TM

Energy Minister Daryl Vaz says communication from the Jamaica Public Service (JPS) “is not enough” and has demanded more detailed updates on power restoration efforts following Hurricane Melissa. #GLNRToday #MelissaAftermath

@MintPressNews respec mi G

Despite being under crippling U.S. sanctions that have devastated its economy and blocked access to vital imports, Venezuela has sent 46 tons of humanitarian aid — including food, medicine, and emergency supplies — to Cuba and Jamaica following the recent hurricane. The aid mission, coordinated by Venezuela’s Civil Protection Agency and Bolivarian Armed Forces, highlights how a sanctioned nation continues to stand in solidarity with its neighbors, while wealthier Western nations remain absent from the relief effort. Officials said the mission reflects the values of ALBA (Bolivarian Alliance for the Peoples of Our America) — mutual aid and sovereignty among nations resisting U.S. hegemony.

@WFPChief @wfp_Caribbean @WFP_es @LolaCastroWFP @francediplo_EN @WFPGovts Big up

#HappeningNow: The first shipment of emergency relief supplies is officially sailing to Jamaica to support communities hardest hit by #HurricaneMelissa. Thank you France for your partnership! 🇫🇷 🇺🇳

@nayibbukele Big up ur self mi G

El Salvador will send 3 humanitarian aid planes to Jamaica tomorrow. 
More than 300 rescuers will take part in this mission, and we will send over 50 tons of supplies to support those affected by the devastation caused by Hurricane Melissa. “God loves a cheerful giver.”

xQc reveals he caught Hasan’s orbit talking sh*t about him at TwitchCon “In partner lounge..next to me..somebody who Hasan worked w & a lot of his friends..in a little round table..I heard my name twice..I know they’re talking sh*t..I was behind big plant”

Master Web3 🚀🔥 The Learning Tree 🌳⚡️ |── Step 1: Blockchain & Web3 Fundamentals | ├── How blockchains work (PoW, PoS, etc.) | ├── Ethereum & EVM fundamentals | ├── Smart contract basics (Solidity, Move, Sway) | ├── Decentralization & trustless systems | ├── Cryptographic principles (hashing, signatures) | ├── Gas fees & transaction mechanics | └── Nodes, RPCs & indexing services | |── Step 2: Smart Contract Development | ├── Solidity deep dive (state, storage, memory) | ├── Writing & deploying contracts on Ethereum | ├── Interacting with contracts via Ethers.js & Web3.js | ├── Gas optimization techniques | ├── Upgradeable contracts & proxy patterns | ├── Cross-contract interactions & permissions | ├── Multi-chain & cross-chain smart contracts | |── Step 3: DeFi & dApp Development | ├── ERC token standards (ERC-20, ERC-721, ERC-1155) | ├── AMMs (Uniswap, Balancer, Curve) | ├── Lending protocols (Aave, Compound) | ├── Governance & DAOs (Snapshot, Aragon) | ├── Cross-chain bridges & interoperability | ├── Layer 2 scaling (Optimism, Arbitrum, zkSync) | ├── NFT marketplaces & royalties | |── Step 4: Web3 Security & Smart Contract Auditing | ── Common Web3 Vulnerabilities | ├── Reentrancy attacks | ├── Flash loan exploits | ├── Oracle manipulation attacks | ├── Signature malleability & replay attacks | ├── Storage collision in upgradeable contracts | ├── Unchecked return values & delegatecall risks | ├── Timestamp dependencies & block manipulation | ├── Front-running & MEV attacks | ├── Cross-chain security risks | ├── Gas griefing & DoS attacks | |── Step 5: Web3 Development Tools & Debugging | ├── Hardhat, Foundry, Remix & Truffle | ├── Ethers.js & Web3.js for frontend interaction | ├── Debugging with Tenderly & OpenZeppelin Defender | ├── Security tools (Slither, Mythril, Echidna) | ├── Static & dynamic analysis for vulnerabilities | ├── Fuzz testing & differential testing | ├── Gas profiling & optimization | |── Step 6: Advanced Web3 Concepts | ├── Account abstraction & smart wallets | ├── ZK proofs & privacy-preserving transactions | ├── MEV & its impact on DeFi security | ├── Layer 2 data availability challenges | ├── Composability & interoperability in Web3 | ├── Secure off-chain data oracles (Chainlink, Pyth) | ├── Decentralized identity & Verifiable Credentials | |── Step 7: Get Involved & Build Your Reputation | ├── Contribute to open-source Web3 projects | ├── Write research blogs & security write-ups | ├── Participate in Web3 hackathons & bounty programs | ├── Submit vulnerabilities to top bug bounty platforms | ├── Join Web3 communities & network with experts

EVERYTHING YOU NEED TO KNOW ABOUT WRITING TEST CASES FOR SMART CONTRACTS 📃 1. Setting Up a Smart Contract Testing Environment 2. Writing Unit Tests 3. Security-Focused Testing 4. Edge Case Testing 5. Advanced Testing: Fuzzing & Gas Efficiency securrtech.medium.com/the-ultimate-g…

back to fundamentals ethereum: explain like i’m five

how does a crypto app works?

Two years ago, I discovered a critical vulnerability in Balancer V2 that allowed attackers to create infinite token balances by front-running ERC20 deployments. This bug earned me a $250k reward and was recently disclosed publicly:

Now that we know who's behind the @Bybit_Official attack. Let's look at how the hack actually worked. At a high level, the hack involved the 4 broad group of events: 1. Attacker deployed a trojan contract and a backdoor contract. 2. Attacker tricked signers of the upgradeable multisig "cold" wallet to authorize a malicious ERC-20 transfer to a trojan contract 3. Instead of transferring tokens, trojan contract replaces the master copy of the actual Safe multisig implementation contract with the backdoor contract, which is solely controlled by the attacker. 4. The attacker called sweepETH and sweepERC20 to drain the wallet of all its native ETH, mETH, stETH, and cmETH tokens.

Which tools you should implement after this @Bybit_Official hack? Here they are: 1. This: github.com/Wardens-OSS-Cl… 2. This: github.com/pcaversaccio/s… 3. This: github.com/0xKoda/defi-dn… 4. Implement: @ZenGo 5. Implement: mpcvault.com 6. Use: @delegatedotxyz 7. Use: @AirGap_it 8. Acquire: @gridplus 9. You can also paste all of the calldata from gnosis straight here it It automatically decodes it: calldata.swiss-knife.xyz

7 mistakes that beginner Web3 security researchers make (and how to fix them) 🧵👇

if you are either a beginner or an advanced auditor you have to make sure you're not missing attacks described here rareskills.io/post/smart-con…

Open-source notification service

Behind the MEME COINS, developers embed hidden vulnerabilities that let them rug at will. One of the most common yet overlooked exploits? 🔴 The Stealth Mint Backdoor – A hidden function that lets devs print unlimited tokens and dump on holders. Let’s break it down. 👇

Smart Contract Vulnerabilities A collection of smart contract vulnerabilities along with prevention methods One of our favorite resources for beginning auditors 🫡 github.com/kadenzipfel/sm…

Funding Rate Arbitrage for Dummies: My Longest Thread Ever 🧵👇