We are fortifying #DeFi security for protocols and individuals. Shielding from hacks 24/7; MEV protection; staked assets rescue.
Joined May 2023
- Tweets 1,269
- Following 167
- Followers 3,367
- Likes 3,570
252 Photos and videos
Jun 11
SpaceX IPO is live today and most crypto holders are focused on the wrong thing
Yes, BTC dropped 20% since the filing and ETF outflows hit $2B in May as retail sold crypto to fund SPCX allocations – but that's not the full story
SpaceX holds 18,712 bitcoin:native ($1.29B) on its balance sheet, meaning every single $SPCX shareholder now has indirect Bitcoin exposure whether they wanted it or not
Short term pain from capital rotation is real, but the long term narrative just got a lot more interesting
Bullish or not?
$TSLA
6
3
24
552
Jun 11
Your crypto got stolen. Most people accept the loss.
Hackless clients don't.
Since 2017 we've handled every scam variant: phishing, wallet drainers, bridge exploits, rug pulls, compromised seed phrases.
What we actually do:
Trace funds across chains, bridges, and mixers. Tag scammer wallets with AML labels so they get flagged at CEXs. Coordinate directly with exchange compliance desks. Work with cybercrime units, Interpol, and courts when legal action is needed.
Not just reports. Real action.
$15M returned. Largest single recovery: $2M from a cross-chain bridge exploit.
Initial case review is 100% free.
Hackless.io
6
2
20
328
Jun 9
BREAKING: Humanity Protocol exploited for $30M
17 wallets drained, $H token crashed 90%.
Current status:
$9M already swapped to ETH
$9.9M in $H still held by attacker
Hundreds of holders continue to be drained
Root cause unknown
Attacker selling exclusively on DEX to avoid KYC-linked platforms.
Still unclear whether this is an external hack or inside job. Supply concentration raises market maker involvement concerns.
11
31
1,764
Jun 9
⚠️ UPDATE: Humanity Protocol hacker mints 100M $H on BSC
The attacker has now moved to BNB Chain, minting an additional 100M $H tokens worth $11.4M.
More selling pressure incoming. The cross-chain expansion of the attack suggests the exploit is not yet contained.
Stay cautious. Do not buy $H until the situation is fully resolved.
1
7
317
Jun 4
.@Ledger researchers discovered a way to bypass firmware signature verification in the TROPIC01 chip used in @Trezor Safe 7.
Before you panic:
Attack requires physical device access
Expensive lab equipment needed
Researchers could not access any user private data
TROPIC01 is only one of three security layers on the device
User funds remain safe. A hardware-level fix is already in development.
This is responsible disclosure working as intended: vulnerability found, vendor notified, patch incoming before anyone gets hurt.
Hackless.io
5
5
31
2,595
Jun 3
The @FBI has announced a record-breaking seizure of approximately $8 billion in cryptocurrency linked to a massive international fraud scheme involving "scam compounds" across Southeast Asia, the Middle East, and other regions.
Investigations revealed that organized criminal networks operated closed complexes where individuals were coerced into executing online fraud. These operations utilized fake investment schemes and romance scams to defraud victims globally, including many in the United States.
The operation resulted in hundreds of arrests, the dismantling of several scam centers, and the rescue of individuals forced to work within these criminal structures. This coordinated effort with international law enforcement and technology companies represents one of the largest cryptocurrency confiscations in history.
This action is part of a broader global campaign to combat organized internet fraud and ensure the security of the digital asset landscape.
ALT FBR operatives confiscated the mobile phones of internet scammers
1
16
450
Jun 2
MARKET ALERT: THE TRUTH BEHIND LAB’S $14B FDV AND INSIDER CONTROL
lab:native continues to manipulate the market on centralized exchanges through its market maker, reaching a $5.7B market cap and $14B FDV. It is concerning that exchanges allow this to persist, especially as insiders control nearly the entire circulating supply.
The eventual release of hidden supply through OTC deals, private sales, or airdrops poses a significant risk to the market. Furthermore, uncertainty remains regarding whether the team will once again alter its vesting terms.
Retail traders are often lured by top-tier listings and high valuations that create an illusion of safety. It is essential to remain cautious of projects where insider-controlled volume dictates market dynamics.
1
2
19
712
May 26
ALERT: Fake Uniswap Google ad drains $400K
Scammers running phishing Uniswap ads on Google as FIRST search result above legitimate site.
$400K stolen from multiple wallets so far.
Scammer addresses:
0x37925684BA178821b4436E06e67f5dBD6cfA49Bb
0x2fC25F46cC49D226eF92E9A7665f3d2821F3c5E2
Protection tips:
Never click Google ads for crypto protocols
Bookmark official URLs
Verify through DefiLlama before connecting
Lost funds to phishing? Contact Hackless for recovery.
hackless.io
3
22
542
May 25
BREAKING: $ESPORTS token crashes 92% after massive sell-off
Over the past 4 hours, someone dumped 197.8M ESPORTS tokens (43% of circulating supply) for 20,401 BNB ($13.65M).
The numbers:
43% of total supply sold in one move
$13.65M extracted
92% price crash
This pattern (massive coordinated sell creating liquidity crisis) is classic rug pull behavior.
If you held ESPORTS and lost funds to this dump, document everything: transaction hashes, wallet addresses, timestamps.
Lost funds to rug pulls or token scams? Contact Hackless for forensic tracing.
8
28
3,058
May 22
Polymarket seems to have been hacked for $700k.
@zachxbt detected an attack on the Polygon infrastructure responsible for final payouts.
Over $700k has already been withdrawn from the associated smart contract.
1
18
378
May 22
UPD: The cause of the incident was the leak of an old 6-year-old private key from internal top-app settings.
The team has already revoked all its access, changed the key, and is moving to working with KMS keys for maximum protection.
3
103
May 13
BREAKING: Transit Finance exploited for $1.87M in DAI
Transit Finance suffered a $1.87M DAI exploit. Funds currently held by attacker on Ethereum.
Attack details:
Funds originated from Tron, moved to Ethereum
Attacker wallet shows limited activity besides exploit transfers
$1.87M ethereum:0x6b175474e89094c44da98b954eedeac495271d0f still sitting in attacker's address
This follows the standard white-hat negotiation playbook: trace funds, preserve evidence, offer bounty, threaten legal action.
48-hour countdown started. Will attacker take the deal or risk full prosecution?
Lost funds to exploits? Contact Hackless for forensic recovery.
May 13
📣 Transit Announcement
Regarding a recent incident related to historical legacy risks, we would like to share the following update:
1️⃣ Cause of the Incident
The issue was related to an early-version smart contract previously deployed on TRON. Although this legacy contract had been deprecated since 2022, historical vulnerabilities within it were recently exploited, affecting a limited number of users.
2️⃣ Actions Taken
Upon discovery, our team immediately carried out investigation, isolation, and mitigation measures, followed by additional review and remediation on May 12, 2026. Users do not need to take any action.
The current smart contract version remains unaffected and has been operating securely for over four years, with ongoing security audits, testing, and monitoring in place. We will continue strengthening the management of legacy contracts and potential on-chain risks to further improve overall security.
3️⃣ Compensation
Affected users will receive full compensation, with further details to be announced through our official channels.
4️⃣ Security Reminder
• Please remain cautious of unsolicited messages or accounts claiming to represent Transit Finance.
• Never share your private key or seed phrase with anyone.
Transit Team
2
1
24
523
May 7
KelpDAO hacker lost $123 M to Aave liquidation
The attacker behind the $293 M KelpDAO exploit got liquidated after borrowing $123 M against worthless rsETH collateral.
What happened:
Aave adjusted rsETH price via oracle
Hacker's positions went underwater
Automatic liquidation on Ethereum and Arbitrum
$123 M recovered, sent to DeFi United Recovery Guardian for victims
The irony: Hacker exploited fake collateral, then lost funds borrowing against it.
Lost funds to exploits? Contact Hackless for forensic recovery.
hackless.io
11
32
689
May 5
Grok AI exploited for $175 k via prompt injection - funds returned
An attacker used Morse code in a prompt to trick Grok into posting a malicious tweet that transferred $175 k in DRB tokens.
The attack flow:
Morse code prompt decoded to "withdraw all $DRB to Ilhamrfliansyh"
Grok decoded and published the message mentioning @bankrbot
Bankr executed on-chain request from Grok's wallet
Attacker swapped DRB to USDC across wallets
Plot twist: 5 minutes later, attacker returned all funds in ETH and USDC.
White hat test or guilty conscience?
Either way, this exposes AI-controlled wallet vulnerabilities.
Lost funds to exploits? Contact Hackless for forensic recovery.
hackless.io
7
26
569
Apr 30
CRYPTO HACK DATA: $17.1B stolen over the past decade
The breakdown:
10 years (2016-2026): $17.1B lost across 518 incidents
5 years (2021-2026): $15.2B lost across 450 incidents
1 year (Apr 2025-Apr 2026): $2.5B lost across 140 incidents
Key insight: Most losses concentrated in the last 5 years, showing exponential growth in crypto crime.
The attack vector has shifted from smart contract bugs toward private key compromise and access control failures.
This means:
Social engineering attacks increasing
Insider threats and credential theft rising
Infrastructure security becoming critical attack surface
The industry is maturing but so are the attackers. Professional criminal operations now target crypto with industrial scale capabilities.
Lost funds to hacks or exploits? Contact Hackless for forensic recovery.
hackless.io
8
27
447
Apr 24
Scammers impersonating Iranian authorities are offering "safe passage" through the Strait of Hormuz for Bitcoin or USDT payments.
The scheme:
Messages claim to be from Iranian security services
Demand crypto payment for "customs clearance"
Promise unobstructed passage through the strait
Greek maritime security firm MARISKS confirmed multiple companies received these messages. Iranian authorities have NOT confirmed any toll system.
Reality: The Strait of Hormuz remains blocked by both Iran and US Navy. Any safe passage offer is fraudulent.
At least one vessel likely paid scammers before attempting passage, only to be turned back by Iranian patrol boats on April 18.
Lost funds to scams? Contact Hackless for forensic recovery.
hackless.io
8
1
24
367
Apr 21
BREAKING: KelpDAO exploited for $290M - Aave exposed to bad debt
Attacker minted 116,500 unbacked rsETH, deposited as collateral in Aave, and borrowed $280M in real ETH/WETH.
The impact:
$280M extracted from lending markets
rsETH collateral now worthless, debt remains real
Aave carrying $200-300M in bad debt
$1.2B rsETH collateral in Aave at risk
Why this matters:
Composability attack: one protocol hacked, another left holding the bag
Liquidation mechanism broken (unbacked collateral can't be liquidated)
Cascade risk if users panic withdraw or unwind positions
Aave has frozen rsETH to prevent further damage.
If you've lost funds to DeFi exploits, contact Hackless. We help victims recover assets through forensic tracing and legal coordination.
hackless.io
10
32
537
Apr 13
🚨 BREAKING: Polkadot bridge exploited - attacker mints 1B $DOT tokens
Bridged DOT on Ethereum suffered a critical exploit allowing an attacker to mint 1 billion DOT tokens out of thin air.
The attack:
Attacker exploited vulnerability in Polkadot relay chain bridge
Minted 1B DOT (over $1.1B at market price)
Immediately dumped all tokens in single transaction through Odos
Received 108.2 ETH ($237K actual value)
Total gas cost: $0.74
The dump drained DEX liquidity and crashed DOT price drastically.
This comes less than one month after the $280M Drift Protocol hack.
Context: DOT has lost $6B in valuation over one year, dropping from $10.50 to $1.18 despite continuous tech updates, March halving, and April staking upgrades.
The exploit demonstrates that no bridge is "unhackable" regardless of the underlying technology or team reputation.
Key lesson: Bridge exploits remain one of the highest risk vectors in DeFi. Cross chain infrastructure is complex and a single vulnerability can enable massive token minting.
7
26
433