@SolidityScan profile picture
SolidityScan @SolidityScan

Automated smart-contract auditing platform by @credshields

Joined June 2022
  • Tweets 3,558
  • Following 53
  • Followers 5,360
760 Photos and videos
Pinned Tweet
SolidityScan
@SolidityScan
23 May 2025
🚀 Big news! SolidityScan is now integrated with @soneium, bringing seamless smart contract security to your fingertips. Easily access security scores, gain real-time insights into vulnerabilities, and explore full threat reports — directly from verified contracts on Soneium.
0:37
13
10
458
11,551
Bitsurance says it’s offering insurance for BTC held on hardware wallets—covering events like fire, flooding, robbery, and physical coercion—underwritten by Liberty Specialty Markets (Liberty Mutual). #Bitcoin #Security
1
28
NovaBox ($NOVA) reward system on Ethereum was hit by a flash-loan attack. Reports say ~56.73 ETH was stolen by exploiting dividend math/order (“phantom dividends”)—not reentrancy/overflow. #DeFi #Security
98
Haedal Protocol says Haedal Vault pools on Sui were exploited via a cross-version upgrade logic issue. Estimated direct loss: ~$915,179; affected Vault contracts paused; team says users will be made whole. #DeFi #Security
2
1
8
260
MetaMask introduced “Agent Wallet,” a non-custodial wallet designed for AI agents. It adds guardrails like mandatory tx simulation, user presets (allow lists/spend limits), and extra approvals for risky actions. #Ethereum #WalletSecurity
76
Zcash devs finalized consensus changes for the Ironwood upgrade after the Orchard shielded-pool flaw. Ironwood adds a new shielded pool and changes aimed at keeping ZEC supply bounded; activation is targeted for late July. #Zcash #Security
97
Raydium reports a ~$1.34M exploit affecting 5 deprecated legacy AMM V3 pools (phased out in 2021). Team says current programs are unaffected and treasury will reimburse affected users. #DeFi #Security
1
86
Aave is proposing a new risk framework covering asset, bridge, and chain risk, with monitoring automation components. If adopted, it would apply across all markets and could offboard assets that don’t meet the new standard. #DeFi #Security
60
Asterix Labs says an exploit hit the $ASTX token contract. They report it occurred ~4am GMT 8 (Jun 8) and the team is investigating with a post-mortem to follow. #Web3Security #SmartContracts
119
Ambient Finance (Ethereum) was reported exploited, with ~83.72 ETH (~$110.6K) drained and then routed across DeFi venues (incl. Uniswap v4). Monitor exposure and wait for the project’s official incident details. #DeFi #Security
1
104
Syscoin paused its bridge after a validation issue let an attacker create an unauthorized ~5B SYS output on the UTXO side. Team is tracing tainted outputs and coordinating with exchanges; fix in progress. #Web3Security #Bridge
1
102
ALERT: Wallets holding Humanity Protocol’s H token reportedly compromised. Reports claim 17 wallets affected and losses >$19M; root cause still unclear. #Security #Web3
71
Yuga Labs says it recovered 68 NFTs (incl. 29 Bored Apes 2 CryptoPunks) in an emergency white-hat operation after an exploit was discovered in Flooring Protocol. #NFTSecurity #Web3
1
76
BNB Chain alert: ATM token reportedly exploited via custom transferFrom() logic. Reports estimate ~$243.5K drained; attacker activity tied to an on-chain tx flagged by monitors. If exposed, review/revoke approvals and monitor official updates. #BSC #DeFiSecurity
2
1
9
752
BNB Chain: BYToken exploited via an unprotected triggerAutoBurn() call. Report says attacker used a flashloan PancakeSwap flow, skewed BY/WBNB reserves (burn sync) and drained liquidity for ~146.6 BNB profit. #DeFi #Exploit
175
Zcash completed an emergency NU6.2 upgrade after a critical soundness bug was found in the Orchard shielded pool. Orchard was briefly disabled via soft fork, then re-enabled after the hard fork. No exploitation reported. #Zcash #Security
108
ATM token on BNB Chain was reportedly exploited via a custom transferFrom() logic flaw, with ~20% auto-swap mechanics allegedly abused repeatedly. Estimated loss: ~$243.5K. #BSC #DeFiSecurity
1
159
Ledger Donjon disclosed a lab laser fault-injection technique that can bypass Ed25519 verification on the TROPIC01 chip (used in Trezor Safe 7), enabling unauthorized firmware execution with physical access. #Security #HardwareWallet
116
EdgeX says a thin-liquidity EDGE sell wave (174 addresses) triggered a sharp price crash and cascading perp liquidations. EdgeX offers capped reimbursements for impacted Perp V1/V2 users (04:50–06:00 UTC 8, Jun 2) a 200k USDC bounty. #DeFi #Security
1
100
Phala says it patched a Phala Cloud API vuln that allowed unauthorized changes to some CVMs. If you used affected Offchain KMS CVMs: replace CVMs rotate any secrets/env vars and relevant AWS/ECR credentials. #Web3Security #CloudSecurity
70
BNB Chain: TesseraDAO ($TSR) exploited via unauthorized minting. Reportedly 99M TSR were minted and dumped for ~$2.4M, crashing TSR ~99%. Proceeds were reported sent to Tornado Cash. #DeFi #exploit
1
2
148
Load more