Shahar Madar, the head of security products at Fireblocks, spoke with Cointelegraph at the Israel Crypto Conference about the importance of security for Web3 startups. Madar emphasized that many startups prioritize growth over developing a security protocol, but this approach is not effective in a Web3 world with a focus on finance. He stressed the need for companies to have a security framework and to ask important questions about access control and infrastructure testing. Madar recommended that startups start small and imagine how they would hack themselves in order to create a game plan for security.
Welcome Back
Click “Sign in” to agree to Cointime’s Terms of Service and acknowledge that Cointime’s Privacy Policy applies to you.
Join CoinTime
Already have an account?
Click “page.Sign up” to agree to Cointime’s <a class="underline" href="#term-of-service">Terms of Service</a> and acknowledge that Cointime’s a class="underline" href="#privacy-policy">Privacy Policy</a> applies to you.
Sign in with email
Sign up with email
Your email
Check your inbox
Click the link we sent to to sign in.
Click the link we sent to to sign up.
Security Expert Advises Web3 Startups To Prioritize Security Protocols
-
Wechat scan to share
Recommended for you
-
CoinStats CEO: The company's AWS infrastructure was hacked, affecting 1% of total users
Narek Gevorgyan, CEO of cryptocurrency portfolio management company CoinStats, stated on X platform that the company's AWS infrastructure was hacked, and evidence showed that the attack was carried out by an employee who downloaded malicious software. The attack mainly affected a small number of users who use CoinStats Wallet, accounting for only 1% of total users. Gevorgyan sympathizes with the victims and promises to provide support, and is currently waiting for law enforcement details to be completed before releasing a detailed report. -
Farcana: Please do not click on any links, the team is working on resolving the vulnerability
The blockchain gaming studio Farcana posted a statement saying that @FarcanaOfficial is the only official account. Please do not click on any links randomly, the team is working to fix the vulnerability and ensure the safety of user assets. Previously, Farcana stated that one of its FAR wallets was hacked. All CEX deposits will be frozen until the issue is resolved. -
Hong Kong invites global opinions on web3 and virtual assets future
The Hong Kong Legislative Council is actively seeking feedback on several critical aspects of Web3 policy development, including balancing technical, legal, and regulatory frameworks.
-
Rapper 50 Cent claims that his X account was hacked, and the hacker promoted cryptocurrency and defrauded about $300 million
On June 22nd,famous rapper Curtis James Jackson III (stage name "50 Cent") claimed that his former Twitter account and website were hacked, resulting in hackers promoting a cryptocurrency scam and defrauding victims of $30 million.The hackers created a new cryptocurrency called "GUNIT" and used 50 Cent's large following (approximately 12.9 million fans) to attract more investors and drive up the price, then drained its value, causing the token price to plummet to $0.00016. On June 21st, 50 Cent posted on Instagram to his 32.8 million fans about the hack and admitted that a large amount of funds from victims had been lost from the project. "Twitter quickly locked my account. Whoever did this, got $30 million within 30 minutes," 50 Cent claimed, stating that he had no involvement with this cryptocurrency scam. -
Security agency: USDT fake recharge incidents occurred on the TON chain, exchanges need to be careful
Security firm Dilation Effect tweeted a reminder that attackers have recently attempted large-scale fake USDT deposits on the TON chain. Dilation Effect's on-chain monitoring system discovered a malicious address deploying a fake USDT token contract with metadata identical to official USDT, and it has been conducting fake deposit tests on major exchanges. Dilation Effect warns that many exchanges have just started supporting USDT deposits on the TON chain, and their systems may not be fully developed, making them vulnerable to fake deposit attacks. Attackers typically start with small test deposits and gradually increase the amount in an attempt to deceive larger amounts of funds. Exchanges should strengthen monitoring, especially for large TON chain USDT deposits, to prevent fake deposit incidents from affecting fund security. -
Security agency: Fake USDT recharges appeared on the TON chain, and exchanges need to be careful to prevent fake recharge incidents
Security firm Dilation Effect warned on Twitter that attackers have been attempting large-scale fake USDT (Tether) deposits on the TON chain. Dilation Effect's on-chain monitoring system discovered a malicious address EQBPePiHXhg8XzSRe6FWsDS8s2OHLS1Z2GrW2REL56pMTIKA deploying a fake USDT token contract whose metadata is identical to official USDT, and has been conducting fake deposit tests on major exchanges. Dilation Effect specifically warned that many exchanges have recently begun supporting USDT deposits on the TON chain, and their systems may not be fully developed and may be vulnerable to fake deposit attacks. Attackers typically start with small-scale test deposits and then increase the amount gradually, attempting to deceive larger amounts of funds. Exchanges should strengthen monitoring, especially for large TON chain USDT deposits, and conduct strict reviews to prevent fake deposit incidents from affecting fund security. -
SlowMist: Beware of fake on-chain news impersonating Coinbase officials
The SlowMist security team recently detected a suspicious behavior that appeared to be disguised as the official Coinbase address (0xcd53b841ffa2afba778d03ef928cfe864accca7b). The address attempted to send false messages to users who extracted large amounts of assets from Coinbase Prime through on-chain shouting. The shouting claimed that "due to operational errors during the transaction, users need to return all funds transferred through ETH due to errors, otherwise law enforcement agencies will be contacted." We advise all users to be wary of such phishing behavior and to verify transfer information as much as possible before executing transfer operations to avoid unnecessary asset losses. -
ALEX releases security incident update: The attacker's on-chain balance is approximately 5.56 million STX
On June 17th, Bitcoin DeFi platform ALEX Lab released a security incident update. As of 11am on June 17th, the attacker had broadcasted over 9700 transactions, involving the creation of new wallet addresses and dispersing STX balances on the chain to these new wallets. The number of trackable transactions began to exponentially grow from 300 to over 9600 and has been accelerating without any signs of stopping. This also means that the attacker's independent address count has increased from less than 100 to over 4700 in 7 days. -
ZachXBT: Scammers are impersonating a16z team members in social engineering attacks
ZachXBT posted on social media that his fans fell victim to a social engineering attack by someone posing as a member of the a16z team, resulting in a loss of $245,000 after inadvertently downloading malicious software onto their computers.The fraudsters claimed to be Peter Lauten of the a16z team and sent messages to a project team enquiring about potential podcast collaborations.The real Peter Lauten had previously changed his X (Twitter) handle from "peter_lauten" to "lauten," but a16z's website still lists his old handle, and several posts from the a16z X account also @'d his old username. The victims were unaware of this and were subsequently targeted in a social engineering attack, which installed a fake conference app called "Vortax" on their devices, which was actually malicious software. -
UK FCA issues urgent warning to cryptocurrency investment firm Digital Assets Nest
According to Be In Crypto, the UK Financial Conduct Authority (FCA) issued an urgent warning to a cryptocurrency investment company called Digital Assets Nest. The company promoted financial services without proper authorization, posing risks to investors. FCA strongly advises investors to avoid contact with the company to prevent potential scams, and emphasizes that only transactions with authorized companies can ensure the protection of investors' rights. If trading is conducted with unauthorized companies such as Digital Assets Nest, investors will not be able to receive assistance from the Financial Ombudsman Service or enjoy the protection of the Financial Services Compensation Scheme (FSCS) in case of problems.
Daily Must-Read
-
‘Visibly shaken’ founder watches memecoin plummet 90% during live Spaces pitch
-
Softbank CEO says company’s purpose is to create ‘artificial super intelligence’
-
Binance assists BtcTurk attack probe, freezes $5.3M in 'stolen funds'
-
OpenAI reportedly considering shift to for-profit as CEO stacks board
-
What are validiums, and how do they work?
-
Why is Bitcoin price down today?
All Comments