Joined May 2021
- Tweets 3,621
- Following 1,115
- Followers 447,221
- Likes 3,121
1,222 Photos and videos
GoPlus Growth Fund is built to support real builders across the @SafuSkill × @fourdotmemezh ecosystem for the long run.
Transparent by design. Verifiable on-chain. Aligned for long-term growth.
A new ecosystem model is taking shape.
We’re putting money where the mechanism is.
Introducing GoPlus Growth Fund — with $50K initial deployment
to support quality projects in the @SafuSkill × @fourdotmemezh OpenFour ecosystem.
Here’s what makes it different from every other “ecosystem fund”:
🔸 Not for profit.
The fund doesn’t exit. Doesn’t trim. Doesn’t sell.
Every position is held forever.
🔸 Fully on-chain.
Independent address. Public dashboard.
Every buy, every LP, every wallet — verifiable on BscScan.
🔸 Supports organic growth only.
We allocate to projects with real momentum,
verified builders, and real users — not artificial pumps.
🔸 Real builders only.
GitHub-verified creators.
No farming. No theater.
After deep allocation, projects can choose:
→ Burn the tokens — deflationary signal
→ Or pair them as LP — liquidity for the long run.
Either way, the fund never sells.
This is what an ecosystem fund looks like
when a security company builds it.
Verifiable, not promised.
Address disclosed before first buy.
Stay tuned.
下一个时代的生态基金,长这样。
#GoPlusGrowthFund #SkillCoin #OpenFour
2
2
701
GoPlus Security 🚦 retweeted
Jun 11
🏆 Tokens Clash: World Cup 2026
Co-hosted with @fourdotmemezh and joined by @BNBCHAIN frens @GoPlusSecurity, @puffer_finance, @lista_dao and @DeAgentAI.
A multi-token World Cup prediction festival for global football fans.
Are you ready to
› Predict the matches & fun events
› Back your picks with 8 tokens ($FORM, $GPS, $AIA, $PUFFER, $LISTA, $币安人生, $WBNB, $USDT, $币安人生)
› Predict with one, win many others
› Share a $50,000 prize pool
⏰ The clash will be kicking off on June 14th. Gear up, call the games,( •̀ ω •́ )✧ 👟⚽️
#TokensClash2026 #WorldCup2026 #FIFA
32
6
50
118,583
Jun 11
🧵1/4
⚠️ Vulnerability Analysis: Analysis of the #Raydium Exploit
On June 10, @Raydium’s legacy liquidity pool on Solana was exploited, resulting in a loss of approximately $1.3 million.
Attack Mechanism Analysis:
The attacker created a custom SPL Token, then manipulated the custom SPL Token to remove liquidity from the trading pool, eventually draining the original liquidity pool.
The cause is suspected to be a lack of LP Token checking and validation logic in raydium:remove-liquidity.
One of the transactions is shown below:
solscan.io/tx/2gwZ1P37p3S396…
4
3
26
5,296
Jun 11
🧵3/4
After receiving the tokens on #Ethereum, the attacker swapped them for ETH.
etherscan.io/tx/0x68c91bec8e…
Finally, the attacker deposited the #ETH into #TornadoCash to obfuscate the funds.
1
3
1,765
Jun 11
🧵4/4
📌 Attack Transactions
Attacker address (#Solana):
4WnPebowR4HHfumvNPaDjG6Pa5Hi1jxLm6xmmBq33QVk
Token receiving address (#Ethereum):
0x0EaBAAb9a56011c6158D4aA7f2E49A82fB34E609
Exploited address (#Solana):
27haf8L6oxUeXrHrgEgsexjSY5hbVUWEmvv9Nyxg8vQv
Example attack transactions:
solscan.io/tx/2gwZ1P37p3S396…
solscan.io/tx/9jBVvs6stJfpVa…
1
1
655
Jun 11
🧵2/4
The attacker transferred the stolen assets to #Ethereum via the #deBridge cross-chain bridge. One of the transactions is as follows:
solscan.io/tx/ktYPDA7CTy6a6p…
420
Jun 10
🚨GoPlus Security Alert:
Beware of Blue-Check “Official Telegram” Verification Phishing Scams
Today, multiple community users reported receiving abnormal login verification messages from an “official Telegram” account. The scam is currently spreading at scale. Please do not click any related links or interact with them in any way. If users click the link out of panic and enter their account credentials, they may face risks such as Telegram account takeover and wallet asset theft.
This blue-check “official Telegram” account is actually created by attackers abusing Telegram Premium’s custom Emoji Status feature. They disguise the account status as a blue verification checkmark and use the nickname “Telegram,” misleading users into believing it is an official system notification account.
The attackers then send fake warnings to users through a third party, such as “abnormal account login,” “account will soon be frozen,” or “time-limited verification,” inducing users to click “Start verification.”
Security Recommendations:
1. If clicking the “blue checkmark” shows pages such as “Using Telegram · Emoji status from @xxx to express personal status” or “Unlock emoji status,” it means the mark is only a Telegram Premium personal emoji status, not an official verification badge. Please do not treat it as an official account identifier.
2. Any unsolicited message that creates panic with wording such as “verify within XX hours, or your account / assets / permissions will be frozen” is usually a typical phishing tactic.
3. Remember GoPlus’ 4 Don’ts for anti-phishing — Don’t Click, Don’t Install, Don’t Sign, Don’t Transfer: do not click unknown links, do not install software from unknown sources, do not sign unclear wallet transactions, and do not transfer funds to unverified addresses.
1
7
1,390
Jun 10
🧵1/4
⚠️ Vulnerability Analysis: Token of Power Exploit Analysis
Token of Power (TOP) on #TH was exploited due to a #AragonDAO misconfiguration, resulting in a loss of 944.2 $WETH, approximately $1.5 million.
Attack Mechanism Analysis:
1. The attacker completed the entire process of submitting, voting on, and executing an execution script within the same transaction. During this process, there was no timelock between script submission and voting, nor between voting and execution.
Whether the vote could pass was determined by the ratio between a user’s $TOP balance and the total supply. The attacker held 8,192.000001 TOP, while the total supply was 16,384, meaning the attacker held more than 50% of the total $TOP supply.
As a result, the attacker was able to pass the voting threshold alone and execute the proposal within a single transaction.
1
4
23
2,744
Jun 10
🧵4/4
📌 Related Transactions
Attacker address:
0xff8eF7bC455a57e5893232203052Ce0232b39Fa2
Attack contract address:
0x25c68C44A96518294f5B47D758f98309c6729A21
Exploited contract address:
0xB501d26BA74eaB601576B62617Cf41042bEf6865
Attack transaction:
etherscan.io/tx/0x967aa34c69…
460
🧵1/7
⚠️ Exploit Analysis: Humanity Protocol Attack Incident Review
On June 9, the identity verification protocol @Humanityprot was attacked, resulting in losses of over $20 million.
Jun 9
We're aware of a security incident involving the compromise of private keys belonging to a member of the Humanity Foundation. The safety of our community is our top priority, and we want to be fully transparent about what we know.
As a precaution, please do NOT interact with the bridge or any liquidity pools until we give the all clear. This is the single most important step you can take to protect your funds right now. We are actively working with leading security experts and our exchange partners to assess the scope of the incident and secure all affected systems.
We're deeply sorry that this has happened. Protecting this community is our responsibility, and we don't take that lightly. We will share verified updates as soon as we have them and we won't speculate before facts are confirmed.
Official updates will only come from this account or @terencekwok
Beware of the scammers and impersonators who exploit moments like this. We will never DM you first or ask for your seed phrase or private keys.
5
1
11
6,262
🧵6/7
👀 Follow-up Developments:
On BNB Chain, roughly two hours later, the attacker minted another 100 million $H. The attack is still ongoing.
bscscan.com/tx/0x56a15085963…
1
782
🧵7/7
📌 Attacker Address:
0x6aa22cb8420e94fc2119364b4c7885710ae753bb
Attack Contract Address:
0xD18cDc9F07733ca207E9977879c51E22E9b57Fcb
Exploited Contract Addresses:
0xd73Cd1117646625FFE23a55860035aC62fa8720D
0x44F161aE29361E332dEA039DFA2F404E0bC5B5Cc
Example Attack Transactions:
bscscan.com/tx/0xb5cb1f2e0e2…
bscscan.com/tx/0x043e30e4a23…
bscscan.com/tx/0x5a8f82f1064…
bscscan.com/tx/0xe305b5ec92c…
1
1
1,721