Decurity

343 posts

Decurity

@DecurityHQ

DeFi Security | Tier-1 Security Audit Firm | Top-2 in @Paradigm and @OpenZeppelin CTF | Public audits: https://t.co/CqYGRNibvj

Katılım Ekim 2011

73 Takip Edilen3.5K Takipçiler

Decurity retweetledi

Defimon Alerts@DefimonAlerts·12 May

⛑️ Defimon caught a live CPIMP-style backdoor on a production protocol, alerted the team, and the funds were locked down before the attacker could fire. Previously the exploiters who front-run initialize() call set several known implementation slots automatically. After @etherscan added ">1 implementation" label, such attempts were easily exposed. The exploiters are more stealthy now. They overwrite impl slot precisely, emit fake "Upgraded" events and even verify a copy of the real impl with their backdoor. In this case the backdoor was hidden inside what looks like a stock OpenZeppelin file: Initializable.sol. The exploiter was definitely waiting for more funds to drain, so our timely alert helped to neutralize the threat before they could activate the backdoor.

English

2.8K

Decurity@DecurityHQ·12 May

@miteshmetha Interesting idea

English

146

Mitesh Metha@miteshmetha·12 May

@DecurityHQ why aren’t security teams forming a kill switch mechanism colloratively One contract holds pause role across participating protocols. Anyone can trigger it by staking X ETH. Valid threat → staker earns a bounty False alarm → stake forfeited to protocol

English

182

Decurity@DecurityHQ·12 May

1/ Many DeFi hacks aren't atomic. We reconstructed per-tx timelines for 10 exploits where the drain ran for minutes to hours to ask one question: how much could have been saved after the first malicious tx? 🧵

English

3.5K

Decurity@DecurityHQ·12 May

Full research: per-tx timelines, recovery breakdowns and more. rescue-window.decurity.io @DefimonAlerts - real-time detection and incident response for DeFi protocols. $2.5M rescued to date. defimon.xyz

English

365

Decurity@DecurityHQ·12 May

4/ Balancer V2 reached 54% of funds-at-risk in minute one, 93% by minute five. Even at that speed, @BitFinding's whitehat bot intercepted the attacker in the very next block - 12 seconds after the first malicious tx. ~$1M returned to Balancer DAO.

English

894

Decurity retweetledi

thedao.fund@thedaofund·10 May

Real-time DeFi monitoring is how anomalies get caught early. @DefimonAlerts is building not only an alert system, but also a white hat rescue bot that can protect defi in real time. Learn more: youtube.com/watch?v=ioGtup… Support: qf.giveth.io/project/defimo…

YouTube

English

1.9K

Decurity@DecurityHQ·27 Nis

Bug Machine firmware v2.0 dropping soon. Patch notes: even more bugs found. 🤖 Congrats to our own @dan_fronts!

HackenProof@HackenProof

Meet our Bug Machine @dan_fronts - 20 paid reports in under 2 months 🔥 @dan_fronts joined HackenProof in February and didn't wait to warm up: he delivered 20 validated, paid reports. Thank you for your work - this is only the beginning. The community sees you. Keep going!

English

655

Decurity retweetledi

Defimon Alerts@DefimonAlerts·24 Nis

⛑️ Defimon is live in the Ethereum Security QF round on @Giveth! Our incident response & white-hat defense has saved $2M+ so far. Thanks to quadratic funding (500 ETH matching pool by @thedaofund), a $10 donation can be worth $5K+. Round ends May 15. qf.giveth.io/project/defimo…

English

3.5K

Decurity@DecurityHQ·23 Nis

How we cut block latency 4x and scaled exploit detection to 8 chains: our CTO @theRaz0r shares insights on how @DefimonAlerts works under the hood on the @Quicknode blog 👇

Quicknode@Quicknode

New on the Quicknode blog: @DecurityHQ's CTO on how Streams let them rebuild Defimon from polling to push, cut block latency from 2s to under 0.5s, and scale exploit detection across 8 chains with one engineer running the pipeline. blog.quicknode.com/real-time-defi…

English

2.2K

Decurity@DecurityHQ·10 Nis

6/ Detection alone isn't enough anymore. In an AI-accelerated threat landscape, only AI defenders can keep pace with AI-powered attackers. That's why we're doubling down on automated AI incident response - turning Defimon from a watchtower into a first responder. More to come soon. 🛡️

English

408

Decurity@DecurityHQ·10 Nis

5/ And other smaller rescues are documented on our @Giveth project page. giveth.io/project/defimo…

English

473

Decurity@DecurityHQ·10 Nis

1/ Since inception, Decurity has focused on real-time threat prevention. Our flagship product @DefimonAlerts has prevented hacks with direct impact exceeding $20M. But in 2025-2026, the world changed. AI is disrupting cybersecurity - and we had to adapt. 🧵

Anthropic@AnthropicAI

Introducing Project Glasswing: an urgent initiative to help secure the world’s most critical software. It’s powered by our newest frontier model, Claude Mythos Preview, which can find software vulnerabilities better than all but the most skilled humans. anthropic.com/glasswing

English

Decurity@DecurityHQ·9 Nis

⚡ Every second matters when a DeFi exploit hits onchain. That's why we moved @DefimonAlerts from self-managed pipelines to @QuickNode Streams and went from 3 chains to 8, cut latency 4x, and freed us to focus on what actually matters - detection.

Quicknode@Quicknode

DeFi exploits don't wait. Neither does @DefimonAlerts, built by @DecurityHQ. 8 chains. Sub-second alerts. $48K/year in infra costs gone. Powered by Quicknode Streams. Full story: quicknode.com/case-studies/d…

English

2.9K

Decurity@DecurityHQ·7 Nis

Another half a million rescue by @DefimonAlerts!

Defimon Alerts@DefimonAlerts

⛑ $512K rescued by Defimon after infinite approvals were granted to @squidrouter multicall The SquidMulticall contract's run() function allows anyone to execute arbitrary external calls with no access control. A wallet 0xacc0 mistakenly approved the multicall contract instead of the router contract and did it across multiple chains. It didn't take a long time before first attack - a MEV-bot called run() with a crafted Call struct that executed transferFrom() on the WETH contract, transferring just 1 WETH from a victim. In fact the victim user had around $800K approved to the mulitcall contract on various chains. After we detected the first attack our whitehat bot identified the vulnerable cross-chain approvals and managed to rescue around $512K. We contacted the person via Blockscan chat and returned all the rescued funds. We learnt that it was an operational mistake: "we were supposed to only approve to the Squid router address". Although some funds were lost, 0xacc0 was happy that the majority of the funds was rescued! First attack: bscscan.com/tx/0x81d0c429e… Victim: bscscan.com/address/0xaCc0… SquidMulticall: bscscan.com/address/0xaD6C… Rescued funds consolidation address: debank.com/profile/0xF50D…

English

2.2K

Decurity@DecurityHQ·3 Nis

🫡 Our monitoring system saved $120K for a protocol after an initial attack was detected.

Defimon Alerts@DefimonAlerts

x.com/i/article/2017…

English

1.5K

Keşfet

@etherscan @miteshmetha @DefimonAlerts @BitFinding @dan_fronts @Giveth @thedaofund @theRaz0r