Sabitlenmiş Tweet
We have officially submitted our listing application to @CoinGecko! 🦎
Request ID: CL2605260006 Track $REKT on GeckoTerminal:
geckoterminal.com/eth/tokens/0xf…
English
REKT academy
55 posts
REKT academy
@Rekt_Academy
The ultimate Web2 & Web3 cyber security ecosystem Labs • AI Agents • Research Hub • Contributor Model • Academy Fueled by $REKT
Global Katılım Şubat 2026
24 Takip Edilen87 Takipçiler
@maraoz Unfortunately, we agree.
As a response we are building a full product suite to educate developers before they $REKT themselves and provide tooling.
The asymmetry is real
Cyber Security is going to become more important than ever and the stakes (TVL) are HIGH.
English
PSA: I now consider *all* of DeFi unsafe.
Coding agents are superhuman at finding vulnerabilities, and smart contract security is too asymmetric: defenders need to fix every bug while attackers need just one exploit to steal funds.
English
We've officially submitted the "Cyber Security" meta to @dexscreener
It's time to highlight the defenders of Web3.
$REKT is stepping up to be the flagship project to lead this new sector.
Let's secure the trenches
CA:
0xF4fbc428Ecf1e855F4079629Cf2c38148f291728
English
Thanks @GoPlusSecurity and @blockaid_ for clearing the security alerts for our CA.
We are now error free and fully trading on @Uniswap
Currently pending @coingecko approval
We are bootstrapping the $ETH network
CA:
0xF4fbc428Ecf1e855F4079629Cf2c38148f291728
English
🔥 HOT TOPIC: Vitalik breaks silence on EF shift
Eight senior researchers have exited the Foundation in 2026. Vitalik says the EF will sell less ethereum:native going forward and refocus on core research only.
What does this mean for ethereum:native long-term? 👇
coinmarketcap.com/community/topi…
English
@web3_antivirus @Google @Uniswap Pretty sad how @Google profits of this with zero consequences.
Googles own very specific ad terms and conditions state "Limitation of Liability" and although several victims have taken legal action, no court has ordered Google to hand over restitution.
English
Update on the fake Uniswap search ad issue.
2 scammers have reportedly already stolen around $400K through a phishing @Google ad impersonating @Uniswap.
This is the same pattern we warned about earlier: attackers buy search traffic, place fake sponsored results above real links and wait for users to connect their wallets.
Always verify links through the official social media accs, trusted directories or take a moment to find a project’s real website before connecting your wallet.
Web3 Antivirus@web3_antivirus
Search ads are still one of the easiest ways to drain a wallet. A Uniswap user reportedly lost a 6fig portfolio after clicking a sponsored Google result that looked legit. The wallet was connected to a fake site, a transaction was signed and that altogether lead to the funds withdrawal. It's 2026 and scam links are still sitting at the top of search results. This is exactly how drainers scale by buying traffic, copying the interface and waiting for victims to sign. Double check the domain before connecting your wallet.
English
@marver Interesting resource, thanks for sharing.
Sadly we suspect they are actual vulnerable hosts and not honey pots.
English
While everyone was on Holiday we scanned the Internet for #BadHost (CVE-2026-48710): zero auth required, affecting FastAPI, vLLM, LiteLLM, and many more - basically the whole AI infra stack!
What we found is: clinical trial databases, email mailboxes, MCP server for SSH industrial IoT via bastion servers, and live PII APIs wide open. The FastAPI/MCP ecosystem is sitting exposed - patch to Starlette 1.0.1 NOW and check your exposure at badhost.org
English
@lonelysloth_sec Audit for Protocol X: "Looks secure."
Audit for Protocol Y: "Looks secure."
Putting them together: "Aaand it's gone."
English
One interesting thing about DeFi is that there are so many integrations that basically every protocol is a potential attack vector for every protocol.
You choose protocol X as a target. Actual exploit is flashloan from protocol Y to manipulate an oracle in protocol Z, that will be forwared by protocol A to chain B, triggering an action in protocol C that finally calls protocol X and exploits that rounding issue nobody thought was important.
English
@immunefi @MitchellAmador @Ehsan1579 This was an excellent episode.
The demand for cyber security professionals is only growing.
We are rolling out an academy, vulnerable labs in the cloud, and a large exploit database - specializing in web2 and web3
We will .pcap all lab data for own AI proprietary database.
English
At 21, Ehsan went from nearly homeless to earning $1.4M+ in bug bounties in under a year.
No degree. No formal training. Just 15-hour days in public libraries, ruthless discipline, and an obsession with finding bugs others missed.
New episode with @MitchellAmador and @Ehsan1579
English
@0xsadikbaba This is one of the reasons why we launched and our soon to be published tokenomics are designed to reward contributors within the cybersecurity industry
English
Whether you Like it or not what i talked about, is nothing but truth
Grey hat hackers are often frustrated white hats who got denied or ignored too many times.
They find critical bugs, responsibly report them and wait 6 months only to get rejected or ghosted. Projects rush to close reports to avoid paying. Git commits don’t lie.
So they switch. they exploit the vulnerability, then open negotiation. They keep the full impact in hand but usually return most of the funds once a fair bounty is paid.
They still have a white heart they don’t want to steal. But repeated bad behavior from projects and platforms pushes them into grey territory.
This is exactly why we need real rules, accountability, and fast resolutions in bug bounties. Don’t turn good white hats into grey hats.
We can do better.
Sadik@0xsadikbaba
They think I support black hats. Some get it, some dont White hats spend months finding bugs and responsibly reporting them. They have families to feed too. What we need is a fair system with clear rules and regulations not just payment promises. Too many white hats wait 2-6 months for reports to be accepted/denied. Some projects rush to close reports just to avoid paying. Git commits don’t lie. We need real accountability: ability to file complaints or even sue projects that don’t pay valid bounties. Bounty platforms should resolve issues quickly instead of banning white hat profiles for spamming. This is in the heart of most white hats. Many just can’t express it well. Don’t push white hats into becoming grey hats. Who are grey hats? Did you know them? Lets discuss better bounty practices.
English
@Defi_Warhol @VerusCoin @THORChain @trustedvolumes @TransitFinance @EkuboProtocol @KelpDAO @DriftProtocol And this is exactly why we have launched rektacademy
English
📂 Key Crypto / DeFi Hacks
┃
┣ 📂 May
┃ ┣ 📂 @VerusCoin ($11.6M)
┃ ┣ 📂 @THORChain ($10.8M)
┃ ┣ 📂 @trustedvolumes ($6.7M)
┃ ┣ 📂 @TransitFinance ($1.88M)
┃ ┗ 📂 @EkuboProtocol ($1.4M)
┃
┣ 📂 April
┃ ┣ 📂 @KelpDAO ($292M)
┃ ┣ 📂 @DriftProtocol ($285M)
┃ ┣ 📂 @rhea_finance ($18.4M)
┃ ┣ 📂 Grinex ($13M)
┃ ┣ 📂 @wasabi_protocol ($5M)
┃ ┣ 📂 @volo_sui ($3.5M)
┃ ┣ 📂 @hyperbridge ($2.5M)
┃ ┗ 📂 @CoWSwap ($1.2M)
┃
┣ 📂 March
┃ ┣ 📂 @ResolvLabs ($23M)
┃ ┣ 📂 @SolvProtocol ($2.7M)
┃ ┗ 📂 @VenusProtocol ($2M+ bad debt)
┃
┗ 📂 TBD
HT
@Cointelegraph As per @Google terms and conditions they take zero legal responsibility for this, but they do profit.
English
🚨 NEW: Scammers have pocketed at least $400,000 by running fake Uniswap phishing ads on Google Search.
Always verify links through official channels before connecting your wallet.
English