Fred Gitonga

1 bug. 10 years ago. 3.6 million ETH stolen. That was The DAO hack. June 2016. And the bug had already been identified before the attack happened. I am 24% done with the @CyfrinUpdraft Smart contract Security course and @ethereum history is unraveling.

@FelixAwere Nice 🚀Keep on learning

PDF compiled, bugs caught, first audit complete! 🫡🛡️ Stoked to officially be on the Web3 security grind. Big shoutout to @cyfrin for the course. Repo & Report: github.com/Felabs1/codeha… #Web3Security #SmartContracts

@TechbyOlivia @CyfrinUpdraft @ethereum yes, been a hell of a journey for ethereum:native

@fredgitonga_ke @CyfrinUpdraft @ethereum Wow, what a crazy story! It's wild to think how far we've come in security since then. Keep up the great work on the course!

1 bug. 10 years ago. 3.6 million ETH stolen. That was The DAO hack. June 2016. And the bug had already been identified before the attack happened. I am 24% done with the @CyfrinUpdraft Smart contract Security course and @ethereum history is unraveling.

@sakhil_ai @CyfrinUpdraft @ethereum Glad you did⚡

@fredgitonga_ke @CyfrinUpdraft @ethereum I just learned about that

CEI pattern. Checks-Effects-Interactions. Update your state FIRST. Then send the funds.

co-authored: battlechain.com

🔒 Audit done for @TopizzyHQ (onchain airtime on Base). 50,000 invariant calls | 19 tests | 2 Critical, 3 High findings Full report + test suite: github.com/cableGraph/top… #Solidity #Audit #Base

@ashhad1078 @CyfrinUpdraft 🎉🎉🎉

Achievement unlocked! 🎉 I’ve completed Web3 Wallet Security Basics on @CyfrinUpdraft and boosted my wallet security skills! In 1-hour, I learned to: - Identify threats - Implement security practices And built a disaster recovery plan! profiles.cyfrin.io/u/ashhad1078/a…

An attacker found a single flaw in the withdrawal function of the DAO's smart contract. The contract would send ETH to whoever called it before updating the caller's balance. So the attacker wrote a malicious smart contract with a fallback function.

@Kelvinmwendwa__ Considering your chef skills, imebaki how many months

Hehe

@kwekutech @KBCC_01 @DecentrixAfrica kabsaa, absolutely ! I will look out for you guys

@fredgitonga_ke @KBCC_01 @DecentrixAfrica say hi and let's tell your story

on may 14 and 15, team kweku tech will be on the ground at @KBCC_01 in partnership with @DecentrixAfrica, spotlighting the founders building at the edge of web3 and africa's real economy. if you are attending, find us. let's have a conversation. we will help you tell your story. see you there. 🔥

@TavarasCamp @Topizzy_ There is where I get all my airtime ⚡

@Topizzy_ #Web3Security #BaseChain #Solidity Crypto should be spendable.

@nyagoh_ @rkukiriza @BChainDevFest @InfyniSec @SankaraApparel @robinsoncodes Small monies that you can handle! 500 $USDT tu

@fredgitonga_ke @rkukiriza @BChainDevFest @InfyniSec @SankaraApparel @robinsoncodes Shii ngapi?😅

#EastAfrica is locked in, are you? Visit devfestkampala.com to reserve your spot to attend, speak and participate in the hackathon at the #BlockchainDevfestKampala2026 We are @InfyniSec @BChainDevFest @SankaraApparel #RWA #TowardsDecentralizedAI #DeFi

@am_kiplagat @Pizza_DAO @WrldPizzaChamps @ensdomains Pizza + Kisumu = ⚡⚡

🗺️🍕🥳 I'm going to the Global Pizza Party in Kisumu! @Pizza_DAO @wrldpizzachamps @ensdomains rsv.pizza/kisumu

@Realdavidlumala Appreciate that 🙏 More threads coming on security, auditing, and everything I am learning about Ethereum!

Rooting for you throughout.

Audit before deployment, not after. @cyfrinupdraft teaches this, from basic to modern read-only reentrancy variants. Free to start. @battlechain lets you test with real funds before mainnet. Whitehats legally attack your contracts. Only what survives goes live.

The hack also split Ethereum in two. The uncomfortable part is the bug had been publicly identified before the attack. This builds on the principle that protocols need to have guys test out their code before deploying. We know better.