Fidesium

Take control of your projects security. Start for free 🔗 app.fidesium.xyz Save time, stay secure and do it with ease. Simply connect your projects GitHub and recieve scan results in minutes not days.

Last week at the @SimplicityWeb3 Group accelerator, one thing stood out: Founders are asking better questions. Not just: “How do we grow faster?” But: “What assumptions are we building on?” Our co-founder @bockus joined a strong group of speakers alongside teams from Base, DWF Labs, Canton Network and others, sharing a perspective that cuts across both #startups and #Web3security: Shout out to what Simplicity Group is building here. More rooms where founders think at this level. #FirstPrinciples

Excited to announce that we will be attending EthCC[9] in Cannes! March 30 – April 2 at the Palais des Festivals. DM us, let's talk code, audits, and keeping things safe at scale. See you on the French Riviera!

Someone just poisoned the Python package that manages AI API keys for NASA, Netflix, Stripe, and NVIDIA.. 97 million downloads a month.. and a simple pip install was enough to steal everything on your machine. The attacker picked the one package whose entire job is holding every AI credential in the organization in one place. OpenAI keys, Anthropic keys, Google keys, Amazon keys… all routed through one proxy. All compromised at once. The poisoned version was published straight to PyPI.. no code on GitHub.. no release tag.. no review. Just a file that Python runs automatically on startup. You didn’t need to import it. You didn’t need to call it. The malware fired the second the package existed on your machine. The attacker vibe coded it… the malware was so sloppy it crashed computers.. used so much RAM a developer noticed their machine dying and investigated. They found LiteLLM had been pulled in through a Cursor MCP plugin they didn’t even know they had. That crash is the only reason thousands of companies aren’t fully exfiltrated right now. If the code had been cleaner nobody notices for weeks. Maybe months. The attack chain is the part that gets worse every sentence. TeamPCP compromised Trivy first. A security scanning tool. On March 19. LiteLLM used Trivy in its own CI pipeline… so the credentials stolen from the SECURITY product were used to hijack the AI product that holds all your other credentials. Then they hit GitHub Actions. Then Docker Hub. Then npm. Then Open VSX. Five package ecosystems in two weeks. Each breach giving them the credentials to unlock the next one. The payload was three stages.. harvest every SSH key, cloud token, Kubernetes secret, crypto wallet, and .env file on the machine.. deploy privileged containers across every node in the cluster.. install a persistent backdoor waiting for new instructions. TeamPCP posted on Telegram after: “Many of your favourite security tools and open-source projects will be targeted in the months to come.. stay tuned.” Every AI agent, copilot, and internal tool your company shipped this year runs on hundreds of packages exactly like this one… nobody chose to install LiteLLM on that developer’s machine. It came in as a dependency of a dependency of a plugin. One compromised maintainer account turned the entire trust chain into a credential harvesting operation across thousands of production environments in hours. The companies deploying AI the fastest right now have the least visibility into what’s underneath it.

Security team trying to affect real change in the ecosystem. You should check them out. The team also let me know they will be showing the film at @EthCC We are really proud to support @ChainPatrol and their project on @Giveth! 💜 Read about their impact or support them here: giveth.io/project/lights… #Giveth

⚠️ An expired audit isn’t just a technical issue; it’s a governance risk: If stakeholders rely on outdated validation, you’re operating on false security assumptions. Security claims must be version-aware. #web3security

Our CTO Abraham Polishchuk, @cryptoabe4, is speaking on: Defensive Programming in Web3 at @BalkansCryptox Here’s what actually matters ↓

If your system assumes good behavior, it’s already broken. #Web3Security

That’s what defensive programming actually means.

Smart contracts don’t get patched. They get exploited.

Everyone in London is Londonmaxxing: AI founders VCs Deeptech labs Stablecoin startups But the real alpha? Shipping smart contracts that don’t get drained at 3am. Security > hype.

What invalidates an audit❓️ Not every change. But these do: - Access control edits - Logic rewrites - New external integrations - Governance parameter changes - Dependency upgrades Security assumptions drift quietly. #web3security

Join @bockus to talk about the Bear market and why security while building in the bear is almost more important than in the Bull. Thank you @PeanutTrade for hosting.