1/ 🚨 BREAKING: HYDN rescued over $600k of user funds during an attack on @SushiSwap. Our team was the first to identify a critical vulnerability and worked quickly with SushiSwap to rescue user funds. Here's the inside scoop on how it all went down.👇 #blockchain #sushi

⚡️We've got some last minute availability for Smart Contract Audits in June, head to the website or send us a message on Telegram to get a quote - t.me/hydnsec

Your DLP tools don't catch an employee pasting source code into a coding assistant or uploading a contract to an AI summariser. Shadow AI bypasses most of the controls enterprises have spent years building. New post on why it's harder to detect than most teams realise. hydnsec.com/blog-posts/shado…

Another private key compromise. Learn more about HYDN's Red Team services to see how we can help protect your company from attackers. hydnsec.com/hydn-red-team

Your employees are using AI tools your security team has never heard of. They're pasting customer data, internal documents, and sensitive queries into models running on infrastructure you have no visibility into and no logging on. HYDN surfaces what's already in your environment, turns it into structured intelligence, and routes it into your SIEM, so you can see who is using which AI tools, with what data, before it becomes a breach. hydnsec.com/ai-security

Another OpSec failure resulting in a hack...it's time for companies to start taking security more seriously. Learn more about HYDN's Red Team services to see how we can help protect your company from attackers. hydnsec.com/hydn-red-team

1/ We are sharing additional details regarding our investigation into unauthorized access to GitHub's internal repositories. Yesterday we detected and contained a compromise of an employee device involving a poisoned VS Code extension. We removed the malicious extension version, isolated the endpoint, and began incident response immediately.

Another exploit that came from a compromised key and not a smart contract bug. It's imperative that teams get their full stack security tested beyond just an audit of the smart contracts. Get in touch with HYDN to see how we can help with penetration tests and red team exercises to help prevent these sorts of hacks. hydnsec.com/

🚨 The Versus Bridge hack is the 8th major bridge hack of the year so far, bringing the total stolen to over $300m...and it's only May. If projects aren't doing continuous security, they're way behind the hackers already and AI is only making this worse.

Web3 companies lost over $3.4 billion to hacks in 2025. The majority of the losses didn't come from smart contract bugs though. They came from Compromised Credentials, OpSec failures and Supply Chain Attacks. HYDN go beyond just audits to offer Penetration Testing and Red Team Exercises. hydnsec.com/

🚨 UPDATE: Mini Shai-Hulud has crossed from @npmjs into @pypi and is still spreading. Newly confirmed compromised artifacts: @​opensearch-project/opensearch: 3.5.3, 3.6.2, 3.7.0, 3.8.0 (1.3M weekly downloads) mistralai: 2.4.6 on PyPI guardrails-ai: 0.10.1 on PyPI additional @​squawk/* packages on npm guardrails-ai 0.10.1 executes malicious code on import. On Linux, it downloads git-tanstack[.]com/transformers.​pyz, writes it to /tmp/transformers.​pyz, and runs it with python3 without integrity verification. The git-tanstack.​com domain displayed a message signed “With Love TeamPCP,” along with: “We've been online over 2 hours now stealing creds Regardless I just came to say hello :^)” The page also linked to a YouTube video and you can probably guess which one.

The hacks just don't seem to be slowing down at the moment. Even if you've got old contracts that were audited previously, get them audited again. Tooling, learnings and auditor ability has moved on massively in the past 6-12 months. The attackers have levelled up, but your contract security hasn't.

Real-world threats demand real-world audits, not just AI scans. Our smart contract audits aren't generic. We meticulously analyze your project's entire ecosystem and business logic to expose complex, real-world attack vectors. Secure your business with HYDN today - hydnsec.com/security

$578M of April's crypto losses came from two attacks attributed to Lazarus Group. Neither was a smart contract exploit. Both had their contracts audited. Both fell to operational security failures that a Penetration Test or Red Team exercise would have surfaced. HYDN specialises in penetration testing and red teaming for both Web2 and Web3 protocols against exactly this threat profile. We carry active threat intelligence on Lazarus Group TTPs and we have done security work for Metamask, Consensys, Sablier, Sushi, Telos Foundation and many more. Get in touch to explore how HYDN can help secure your business - hydnsec.com/

Here at HYDN, our team specialise in Red Team and Penetration Testing services focused on protecting your organisation the exact types of attacks that have resulted in the $600m losses. Our team possess deep expertise in fighting against APT Groups like Lazarus from both a web2 and web3 background. Our founder is Warren Mercer, involved in uncovering the Olympic Destroyer hack by Lazarus while at Cisco and we have security researchers who have worked to help secure some of the worlds biggest organisations against exactly these types of attacks. wired.com/story/north-korea-… Get in touch if you want to discuss how we can help secure your business.

Full stack security auditing is becoming even more important in web3, with the majority of major hacks now being front-end, supply chain, or human related. Our team specialize in Smart Contract Audits, Penetration Testing and Red Teaming Exercises to help protect you from these attacks. Get in touch today to see how we can help secure your business - hydnsec.com #hydn #cybersecurity #security

The @CoWSwap front end hack yesterday was the third of its type in crypto in the last month. A huge number of exploits in 2026 haven't been smart contract bugs, they have been issues that would be picked up with Penetration Testing or Red Team exercises. HYDN specialise in both, get in touch to discuss how we can help secure your protocol beyond audits today - hydnsec.com/penetration-test…

🚨🚨 We are currently experiencing an issue with the CoW Swap frontend (swap.cow.fi). While we are investigating, please DO NOT use CoW Swap.

The Rockstar breach, the OpenAI supply chain incident, and the Crunchyroll contractor compromise all happened this week. Three different companies. Three different entry points. One common thread. None of them were breached through their own hardened perimeter. The attackers went through vendors, dependencies, and contractors who had legitimate trusted access. This is why modern security testing has to go beyond your own systems. Your attack surface includes every third party with a credential, an integration, or a seat in your Okta tenant. If you haven't mapped that and tested it, someone else will.

This aged like milk. No-one can ever claim to be 100% unhackable and especially not a project with 1 audit which was done 2 years ago and no bug bounty in place.