security 🧡 Zkgr 🧡
would you rather keep your entire port in a cex or a dex wallet? 🤔
Vitalik might have just fast tracked the end of l2s
