Deddy Lavid

🚨 $80M Stablecoin Exploit, and a reminder of how fragile this model really is Stablecoins don’t fail gradually, they fail all at once. Today, Cyvers detected a major incident at @ResolvLabs, where an attacker minted ~80M unbacked $USR. No collateral was drained, this was pure supply inflation, and it immediately broke the peg. What actually happened: A flaw in the completeSwap() function allowed minting without proper validation. The attacker deposited roughly ~$100K–$200K and minted tens of millions in return. That’s a ~500:1 mismatch between supply and backing. What followed: • $USR depegged sharply to ~$0.257, a ~74% drop • Liquidity drained quickly across pools • Protocols with exposure to USR or wstUSR started seeing impact On-chain activity: • Attacker: 0x04A288a7789DD6Ade935361a4fB1Ec5db513caEd • ~$23.8M has already been swapped into ETH, currently sitting at: 0x8ED8cF0C1c531C1b20848E78f1CB32fa5B99b81C • Funds are still being moved and split across wallets Team response: Resolv has paused all protocol functions and is working on recovery. Why this matters: This wasn’t a typical exploit. This was a minting failure, and for stablecoins, that’s the worst-case scenario. Once supply is no longer backed, the peg becomes unsustainable, and confidence disappears almost instantly. We’re already seeing second-order effects across integrated protocols. Cyvers is continuing to monitor the attacker flows in real time. If you want to safeguard your platform against incidents like this: calendly.com/d/cqjd-77h-r6x… #CyversAlert #Web3Security #Stablecoins #DeFi #CryptoHack

🚨ALERT🚨Our system has detected a suspicious transaction involving @foomclub (account suspended on X) on the #Base network. An address funded by #Binance on Base deployed a malicious contract and extracted 4,588,196,709,531 $FOOM from “Foom Club: FOOM.Cash Lottery.” The stolen $FOOM was then bridged to the #Ethereum network via the #LayerZero bridge and swapped for ETH. Currently, 161 ETH (~$332K) remains in an address controlled by the exploiter. If you wish to safeguard yourself against such scams, please contact us to arrange a demo of our solution at calendly.com/d/cqjd-77h-r6x… #CyversAlert

🚨ALERT🚨Our systems detected a $600K $USDT address poisoning attack approximately more than 10 min ago. The victim was initially poisoned 32 min earlier. Today, when attempting to send funds to 0x77f6ca8E...2E087a346, the victim instead sent the transaction to the malicious look alike address 0x77f6A6F6...DFdA8A346. If you wish to safeguard yourself against such scams, please contact us to arrange a demo of our solution at calendly.com/d/cqjd-77h-r6x… #CyversAlert

🚨ALERT🚨Our systems detected a $12.3M ETH address poisoning attack approximately more than one hour ago. The victim was initially poisoned 37 hours earlier. Today, when attempting to send funds to 0x6D90CC8C…7eDdD2E48, the victim instead sent the transaction to the malicious look alike address 0x6d9052b2…34e592e48. If you wish to safeguard yourself against such scams, please contact us to arrange a demo of our solution at calendly.com/d/cqjd-77h-r6x… #CyversAlert

🚨 Cyvers publishes the 2025 Web3 Security & Fraud Report, uncovering alarming trends: ➡️ 18,815 active scam groups globally. ➡️ Authorization fraud causes $16B losses, surpassing traditional exploits. ➡️ 88% of losses by 2025 may stem from access control failures. ➡️ Supply chain vulnerabilities & legitimate signature risks are rising. ➡️ Over 140 crypto exchanges have experienced fraud at least once. How can the industry safeguard against these threats? #Web3 #CyberSecurity

🚨ALERT🚨Our system has identified multiple suspicious transactions involving @SynapLogic on the #Base network. The attacker’s address was initially funded via @TornadoCash on the #Ethereum network and subsequently bridged funds to #Base using #GasZip. The attacker executed a series of suspicious transactions, acquiring approximately 144K $SYP. The funds remain in the attacker’s contract and have not yet been swapped. The SynapLogic team has since stated: “The issue has been fully resolved. SynapLogic systems are now operating normally, and all user funds remain completely safe.” x.com/SynapLogic/sta… If you wish to safeguard yourself against such scams, please contact us to arrange a demo of our solution at calendly.com/d/cqjd-77h-r6x… #CyversAlert

🚨ALERT🚨Our systems detected a $509K $USDT address poisoning attack around 24 min ago. The victim initially sent 5K $USDT, unaware that the receiver address belonged to a scammer. The victim intended to send the funds to 0xe842....D3E6F, but mistakenly sent to 0xe842....f3e6F. Approximately two minutes later, the victim sent an additional 509K $USDT to the same incorrect address. If you wish to safeguard yourself against such scams, please contact us to arrange a demo of our solution at calendly.com/d/cqjd-77h-r6x… #CyversAlert

🚨JUST IN: SUSPECTED EXPLOIT ON @TRUEBITPROTCOL HAS OCCURRED FOLLOWING THE MOVEMENT OF $26.44M OF $ETH ~ PER CYVERS ALERTS

🚨ALERT🚨Hey @Truebitprotocol Our system has detected suspicious transaction with estimated loss of 26M! An address got around 8,535 $ETH from "Truebit Protocol: Purchase" More information will follow! If you wish to safeguard yourself against such incident, please contact us to arrange a demo of our solution at calendly.com/d/cqjd-77h-r6x… #CyversAlert

🚨ALERT🚨Our system has detected multiple suspicious transactions on the #ARB network involving a proxy contract, resulting in an estimated loss of ~$1.5M. Preliminary analysis suggests that the single deployer of the #USDGambit and #TLP projects may have lost access to their account. The attacker then deployed a new contract and updated the ProxyAdmin privileges to gain control. The stolen funds were later bridged to the #ETH network and deposited into @TornadoCash. If you wish to safeguard yourself against such incident, please contact us to arrange a demo of our solution at calendly.com/d/cqjd-77h-r6x… #CyversAlert

🚨 $50M Address Poisoning Attack A Few hours ago @CyversAlerts identified a major address poisoning theft where stolen funds were swapped and funneled into Tornado Cash. This incident underscores why Cyvers' transaction simulation and validation is critical for institutions.

🚨ALERT🚨Our system detected that @gardenfi has been hacked ~$6M across multiple chains. Most of the stolen funds are in $WBTC, $USDC, $USDT and other digital assets. However, most of the freezable assets are swapped to $ETH. Team sent on-chain message to hacker offering 10% bounty at etherscan.io/tx/0x4686d76fe… Attacker still swapping & bridging funds to $ETH network. Want to keep your company off our alerts radar? Learn how to secure your assets: Book a Demo 🚀 calendly.com/d/cpx9-yvd-vpp… #CyversAlert

🛡️ We just hit a major milestone: $500,000,000 in customer losses prevented in 2025 YTD. 🔍 Preemptive detection, real-time response, measurable impact for exchanges, wallets, custodians, financial institutions, and more. Read the full story: cyvers.ai/blog/cyvers-hi… See Cyvers in action: calendly.com/d/cqjd-77h-r6x… #Web3 #CryptoSecurity #FraudPrevention

We’re proud to partner with @Cyvers_ to embed real-time threat detection & compliance into custody. “Speed and precision matter in fraud prevention. Together with Liminal Custody, we’re setting a new standard for proactive compliance in custody.” - Meir Dolve, Co-Founder & CTO, CyVers This marks a major milestone in turning custody into a first line of defense - helping institutions, exchanges, and fintechs scale globally with confidence and compliance. Read more: dubaiweek.ae/liminal-custod… #CryptoCustody #BlockchainSecurity #Liminal

UXLink just got hacked. They ́lost over $11m. They were most likely tricked into signing a malicious transaction. Clear signing and TX check fix this.

🚨ALERT🚨Our system has detected $11.3M in suspicious transactions involving @UXLINKofficial An ETH address executed a delegateCall, removed the admin role, and called "addOwnerWithThreshold" before transferring $4M $USDT, $500K $USDC, 3.7 $WBTC, and 25 $ETH. All USDC/USDT were swapped to $DAI on $ETH network, while on Arbitrum $USDT was swapped to $ETH and bridged to $ETH network. Another address after few min received 10M $UXLINK (~$3M), began swapping, but still holds ~$2.2M unswapped (still ongoing). Want to keep your company off our alerts radar? Learn how to secure your assets: Book a Demo calendly.com/d/cpx9-yvd-vpp… #CyversAlert

🚨 A @VenusProtocol trader lost nearly $30M after falling victim to a phishing scam. @CyversAlerts confirmed it was a user-side mistake, not a protocol vulnerability. The attacker drained vUSDT, vUSDC, vXRP, vETH, and BTCB in one swoop.

@MarwekoBae @atulkhekade @oeeeeup @WalterW64317879 @Frankixdc @CyversAlerts @0xbeny I have put this matter on my priority list and am already in talks with the top 5 solutions on the market, including Cyvers. The XDC Community will soon have a proper security alerting/monitoring system on the network.

@zeroxbeny @atulkhekade @oeeeeup @WalterW64317879 @Frankixdc @CyversAlerts @0xbeny Cyvers are the best hands down and proven records . Security should not be shopped for the best deals tbh Thank you for your support

New from Cyvers 👇 Meet Cyvers Agents- AI copilots for Web3 security, fraud & compliance. 🛡️ Screen wallets 🚨 Detect fraud 📊 Assess risk ⚖️ Answer compliance queries ⏰ Generate dynamic watchlists & set real-time alerts Security just got smarter. So did compliance. 📖 Read all about it on our blog: cyvers.ai/blog/introduci… 👉 Try it now or book a demo at calendly.com/d/cqjd-77h-r6x… #Web3AI #Crypto #BlockchainAlert #Cyvers