Sabitlenmiş Tweet
CareCircle , an app design made by MoonChild AI. It was easy to make this and the design is amazing
@AmenaiSabuwala
English
Block Nexus 90
5.6K posts
Block Nexus 90
@Block_Nexus90
Blockchain enthusiast and digital asset explorer. Always learning, and ready.
Earth Katılım Mayıs 2025
1K Takip Edilen111 Takipçiler
Block Nexus 90 retweetledi
Block Nexus 90 retweetledi
gm builders ☀️
If you’re still copy-pasting wallet addresses in 2026, we should talk.
Readable crypto ≠ luxury. It’s basic UX.
English
Block Nexus 90 retweetledi
Your crypto identity shouldn’t expire every year.
FIO Domains
• Human-readable
• Chain-agnostic
• Secure for 50+ years
Own your name. Long term.
🔗 app.fio.net/fio-domain
English
Block Nexus 90 retweetledi
Crypto payments shouldn’t start with “send me your address.”
They should start with a request with who, what, and why built in.
Learn how FIO Request works: fio.net/discover/fio-r…
English
@0xrwu Any updates on $tnsr ? Working on something big behind the scenes ?
English
Block Nexus 90 retweetledi
Fork testing hits different on Flow.
Cadence gives you real mainnet contracts as readable source code, importable like libraries, composable in a single transaction, with real accounts and real state. No ABIs. No proxies. No redeploys.
Flow Devs@flow_developers
English
Block Nexus 90 retweetledi
Block Nexus 90 retweetledi
Block Nexus 90 retweetledi
Block Nexus 90 retweetledi
🚨 UPDATE: @flow_blockchain says all counterfeit $FLOW tokens have been recovered and locked on chain for destruction by January 30, completing a multi phase recovery process.
Does this response set a new benchmark for incident recovery and governance transparency?
English
Block Nexus 90 retweetledi
From a builder’s POV, the real signal here isn’t just the recovery, it’s how tightly scoped everything was.
Authority was limited, actions were validator-approved, and every step was auditable on-chain. Once the job was done, emergency access was rolled back.
That distinction matters. It’s the line between responsible intervention and centralization.
Flow.com@flow_blockchain
Isolated Recovery Complete – Counterfeit FLOW Recovered This morning, the final recovery of outstanding counterfeit FLOW from remaining centralized exchanges, including Binance and HTX, was executed by the Community Governance Council. As of today, all counterfeit FLOW traced by forensic firms has been successfully recovered and is now isolated and restricted on-chain pending destruction. This marks the conclusion of Phase 4 of the Isolated Recovery Plan, fulfilling the mandate ratified by the validator network via super-majority consensus. With the recovery complete, the Foundation has scheduled for tomorrow, Jan 13th, 2026 the removal of elevated access used by the Community Governance Council for recovery operations. This temporary emergency measure, deployed for the first time in Flow’s five-year history, was critical for this surgical recovery. It is important to remind everyone that any power given to and action taken by the Governance Council is fully transparent and auditable onchain. Furthermore, any changes to node software must be approved by a majority of network validators in order to proceed. Permanent destruction of counterfeit tokens is scheduled for January 30th, 2026. In the interim, external legal counsel and forensic partners are coordinating with exchanges to assess user exposure. The Foundation is fully committed to cooperate with exchange partners to facilitate a prompt return to full functionality across every trading venue. Coinbase, Kraken, and Gate have already resumed their deposit and withdrawal services. We want to thank our community of believers, ecosystem partners, infrastructure providers, and the cooperative exchange teams who made this targeted and orderly recovery feasible. The surgical removal of the threat is complete, the network is restored, and Flow is ready to move forward stronger than before.
English
Block Nexus 90 retweetledi
Isolated Recovery Complete – Counterfeit FLOW Recovered
This morning, the final recovery of outstanding counterfeit FLOW from remaining centralized exchanges, including Binance and HTX, was executed by the Community Governance Council.
As of today, all counterfeit FLOW traced by forensic firms has been successfully recovered and is now isolated and restricted on-chain pending destruction. This marks the conclusion of Phase 4 of the Isolated Recovery Plan, fulfilling the mandate ratified by the validator network via super-majority consensus.
With the recovery complete, the Foundation has scheduled for tomorrow, Jan 13th, 2026 the removal of elevated access used by the Community Governance Council for recovery operations. This temporary emergency measure, deployed for the first time in Flow’s five-year history, was critical for this surgical recovery. It is important to remind everyone that any power given to and action taken by the Governance Council is fully transparent and auditable onchain. Furthermore, any changes to node software must be approved by a majority of network validators in order to proceed.
Permanent destruction of counterfeit tokens is scheduled for January 30th, 2026. In the interim, external legal counsel and forensic partners are coordinating with exchanges to assess user exposure. The Foundation is fully committed to cooperate with exchange partners to facilitate a prompt return to full functionality across every trading venue. Coinbase, Kraken, and Gate have already resumed their deposit and withdrawal services.
We want to thank our community of believers, ecosystem partners, infrastructure providers, and the cooperative exchange teams who made this targeted and orderly recovery feasible. The surgical removal of the threat is complete, the network is restored, and Flow is ready to move forward stronger than before.
Flow.com@flow_blockchain
Flow Network Exploit Post-mortem On December 27, 2025, an attacker exploited a vulnerability in the Flow network to counterfeit tokens, extracting approximately $3.9 million USD across bridges. No existing user balances were accessed or compromised. The attack duplicated assets but did not touch legitimate holdings, with the vast majority of counterfeit assets being contained onchain or frozen by exchange partners before they could be liquidated. Network validators have ratified a decentralized governance action authorizing the permanent destruction of 100% of counterfeit assets. The network resumed operations on December 29th and is operating as expected with full transaction history preserved. Attack Vector The attack demonstrated significant technical sophistication. The attacker deployed over 40 malicious smart contracts in a coordinated sequence, exploiting a three-part attack chain: 1) Attachment import validation bypass 2) Circumvention of defensive checks on built-in types 3) Exploitation of contract initializer semantics. The root cause was a type confusion vulnerability in the Cadence runtime (v1.8.8), now patched (v1.8.9 and later). The flaw allowed the attacker to disguise a protected asset (which should be non-copyable) as a standard data structure (which can be copied), bypassing the runtime's safety checks and enabling token counterfeiting. Remediation Beyond bridging assets out of Flow, the attacker attempted to deposit counterfeit FLOW across several CEX, with many exchange partners freezing the deposits upon receipt due to the abnormal size and internal AML protocols. Approximately 50% of those counterfeit FLOW deposits have already been returned by cooperative exchange partners (OKX, Gate, MEXC) and destroyed, and the Foundation is actively coordinating with remaining exchanges. The network was restored on December 29, 2025, via an Isolated Recovery Plan that preserves all legitimate transaction history. This approach was selected following ecosystem-wide consultation with exchanges, bridge operators, and infrastructure partners. The Isolated Recovery Plan was chosen specifically to avoid reconciliation risk for off-chain custodial systems and cross-chain protocols maintaining independent state. The Foundation is cooperating with blockchain forensic partners including zeroShadow and Find Labs and relevant law-enforcement authorities to support ongoing investigations. Full technical details of the vulnerability, exploit mechanism, forensic analysis, and remediation architecture are linked in the comment.
English
Block Nexus 90 retweetledi
Flow:伪造的FLOW代币已全部追回,销毁定于1月30日进行
Flow在X平台发布攻击事件更新:其社区治理委员会已完成对包括币安和HTX在内的中心化交易所中未清算的伪造FLOW代币的最终追回工作。
截至目前,所有由法证公司追踪的伪造代币已被成功追回,并在链上隔离锁定以待销毁,这标志着隔离恢复计划第四阶段的完成。
基金会计划于2026年1月13日撤销社区治理委员会在恢复操作期间使用的临时提升权限。该紧急措施在Flow五年历史中首次启用,其所有操作均链上透明且可审计。伪造代币的永久销毁定于2026年1月30日进行。在此期间,外部法律顾问与法证合作伙伴正与交易所协调评估用户受影响情况。基金会承诺全力配合交易所合作伙伴,以尽快全面恢复各交易平台功能。Coinbase、Kraken和Gate已重启存取款服务。
Flow.com@flow_blockchain
Isolated Recovery Complete – Counterfeit FLOW Recovered This morning, the final recovery of outstanding counterfeit FLOW from remaining centralized exchanges, including Binance and HTX, was executed by the Community Governance Council. As of today, all counterfeit FLOW traced by forensic firms has been successfully recovered and is now isolated and restricted on-chain pending destruction. This marks the conclusion of Phase 4 of the Isolated Recovery Plan, fulfilling the mandate ratified by the validator network via super-majority consensus. With the recovery complete, the Foundation has scheduled for tomorrow, Jan 13th, 2026 the removal of elevated access used by the Community Governance Council for recovery operations. This temporary emergency measure, deployed for the first time in Flow’s five-year history, was critical for this surgical recovery. It is important to remind everyone that any power given to and action taken by the Governance Council is fully transparent and auditable onchain. Furthermore, any changes to node software must be approved by a majority of network validators in order to proceed. Permanent destruction of counterfeit tokens is scheduled for January 30th, 2026. In the interim, external legal counsel and forensic partners are coordinating with exchanges to assess user exposure. The Foundation is fully committed to cooperate with exchange partners to facilitate a prompt return to full functionality across every trading venue. Coinbase, Kraken, and Gate have already resumed their deposit and withdrawal services. We want to thank our community of believers, ecosystem partners, infrastructure providers, and the cooperative exchange teams who made this targeted and orderly recovery feasible. The surgical removal of the threat is complete, the network is restored, and Flow is ready to move forward stronger than before.
中文
Block Nexus 90 retweetledi
Block Nexus 90 retweetledi
While this may seem inconspicuous, the ability to isolate and recover all counterfeit FLOW tokens sent to centralized exchanges is a large feat - it took a rapid response and many layers of cross-team coordination to get this done.
Flow.com@flow_blockchain
Isolated Recovery Complete – Counterfeit FLOW Recovered This morning, the final recovery of outstanding counterfeit FLOW from remaining centralized exchanges, including Binance and HTX, was executed by the Community Governance Council. As of today, all counterfeit FLOW traced by forensic firms has been successfully recovered and is now isolated and restricted on-chain pending destruction. This marks the conclusion of Phase 4 of the Isolated Recovery Plan, fulfilling the mandate ratified by the validator network via super-majority consensus. With the recovery complete, the Foundation has scheduled for tomorrow, Jan 13th, 2026 the removal of elevated access used by the Community Governance Council for recovery operations. This temporary emergency measure, deployed for the first time in Flow’s five-year history, was critical for this surgical recovery. It is important to remind everyone that any power given to and action taken by the Governance Council is fully transparent and auditable onchain. Furthermore, any changes to node software must be approved by a majority of network validators in order to proceed. Permanent destruction of counterfeit tokens is scheduled for January 30th, 2026. In the interim, external legal counsel and forensic partners are coordinating with exchanges to assess user exposure. The Foundation is fully committed to cooperate with exchange partners to facilitate a prompt return to full functionality across every trading venue. Coinbase, Kraken, and Gate have already resumed their deposit and withdrawal services. We want to thank our community of believers, ecosystem partners, infrastructure providers, and the cooperative exchange teams who made this targeted and orderly recovery feasible. The surgical removal of the threat is complete, the network is restored, and Flow is ready to move forward stronger than before.
English
Block Nexus 90 retweetledi
Block Nexus 90 retweetledi
One thing worth highlighting from the Flow post-mortem is the complexity of the attack.
Cadence removes most common smart contract exploit classes by design, making re-entrancy, balance drains, and direct user fund theft extremely hard.
The attacker couldn’t steal funds, only duplicate resources in accounts they controlled, after months of planning, 40+ contracts, and a three-stage execution-layer attack.
Flow.com@flow_blockchain
Flow Network Exploit Post-mortem On December 27, 2025, an attacker exploited a vulnerability in the Flow network to counterfeit tokens, extracting approximately $3.9 million USD across bridges. No existing user balances were accessed or compromised. The attack duplicated assets but did not touch legitimate holdings, with the vast majority of counterfeit assets being contained onchain or frozen by exchange partners before they could be liquidated. Network validators have ratified a decentralized governance action authorizing the permanent destruction of 100% of counterfeit assets. The network resumed operations on December 29th and is operating as expected with full transaction history preserved. Attack Vector The attack demonstrated significant technical sophistication. The attacker deployed over 40 malicious smart contracts in a coordinated sequence, exploiting a three-part attack chain: 1) Attachment import validation bypass 2) Circumvention of defensive checks on built-in types 3) Exploitation of contract initializer semantics. The root cause was a type confusion vulnerability in the Cadence runtime (v1.8.8), now patched (v1.8.9 and later). The flaw allowed the attacker to disguise a protected asset (which should be non-copyable) as a standard data structure (which can be copied), bypassing the runtime's safety checks and enabling token counterfeiting. Remediation Beyond bridging assets out of Flow, the attacker attempted to deposit counterfeit FLOW across several CEX, with many exchange partners freezing the deposits upon receipt due to the abnormal size and internal AML protocols. Approximately 50% of those counterfeit FLOW deposits have already been returned by cooperative exchange partners (OKX, Gate, MEXC) and destroyed, and the Foundation is actively coordinating with remaining exchanges. The network was restored on December 29, 2025, via an Isolated Recovery Plan that preserves all legitimate transaction history. This approach was selected following ecosystem-wide consultation with exchanges, bridge operators, and infrastructure partners. The Isolated Recovery Plan was chosen specifically to avoid reconciliation risk for off-chain custodial systems and cross-chain protocols maintaining independent state. The Foundation is cooperating with blockchain forensic partners including zeroShadow and Find Labs and relevant law-enforcement authorities to support ongoing investigations. Full technical details of the vulnerability, exploit mechanism, forensic analysis, and remediation architecture are linked in the comment.
English
