Hexagate

🎉 Big news: Hexagate has been acquired by @Chainalysis! We share a mission: to build a safer, more transparent financial system. Together, our two companies will provide a holistic risk solution that includes prevention, compliance and remediation for web3. 👇

🚨 Security Update: IPOR USDC Fusion Optimizer on Arbitrum Vault Exploit The IPOR team was alerted on January 6th by @hexagate_ and @blockaid_ regarding a malicious transaction. Following a swift investigation, we have identified an exploit resulting in a loss of $336K USDC. The Details: • Root Cause: The exploit targeted a specific legacy Fusion vault. • Scope: Due to its unique configuration, this was the only vault vulnerable to this specific attack vector. • Impact: The loss represents less than 1% of total funds secured by Fusion. Next Steps & Recovery: • Recovery: We are collaborating with @_SEAL_Org and relevant security entities to track and recover the funds. • Depositor Security: The IPOR DAO will patch the shortfall from the treasury. All affected depositors will be made whole. • Safety: No other Fusion vaults are affected Find the full technical post-mortem here blog.ipor.io/post-mortem-ip…

🧛 Vampires drain blood. 💻 Hackers drain liquidity. Luckily, there’s garlic for that. 🧄 Stay protected with Chainalysis Hexagate, your real-time DeFi threat detection and prevention platform. Because nothing’s scarier than an exploit you didn’t see coming. Request a demo here: chainalysis.com/request-a-demo/

We deploy many security measures to ensure the safety of our protocol, such as @hexagate_, who played a crucial role in helping us identify the phishy transaction early.

Happy to help 🫡

Best feel good stories I've heard in a while: -Hacker performed a phishing attack on a @VenusProtocol user -Successfully stole ~$27M from said user -Venus team was notified by @hexagate_ -Protocol was paused before the hacker could withdraw -Hacker lost ~$3M of his own fund GG

Building on @avax? Check out The Avalanche Security Program powered by Hexagate, free of charge

The @hexagate_ team is growing fast at @chainalysis ! We’re hiring a passionate Account Executive to help secure the future of Web3. If you have a strong understanding of DeFi, blockchain fundamentals, and a proven track record and B2B SaaS sales, we want you on our team. Apply here to join us: jobs.ashbyhq.com/chainalysis-ca…

Level V2 @levelusd V2 is shaping up to be one of the most thoughtfully built stablecoin protocols in DeFi. The team clearly isn’t just chasing trends — they’re laying down serious technical groundwork for long-term stability, transparency, and user trust. ➖ First off, building on top of the BoringVault standard by @veda_labs is a smart move. With $3.5B+ in TVL and adoption by big names like @ether_fi and @PlasmaFDN, it’s clear this foundation is strong. But what’s impressive is how Level’s team didn’t stop there — they added their own smart upgrades. ➖ The minting process using Chainlink oracles for accurate pricing and auto-routing to platforms like Aave and Morpho is not only efficient, it’s trustless and transparent. You don’t need to guess what’s happening behind the scenes — it’s all coded in smart contracts. ➖ One of the things I respect most is their decision to hardcode strategy logic instead of using Merkle trees. Sure, Merkle trees are more flexible, but hardcoding the logic makes it easier for the community to audit and understand where funds are going. That shows a serious commitment to transparency. ➖ On the security side, the setup is next level. The combination of a 3-day timelock, StrictRolesAuthority for quick role removals, and the PauserGuard system gives Level a strong balance between safety and fast response time in emergencies. This is exactly the kind of risk management that DeFi protocols should take seriously. ➖ I also appreciate how much attention they’ve given to external and off-chain security. Audits from top firms like @PashovAuditGrp and @0xMacroSecurity, plus a live bug bounty with @cantinaxyz, show they’re not taking chances. Add in real-time monitoring by @hexagate_, and you’ve got one of the most complete security setups in the space. Level V2 isn’t just another stablecoin update — it’s a technical leap forward. From how assets are deployed to how emergencies are handled, everything here reflects thoughtful design and real engineering effort. If you care about safety, composability, and DeFi systems that actually work under pressure, LevelUSD V2 is worth paying close attention to. 👏 Hats off to the team for raising the standard. #LevelUSD @

💬 "The pace of funds lost from the crypto industry this year is set to be a record, both in terms of services and individuals.” Chainalysis CEO and Co-founder @jony_levin spoke at @EthCC earlier this month, highlighting the importance of preventing fund losses in 2️⃣0️⃣2️⃣5️⃣. 📺 Tune in to his session here: bit.ly/3U4P9pR

To the GMX exploiter - We're working with the best security personnel (@hexagate_ ) and technologist to trace, and recover funds. Highly recommend responding to the team to discuss the bounty. Separately, the GMX team is among the strongest and most thoughtful teams we've ever worked with. If there's anyone who can come back stronger from this, it's @GMX_IO @coinflipcanada @xdev_10 @gmx_intern and crew. @chaoslabs will continue to support GMX in full force.

⚔ Lombard's 14-strong Security Consortium ⚔ Knowing that your hard-earned BTC which you've bought on every dip is in safe hands is your no. 1 priority. So, how does @Lombard_Finance ensure that your BTC (i.e. LBTC) is safe and available to withdraw at any time of your choosing? - Top Security Teams: Lombard partners with leading cybersecurity companies like @VeridiseInc, @HalbornSecurity, @immunefi , @hexagate_ and TRM to protect LBTC and its systems - Secure Digital Keys: They use a special technology called CubeSigner from @cubistdev, which uses hardware to make sure your private keys are never exposed or easily stolen - Regular Security Checks: Halborn and Veridise perform thorough security audits to find and fix any potential weaknesses - Real-time Threat Detection: Hexagate provides instant monitoring to detect and prevent any cyber-attacks or suspicious activities as they happen - Bug Bounty Program: Immunefi runs a "bug bounty" program, which encourages security researchers (i.e. non-malicious hackers) to find and report vulnerabilities in exchange for rewards, helping to improve security - Compliance and Screening: TRM ensures that all transactions and wallet addresses comply with international rules and regulations, screening them to prevent any illegal activities

@Ledger Security is extremely important to us and we’ve made it our top priority. Our security is powered by @hexagate_ and @chainalysis, so you don’t have to worry before depositing your funds into MAIN. We’ve got you.

We are currently working closely with @zeroshadow_io, @HypernativeLabs, @Quantstamp, @spearbit, @certora, and @hexagate_ to ensure we have a comprehensive understanding of the events that occurred yesterday. Our priority is to address the situation and continue improving our product. An official post-mortem will be shared once all relevant information has been thoroughly reviewed and validated. Thank you to everyone for your continued patience and support.

In addition, Renzo partners with @chaoslabs as a risk manager, alongside ongoing partnerships with @HalbornSecurity, @hexagate_, and @immunefi. More recently, Renzo enlisted @nethermindsec to perform an audit of the protocol codebase and bridge in preparation for the @eigencloud upgrade: x.com/NethermindSec/… And a risk analysis of the upgrade by Chaos Labs: x.com/RenzoProtocol/…

Proud to see @hexagate_ , a recent Chainalysis acquisition, proving to be an effective line of defense for proactive exploit prevention. See here: x.com/unhedged21/sta…

🫡🔐

Builders on @base get free onchain monitoring and real-time threat detection. We want you to focus on building the future, not fighting off bad actors, so partnered with @hexagate_ to provide their threat prevention to builders who need it. Apply here: hexagateforbase.typeform.com/to/ZbvkRdhM

Our real-time threat detection system detected an attack on @plaza_finance and helped them to prevent it early on and save all of their funds — all thanks to our Base ecosystem tier. Shoutout to the @unhedged21 and his team for the fast response and clever usage of Hexagate!