TOBIΞ

@WakweliChain Building trust in the digital world ofc, wakweli's catch phrase 👌

First to find it gets a prize 🤑 Answer below 👇

Just so others don't make the same mistake I did: 1 - email from SR, looked completely legit, but the @ was different, I didn't notice because I literally sat down with coffee and the email came through. 2 - Went to a real SR site, looked 100% like SR, but the url was something like notifications(.)superrare(.)com 3 - prompted me to connect my wallet to see the offer details, i did, and that was it. 2 years of my life here in this space, gone in a button click. Be safer than me.

Blobs are officially live on Arbitrum 🔷 Median gas cost to swap is now around $0.05

🚨 ANNOUNCEMENT🚨 We're honored to welcome @anuragarjun, former co-founder of @0xPolygon & co-founder of @AvailProject, as a @Ternoa_ advisor! 🚀 As an @ethereum ecosystem pioneer, Anurag will share his expertise and connections to fast-track Ternoa's Tech adoption within ETH ecosystem 📅 𝗗𝗼𝗻'𝘁 𝗺𝗶𝘀𝘀 𝗼𝘂𝘁: An exclusive video AMA with @anuragarjun & @CanuMickael coming soon 🤩 👉 Got questions? Let us hear them! 🎉 𝗕𝗼𝗻𝘂𝘀: 💜 & 🔄 & 💬 ask a question for a chance to win $CAPS 1,000! We will pick 10 questions for the AMA 🎁

🚨 MICROSTRATEGY X HACKED The official X page for MicroStrategy has been compromised & is distributing wallet drainer links. They have already drained over $400k so far. Wallet Guard users are SAFE! 🫡 Share to help keep others safe! 🛡️

Just got a DM from a friend who is a mod in a Discord where someone came in and opened a support ticket and posted a voice message. The message sounded just like one of the people on the team, probably created with AI being fed bits of recorded audio (Spaces/Stages etc). The message said, "Hey dude, it's ****, my account got locked out, can you give me perms here". It was apparently fairly cohesive and didn't sound fake, and the only obvious tell that it was fake was the scammer got the name of the person wrong; IE used 'John' instead of 'Steve', for example. So while I don't expect that this will be a common method, please be aware that it's something that's happened, and tell your teams to watch out for it. If you don't have multiple ways for your team members to get in touch with each other and verify their identities, you should absolutely handle that ASAP. Don't just rely on Discord or Twitter, have a backup plan in case someone's account is compromised!

Two-factor authentication

Have seen/heard a lot of people asking about diff chains or diff wallets TL;DR - if you didn't use your wallet today, for ANY CHAIN, you're fine This is a problem for you even if you do not use a Ledger. It is not just Eth - any/all dApps/Web3 websites that might have used that code are possibly at risk. Best advice, if you can wait until tomorrow (or later??) to interact with some website, probably a good idea to just sit tight. If you MUST transact on a blockchain today, be extremely cautious. Check with the team behind the website directly to see if they have updated their code, or weren't affected. If you can't verify with the dApp/website/protocol, and you absolutely have to interact/transact- make sure you have some sort of transaction simulation which can help you understand what's going on in the back end. WalletGuard, Pocket Universe etc can provide this for you. (There are def others, I don't keep track of them all) Be paranoid!!! "Go touch grass, crypto is closed today!" - @Jon_HQ

UPDATE: The genuine Ledger Connect Kit 1.1.8 is now fully propagated. Ledger and WalletConnect can confirm that the malicious code was deactivated. You are now safe to use your Ledger Connect Kit. Reminder that that we always encourage clear signing.

👀

@brookejlacey @Trezor I have the model T since my employment at opensea and I find the touchscreen horrible to use. This said : x.com/josusanmartin/…

Today I’m grateful to be @Trezor loyal since 2014

@sxtvik And something in your plate.

@sxtvik It is not about happiness, it's about having a fucking roof on top of your head.

You make money. Then what? You buy a house, retire your parents, put money aside for your kids, go on a world tour, buy luxury items, eat well. Then what? Is this fulfilling? Does it bring happiness? I just don’t understand it.

@Plumferno 👆👆👆

I see SO MANY jobs that I'd prob be really good at... except they want "senior" whatever, dozens of letters on expensive certs, and/or no remote workers. Job been open for weeks, months, still no one hired. Good luck I guess?

🚨We have identified and removed a malicious version of the Ledger Connect Kit. 🚨 A genuine version is being pushed to replace the malicious file now. Do not interact with any dApps for the moment. We will keep you informed as the situation evolves. Your Ledger device and Ledger Live were not compromised.

@fakenine_ 👆

Incroyable cette histoire avec Ledger. Va falloir qu'on se remette en question sur la centralisation des outils pour les devs, et leur sécurité. Comment ça y'a du code obfusqué avec un gros DrainerPopup qui est passé sur la branche main d'un truc utilisé par tout le monde ?

@MentalMonkeyM @LefterisJP @DeFi probably -> x.com/RpGmAx/status/…

@LefterisJP Should I be worried that I connected to @DeFi 5 mins ago?

A really serious issue is currently unfolding across most hosted crypto frontends. There is a supply attack on a popular connector, the @Ledger connect-kit. It has been infected with a drainer, which you can confirm by deobfuscating the code. Be extra vigilant!

"...but before the bullish movement, let's drain your wallets"

🚨🚨🚨 RED ALERT 🚨🚨🚨: Do not interact with ANY dApps until further notice. It appears that a commonly used web3 connector has been compromised which allows for injection of malicious code affecting numerous dApps.