0xIcebear 🐻‍❄️ 🦇 🔊

Repeating kids jokes after no one laughs is top tier comedy 😭

2022'de kurucu üyesi olduğum @odtublockchain'de 4 yıl boyunca birçok projenin tasarımını ve arayüzünü üstlendim. 6 Şubat 2026'da @Noetherdex'in @StellarOrg'dan grant alma süreci için ücreti karşılığında (ortaklık olmadan) anlaştık. 19 Mart'a kadar 42 gün boyunca çalıştım ve proje grant aldı. Süreçteki bazı pürüzleri "yanlış anlaşıldık" dedikleri için tatlıya bağlayıp beklemeye geçtim. Önce "Tranche 1'den sonra yatacak" denilen ödemem, 45 gün bekledikten sonra "Tranche 3'e" ertelendi. Bugün Haziran sonu için garanti (senet) istediğimde ise anlaştığımız aylık ücretin değil, kuruculardan birinin emeğime "kendince" biçeceği değerin ödeneceğini öğrendim. 19 Mart öncesi tüm branding ve tasarımlar bana ait olmasına rağmen emeğimin karşılığı bu şekilde hiçe sayılıyor. On-chain çalışanlara tavsiyem: İşe başlamadan mutlaka gerekli evrakları ve sözleşmeleri imzalayın. Bazı dersler maalesef bu şekilde alınıyor. 👇 🇬🇧 EN: As a founding member of METU Blockchain from 2022 to 2026, I led the design and UI for numerous projects. On Feb 6, 2026, I agreed to work for a fee (no equity) to help @Noetherdex secure a @StellarOrg grant. I worked for 42 days straight until March 19, and the project successfully secured the grant. After initial friction was excused as a "misunderstanding," I apologized and waited for my payment. First promised after "Tranche 1," I asked again after 45 days only to be told it was delayed to "Tranche 3." Today, when I asked for a written guarantee for the end of June, I was suddenly told that our agreed monthly fee was off the table, and one of the founders would arbitrarily "calculate" what my work was worth. All branding and designs prior to March 19 belong to me, yet my labor is being disregarded. My advice to all Web3/On-chain workers: Always sign contracts before starting any work. Some lessons are learned the hard way.

A secondary effect of defi united is that it will likely lead to more capital concentration Having your capital in a big protocol will be safer than in a small one because if there’s a hack ecosystem is more likely to cover for it

Ahhhh this is how all projects should be analyzed: identifying ways how money can be lost. From all the dependencies. Excellent stuff!

Lazarus waiting for the Aave hole to be effectively filled by DeFi United before unleashing their next hack.

the kelp rsETH post-mortem is wild lazarus (dprk) compromised two rpc nodes that layerzero dvn was relying on. swapped the op-geth binaries. wrote a custom payload that forged messages *only when the dvn queried* - every other IP, including monitoring, saw clean truthful data. then they DDoS'd the healthy RPCs to force failover onto the poisoned ones. drained $290M. self-destructed the malicious binaries to erase tracks. they targeted rsETH because kelp ran a 1-of-1 DVN config with layerzero as sole verifier

so this is the “purge” in the eth 2 roadmap

1/ LlamaRisk is stepping up risk at @aave. We are expanding our mandate to deliver comprehensive risk coverage across V3, V4, and Horizon- operating as a core pillar of the protocol as it scales into its next phase.

I am seeing this myth being spread around that the core development team of Aave left. This is indeed false. While Aave labs built V3 up to the 3.0.1 and bgd took over the progressive updates till 3.6, Labs has been independently security reviewing every single V3 iteration that was released, sometimes providing feedback to bgd or finding bugs. While the code was developed by bgd, Labs team still has excellent proficiency with it. The team lead @miguelmtzinf has been developing Aave as a core contributor since Aave V2 and his knowledge is second to none. Additionally, V3 is at the end of its development cycle and requires basically no upgrades, so the only focus will be threat monitoring, which again we have always been doing. All new features and protocol extensions that are planned will be built on Aave V4 because the V4 infrastructure enables them. BGD has no contributions to V4, therefore the development is in pretty strong shape.

Our v3 @immunefi bug bounty is now open. Rewards up to $300k. Jump in.

Crazy times to be a blockchain developer

LinkedIn bends the knee for Israel and Mossad. They specifically search to "anti-zionist" hints in your web browser plugin context, encrypt the data and send to Israeli firm. LinkedIn’s scan reveals the religious beliefs, political opinions, disabilities, and job search activity of identified individuals. LinkedIn scans for extensions that identify practicing Muslims, extensions that reveal political orientation, extensions built for neurodivergent users, and 509 job search tools that expose who is secretly looking for work on the very platform where their current employer can see their profile. browsergate.eu

we just built git for video editing.

Foundry mined 7 consecutive Bitcoin blocks and caused a 2-block reorg Nobody outside of the Bitcoiners who follow the Bitmex research account are talking about it because the normie radar saw price bouncing back to $71K Mining concentration is the story nobody wants to have

Balancer proposes a survival restructuring after the V2 exploit in Nov 2025. - Balancer Labs winds down. Operations consolidate under OpCo - Team cut from ~25 to 12.5. Budget down 34% to $1.9M per year - veBAL... dead. $500K compensation to locked holders over 6 months - All BAL emissions stopped. - 100% of protocol fees now go to DAO treasury (was ~17.5%) - V3 protocol fee cut from 50% to 25% so LPs keep more Annual deficit drops from $2.6M to $700K. Runway extends from 4 years to ~9. Very sad to see as I received the BAL airdrop and had great fun LPying on it. Good times. Though I haven't used Balancer in quite a while.

@gabrieldehyrule @memecrashes water doesnt need to boil in order to steam, heat just increases the rate of evaporation.

@0xIcebear @memecrashes if your GPUs are getting hot enough to boil water, you are in big trouble

there's a really good reason why you don't wanna do this

Resolv gets exploited. USR depegs 90%. Somewhere, a crypto card user is still seeing "4.5% USD yield" on their app They have no idea what just happened. They don't know their app's treasury was routing through vaults exposed to USR if they haven't read through the specifics. They don't know what USR is. They didn't sign up for defi risk they signed up for This is the hidden architecture of consumer crypto products. The yield has to come from somewhere and when that somewhere blows up, the gap between what users see and what is actually happening underneath is enormous The real problem isn't the minting flaw. It is that the risk was too complex for the non-CT user to fully understand

If anyone else is affected by coinbase shutting down their commerce accounts you can use checkout.llamapay.io It's API is a drop-in replacement for coinbase commerce so you can switch by just replacing urls and keys Plus much more efficient + lower cost

We’re currently investigating a potential malicious event affecting the Neutrl front end. Our team is actively investigating. Out of an abundance of caution, please do not interact with the website until further updates are provided.