SCRL

🚨 Launching a Web3 project? You need real cybersecurity experts. 🛡️ Smart Contract Audits 🧾 KYC for Projects 🕵️‍♂️ Blockchain Incident Investigations ✅ Affordable / Reasonable pricing ✅ Proven cybersecurity expertise #BNB #Ethereum #BaseChain #EVM #Solana

OpenZeppelin Move Contracts are now live on @SuiNetwork 💧 The same library securing over $35 trillion in onchain value and trusted by the industry's most critical protocols is now purpose-built for Sui. Here's what's in the first release 👇

Update: Website maintenance has been completed. You can now access our website as normal. We apologize for any inconvenience. The reason for the extended maintenance period was that we upgraded our server to expand our service capacity.

Announcement: Scheduled Website Maintenance Our website may be temporarily unavailable. or encountered an error while accessing the website. We apologize for the inconvenience.🙇‍♂️ You can still contact us at contact@scrl.io TG: t.me/scrl_io

Update: the balancer hacker has added console logs onchain. there is also a good probability that the hackers vibe coded the attack or used LLMs. Here's why I think that: >hackers usually never leave console.log in production code. >when console.log does appear on-chain, it’s almost always a mistake. >a mistake like that only happens if the coder forgot to delete debug lines. >forgetting to delete debug lines = copy-pasted straight from an LLM. >LLMs love to add console.log("Step 1") to “help you follow”. >So when the log says garbage like Done with amts1, it’s mostly AI slop.

We’re aware of a potential exploit impacting Balancer v2 pools. Our engineering and security teams are investigating with high priority. We’ll share verified updates and next steps as soon as we have more information.

What’s most interesting is wallet addresses listed in the US government $14B (127K BTC) seizure previously were named in a Milky Sad report ~2 years ago for having vulnerable private keys and now the USG says they have custody of them.

ALERT 🚨: The @BNBCHAIN X account is compromised. The hacker posted a bunch of links to phishing websites that ask for Wallet Connect. Do NOT connect your wallet. Security teams have notified X already, working to suspend the account first, then restore access. Also take-down requests to take down all phishing websites. Always check the domains very carefully, even from official X handles. Stay SAFU!

🛡️ Launch safe. Launch smart. We audit your smart contracts to catch vulnerabilities before attackers do. ✅ Manual + Automated review ✅ Trusted by Web3 Startups & Enterprises ✅ Fast turnaround 📩 Request: t.me/scrl_io #Web3 #DeFi #BNB #ETH #Solana #SUI

[3/3] Such attacks involving lethal weapons against civilians and vital infrastructure such as hospitals constitute a severe violation of the Geneva Conventions and are inhuman. Violent acts that transgress such boundaries constitute war crimes.

[2/3] We unequivocally condemn any attacks perpetrated by the Cambodian military that directly impact the civilian population of Thailand.

[1/3] We extend our profound condolences for the loss and express our deepest concern regarding the recent violence. #CambodiaOpenedFire

@cz_binance LOL 😂

🤣

Visit our site: scrl.io To request a free quote: survey.scrl.io/s/cm7oa9isn000… DM: t.me/scrl_io

🚨 Launching a Web3 project? You need real cybersecurity experts. 🛡️ Smart Contract Audits 🧾 KYC for Projects 🕵️‍♂️ Blockchain Incident Investigations ✅ Affordable / Reasonable pricing ✅ Proven cybersecurity expertise #BNB #Ethereum #BaseChain #EVM #Solana

The GLP pool of GMX V1 on Arbitrum has experienced an exploit. Approximately $40M in tokens has been transferred from the GLP pool to an unknown wallet. Security has always been a core priority for GMX, with the GMX smart contracts undergoing numerous audits from top security specialists. So, in this hands-on-deck moment, all core contributors are investigating how the manipulation occurred, and what vulnerability may have enabled it. Our security partners are also deeply involved, to ensure we gain a thorough understanding of the events that occurred and minimise any associated risks as quickly as possible. Our primary focus is on recovery and pinpointing the root cause of the issue. Actions taken: Trading on GMX V1, and the minting and redeeming of GLP, have been disabled on both Arbitrum and Avalanche to prevent any further attack vectors and protect users from additional negative impacts. Scope of the vulnerability: Please note that the exploit does not affect GMX V2, its markets, or liquidity pools, nor the GMX token itself. Based on the available information, the vulnerability is limited to GMX V1 and its GLP pool. As soon as we have more complete and validated information, a detailed incident report will follow.

Update: We've identified and removed the malicious code from our site. Our team is continuing to investigate and taking steps to strengthen our security.

🚨 Security Alert We’re aware that a malicious pop-up prompting users to "Verify Wallet" has appeared on our site. ⚠️ Do NOT connect your wallet. Our team is actively investigating and working to resolve the issue.

Nobitex Announcement No. 4 – Regarding the Security Incident As part of Nobitex’s ongoing response to the recent security incident, we would like to inform our users that the situation is now under control. All external access to our servers has been completely severed. If you check the current balances of Nobitex wallets on blockchain networks, you may notice a significant reduction in holdings. This is due to our own technical team’s proactive move to empty the hot wallets in order to protect user assets. There is no cause for concern regarding these wallets’ balances. The stolen assets were transferred to a wallet with a non-standard address composed of arbitrary characters—an approach that deviates significantly from conventional crypto exchange hacks. These wallets were used to burn and destroy user assets. It is clear that the intention behind this attack was to harm the peace of mind and assets of our fellow citizens under false pretenses. For our 11 million users, it is evident that Nobitex has always operated as an independent private business. This is further supported by the fact that, for the past eight months, our banking gateway has been blocked without any means to resolve the issue—an unfortunate situation beyond our control. The stolen funds remain visible on blockchain networks, and due to the transparent nature of blockchain technology, the movement of assets from Nobitex can be publicly tracked. The total value of stolen assets is currently estimated to be around $100 million. Due to the simultaneous occurrence of national internet disruptions and emergency conditions, reaching our support team has become challenging. However, our technical team is working diligently to restore full support access as soon as possible, to provide users with further reassurance regarding their assets. In addition, the internet disruptions and blocked access to external servers may result in a longer-than-usual timeline for restoring user access to the platform. Nonetheless, Nobitex is doing everything in its power to accelerate this process. We once again emphasize that user assets are covered by the Nobitex Reserve Fund, and no user funds will be lost. We remain committed to ensuring the safety of your holdings and maintaining your trust. We thank our users for their patience and continued support during this difficult time. Further updates will be shared in upcoming announcements. Nobitex Communications Team

🚨 Building on Solana? Don’t ship unverified code. Our audits proactively secure your code against real-world threats. ✅ Fast turnaround ✅ Affordable pricing ✅ Real security, not just reports scrl.io #Solana #SmartContract #Audit #Web3Security