Bricks in the Air was a hit at Ekoparty—used by participants of all ages to learn and explore protocol security in a hands-on way. Stay tuned for chances to try it at a conference near you. #ProtocolSecurity #Ekoparty #AerospaceVillage #SecurityResearch #SpaceSecurity

AI front-running represents an emerging threat to autonomous coordination. Current designs ignore trust propagation. #DeAI #Web3 #AI #Security #Cybersecurity #Risk #ProtocolSecurity #Solution

I’ve published a formal, adversarial, invariant-driven model of protocol-level quantum safety in Bitcoin. The core result is simple: If any reachable state still contains spendable secp256k1-based authorization, then Bitcoin is not quantum-safe at the protocol level. This work formalizes: state transitions over the UTXO set authorization as a game-based property invariant preservation adversarial network execution QROM constraints and the migration dilemma between safety and liveness Localized workarounds are not system-wide guarantees. GitHub (paper formal model): github.com/doomhammerhell/bi… Relevant for anyone claiming “quantum-safe Bitcoin without protocol changes.” #Bitcoin #PostQuantum #Cryptography #FormalMethods #ProtocolSecurity #BlockchainSecurity #QROM #DistributedSystems

Aquela sensação quando o TLA te mostra que a invariante de segurança do protocolo "padrão de mercado" é quebrada com 3 transações simultâneas e uma condição de corrida que ninguém imaginava. O segredo é manter a mística (e o meu Bug Bounty garantido)." #MethodsFormals #TLAPlus #ModelChecking #SecurityResearch #ProtocolSecurity #MathDontLie

Security Is Not a Feature. It’s a Design Discipline. Real infrastructure must assume failure before it happens. NanoChain’s security model is explicit about failure modes and real operational constraints. Because production systems are not built for perfect conditions they are built to remain recoverable when things go wrong. NanoChain integrates mechanisms designed for operational resilience: • Registry-driven upgrades • Emergency deactivation mechanisms • Quorum-based governance rules • Bounded scoring for controlled decision logic These controls ensure the system stays accountable, recoverable, and verifiable even under stress. That’s the difference between a demo protocol and a production-grade network where real value is on the line. NanoChain Network: nanch.network/ Official Links: nanch.link/ Private Sale Access: purchase.nanch.network/ #nanochain #nanch #blockchain #web3 #security #protocolsecurity #decentralization #cryptography #infrastructure #protocoldesign #evm #blockchainarchitecture #web3technology

Mytier ve Blockchain Protokolleri Mytier, kuantum sonrası algoritmalarla protokol güvenliğini güçlendirir. #Mytier #MT #ProtocolSecurity #PQC #Blockchain

Audited contracts are still getting exploited. Why? 1. Smart Contract Audits are point-in-time. Code changes post-audit break assumptions. 2. Most audits cover code, not operations. Lazarus doesn't care about your Solidity. 3. One audit firm can't catch everything. Different methodologies find different bugs. 4. Business logic flaws cost $63M last year. These are the hardest to catch automatically. An audit is the starting line, not the finish line. What's your protocol doing after the audit? hydnsec.com/security #SmartContractAudit #DeFiSecurity #Web3 #BlockchainSecurity #ProtocolSecurity

Are you up to speed on BSSC's blockchain security standards? These standards aren't a suggestion, it’s a call to action. Catch up or fall behind. Secure what matters. Be a part of BSSC. Let’s set the standard for security, together: lnkd.in/e5BQs9_v #SecureBlockchain #CryptoCompliance #ProtocolSecurity #BlockchainSecurity

GOOD EVENING @Neverland_Money implements a mandatory time lock (execution delay) between a successful governance vote and the actual execution of the protocol change on the Monad contracts. This security feature, common in highly secure DeFi protocols, is crucial for mitigating risks associated with malicious or rushed proposals. The delay which can range from 24 to 48 hours, provides the community, developers, and whitehat security firms a critical window to review the final transaction payload and trigger an emergency veto if a security vulnerability is identified before the code is implemented. #Governance #SecurityDelay #ProtocolSecurity

Trust built on the backbone of MEV technology is now powering your rewards. 🛡️ The @wallchain team brings protocol-level security and battle-tested architecture to the creator economy. Your influence is secure. Your rewards are guaranteed. No compromises. Do you value proven reliability in Web3 infrastructure? 👇 #ProtocolSecurity #MEVTech #DeFiRoots #Wallchain

#分析 完成了，Balancer V2 漏洞的技术分析 发现攻击者通过 _downscaleDown 函数的向下舍入操作，操控不变式D值，扭曲BPT价格，造成超过1.2亿美元损失 认为可圈可点的地方： 1️⃣ 定位到 ScalingHelpers.sol 核心漏洞 2️⃣ 还原完整的三阶段攻击链 3️⃣ 实证分析真实攻击交易 GitHub（具体文章md内容）: github.com/Flutedsi/protocol… 休息休息 #DeFiSecurity #ProtocolSecurity #Balancer #Ethereum

For any Web3 project, visual trust is the #1 asset. Turning a technical audit into a high-impact graphic that assures the community of stability. No hype, just Verifiable Trust on-chain. ⚡ #web3design #GraphicDesigner #graphic #BrandDesign #socialmediadesign #ProtocolSecurity

Top 6 MCP Vulnerabilities (and How to Fix Them) - descope.com/blog/post/mcp-vu… @omercnet at @descopeinc #AIsecurity #MCP #AgentSecurity #PromptInjection #SessionHijacking #ToolingSecurity #Mitigation #ProtocolSecurity #LLM #Hardening #descopeinc #descope

CVE-2025-6515: Prompt Hijacking in MCP ecosystems - jfrog.com/blog/mcp-prompt-hi… by @JFrog, @JFrogSecurity JFrog Security Research recently discovered and disclosed multiple CVEs in oatpp-mcp – the Oat framework’s implementation of Anthropic’s Model Context Protocol (MCP) standard. Among these, CVE-2025-6515 stood out due to its potential threat of hijacking MCP session IDs. Within the context of MCP we’ve dubbed this new attack technique “Prompt Hijacking“. #AIsecurity #MCP #PromptInjection #SessionHijacking #LLM #ProtocolSecurity #Agents #RCE #ThreatModeling #Mitigation #OriHollander, #OfriOuzan #JFrog #JFrogSecurity

Disclaimer: For educational and defensive purposes only. This overview highlights risks, detection strategies, and hardening practices it does not teach exploitation techniques. 🔒 #RedTeam #BlueTeam #NetworkSecurity #CyberSecurity #ProtocolSecurity #PortSecurity #ThreatHunting

📅 TET Wields Consensus as Spear; FUSN Arms Protocol as Shield 🗣️ TET’s community consensus sharpens collective direction 🛡️ FUSN’s protocol guarantees flawless backend execution ⚔️ With spear and shield—TET & FUSN are battle-ready #TET #FUSN #Consensus #ProtocolSecurity

State of Agentic AI Security and Governance - linkedin.com/feed/update/urn… The State of Agentic AI Security and Governance provides a comprehensive view of today’s landscape for securing and governing autonomous AI systems. It explores the frameworks, governance models, and global regulatory standards shaping responsible Agentic AI adoption. Designed for developers, security professionals, and decision-makers, the report serves as a practical guide for navigating the complexities of building, managing, and deploying agentic applications safely and effectively. Contributors: Kayla Underkoffler, @rocklambros, @artmaro (Evgeniy Kokuykin), @thekatzsisters (Keren Katz), Joshua Beck, @vtahowe (Allie Howe), @kenhuangus (Ken Huang), Sumit Ranjan, Vineeth Sai Narajala, Josh Devon, Victor Lu, Abhineeth Pasam, Kellen Carl, Ron Herradian, Ninad Doshi, Nayan Goel, Brian S Boyd, John Sotiropoulos, Ron F. Del Rosario Reviewers: Alejandro Saucedo, Apostol Vassilev, Chris Hughes, Hyrum Anderson, Steve Wilson, Scott Clinton, Vasilios Mavroudis, Josh Collyer, Egor Pushkin, Peter Bryan, Daniel Jones, Michael Burgurvy Source: genai.owasp.org/resource/sta… By @owasp #agenticai #aigovernance #owaspgenai #threatmodel #memorypoisoning #toolmisuse #privilegeescalation #resourceoverload #goalmanipulation #identityspoofing #protocolsecurity #aisbom #runtimeguardrails #redteaming #insiderthreat #regulatorycompliance #ethicalai #multiagent #adaptivegovernance #aisafety

AI Security Research - 17 papers - July 2025 taleliyahu.medium.com/ai-sec… This is my selected list of 17 research papers covering LLM security, agent vulnerabilities, MCP abuse, backend flaws, smart contract analysis, and red teaming benchmarks. 1️⃣ We Urgently Need Privilege Management in MCP: A Measurement of API Usage in MCP Ecosystems 2️⃣ TRiSM for Agentic AI: A Review of Trust, Risk, and Security Management in LLM-based Agentic Multi-Agent Systems 3️⃣ AIRTBench: Measuring Autonomous AI Red Teaming Capabilities in Language Models 4️⃣ A Survey of LLM-Driven AI Agent Communication: Protocols, Security Risks, and Defense Countermeasures 5️⃣ RepoAudit: An Autonomous LLM-Agent for Repository-Level Code Auditing 6️⃣ Decompiling Smart Contracts with a Large Language Model 7️⃣ Dynamic Risk Assessments for Offensive Cybersecurity Agents 8️⃣ When LLMs Autonomously Attack 9️⃣ ETrace: Event-Driven Vulnerability Detection in Smart Contracts via LLM-Based Trace Analysis 🔟 BaxBench: Can LLMs Generate Correct and Secure Backends? 1️⃣1️⃣ Autonomous AI-based Cybersecurity Framework for Critical Infrastructure 1️⃣2️⃣ SafeGenBench: A Benchmark Framework for Security Vulnerability Detection in LLM-Generated Code 1️⃣3️⃣ Red Teaming AI Red Teaming 1️⃣4️⃣ From Prompt Injections to Protocol Exploits: Threats in LLM-Powered AI Agent Workflows 1️⃣5️⃣ Vulnerability Detection Model using LLM and Code Chunk 1️⃣6️⃣ Trivial Trojans: How Minimal MCP Servers Enable Cross-Tool Exfiltration of Sensitive Data 1️⃣7️⃣ Security Challenges in AI Agent Deployment: Insights from a Large Scale Public Competition #AISecurity #RedTeaming #MCP #LLMAgents #SmartContracts #CodeAuditing #ProtocolSecurity #BackendSecurity #PromptInjection #MemoryPoisoning #SupplyChainSecurity #AgentSecurity #CTF #VulnerabilityDetection #AutonomousAgents #LLMSecurity

🕯️ “They lock assets in vaults. We build fortresses from belief.” They call it “safe” — because the keys are in their hands. But we took a different path: Not vaults and gatekeepers, but contracts and consensus. In a world of uncertainty, A stands as a fortress of value — built on code, not control. You don’t need to trust anyone. Just trust the system that trusts no one. 【A · The Last Safe Haven for Value in a Volatile World】 #DeFi #TrustlessFinance #ProtocolSecurity #Awake #ORIGIN

Your systems evolve. So should your protection. LayerFF’s modular security layer adapts to where your code, contracts, or cloud lives. #Web3Security #ZeroTrust #ProtocolSecurity #LayerFF #SecurityByDesign #BuiltToDefend #SmartSecurity #OnChainSecurity #CyberDefense