11364
• Articles: @officercia • Blog: officercia.mirror.xyz • X: x.com/officer_cia
In today’s digital age, concerns surrounding security and OpSec (Operational Security) are paramount. As we navigate a world filled with cybersecurity threats and information breaches, looking back at ancient stories may seem unconventional.
However, the narratives passed down through generations carry lessons that hold relevance even in the present day. Ancient stories, woven into the fabric of human cultures, have long served as a medium for transmitting knowledge and wisdom. By examining these narratives through a modern lens, we can tease out valuable lessons pertaining to security and OpSec!
Check out my article ⬇️
• https://officercia.mirror.xyz/CLsdsEZMDxLA8el7Reo7RLqyvXtxxsqP8Mmqm5J8jcc
#security #opsec
https://github.com/0xcacti/awesome-oracle-manipulation
Читать полностью…
- Hi! I checked the airbnb camera detector but it is too expensive… is there a cheaper alternative?
Answer ⬇️
• x.com/officer_cia/status/1798698253808201883
#security #opsec #privacy
🧢 Great News!
You can now get updates on R.xyz BB programs by joining Web3 Bug Bounty Alerts Telegram channel! 🚀
- Do any wallets support entering a duress-like password?
Answer ⬇️
• x.com/officer_cia/status/1798340868685906322
#security #privacy #opsec
Yet another important OpSec tip FYI:
• vxtwitter.com/officer_cia/status/1798013562109222986?12
Clickable link: x.com/officer_cia/status/1798013562109222986
#security #opsec
Another AMA to be posted soon, stay tuned!
• x.com/opensensepw/status/1797162510761545791
#ama #security #osint
A couple simple tips won't hurt your OpSec, please save this post!
Please support my work on OpSec & privacy. I am not a whale at all (feel free to cross-verify) and need your support.
The best thing is to support me directly by donating to any address from the list below:0xB25C5E8fA1E53eEb9bE3421C59F6A66B786ED77A or officercia.eth — Ethereum & L2s;17Ydx9m7vrhnx4XjZPuGPMqrhw3sDviNTU or bc1q75zgp5jurtm96nltt9c9kzjnrt33uylr8uvdds or bc1p378ghr5k40tm2tw40m4lu4a680m8cfpqd7m6utx5d6p28e5xvnpsqs9f86 - Bitcoin;0zk1qydq9pg9m5x9qpa7ecp3gjauczjcg52t9z0zk7hsegq8yzq5f35q3rv7j6fe3z53l7za0lc7yx9nr08pj83q0gjv4kkpkfzsdwx4gunl0pmr3q8dj82eudk5d5v - Railgun;TYWJoRenGB9JFD2QsdPSdrJtaT6CDoFQBN - TRX;
You can also support me by minting one of my Mirror articles NFTs or just DM me in Telegram (@farm42) for address! Thank you very much! ❤️
Decentralized exchange Velocore addresses $7 million hack in postmortem, offers bounty to hacker!
Please RT for visibility!
• x.com/officer_cia/status/1797346199705444442
#security #osint
Velocore on zksync and linea got hack, aronund 10m!
TX hash: 0xce7125b2104e5dd8156357be6febe6ee59ddcbd79ae010166df69487ae17b5bc
All LPs gone: x.com/officer_cia/status/1797068809959854340
#security #alert
Just a bunch of freshly released web3 security tools:
• getrecon.substack.com/p/introducing-recon-invariant-testing
• x.com/msolomon44/status/1793071526167843069
• x.com/swissknifexyz
• x.com/youfelll/status/1795117529783791876
• github.com/ioterw/tracevm
More here: github.com/OffcierCia/tips-solidity-code-auditors
#audit #solidity #web3
Check out article about this incident by Rekt News: rekt.news/dmm-rekt
Brainstormed a bit and seems now I have several ideas to share:
We may create a research article about vanity attacks on Bitcoin + implement a defense solution. Examples of address poisoning on Bitcoin:
• github.com/AngelTs/vanitygen-plusplus-ported-for-VS2019
• bitcointalk.org/index.php?topic=5076779.0
Bitcoin clipper examples:
• news.ycombinator.com/item?id=32614037
• arxiv.org/pdf/2108.14004.pdf
• twitter.com/officer_cia/status/1518421637716193282
WDYT?
#security #bitcoin
Link: github.com/OffcierCia/DeFi-Developer-Road-Map
Читать полностью…
Based News! We're thrilled to announce that Remedy (R.XYZ) is supporting BaseChain!
Projects building on Base can now easily launch bug bounty programs and benefit from:
• No commissions;
• Free triaging during beta (powered by hexens.io ;
• No more spam reports;
• Cutting edge proof of duplicate;
• Access to top security researchers;
• Access to Glider (glide.gitbook.io/main), our flagship technology.
Join us in enhancing security across the Base ecosystem!
🎙️Mark your calendars for our next AMA with the incredible @hake_stake from Proof Of Podcast
Unique opportunity to be the one asking questions for a change and learn from the amazing Hake himself.
📅 3rd June, 5pm CET
📍 Remedy Discord
Date: 2024-06-05
Bug bounty program was added to Remedy:
Have you ever wondered how auditors manage to keep track of all the records and notes?
Check out ⬇️
• x.com/xyz_remedy/status/1798437635154649564
#security #audit #offtopic
Just a bunch of freshly released web3 security tools! ⚒️
• x.com/officer_cia/status/1798421885769908672
#security #audit #web3 #solidity
• Hire bodyguards if you're feeling insecure.
• You're safe even if you can't afford bodyguards.
- I was thinking to get apple watch & make a shortcut when I say for example 'macaroni' for it to send a message to all my close people, etc to know im under attack… Do you guys know anything similiar to this I can buy or I have to make something of my own?
- Of course! Different variations of "panic button", “canary letter”, “deadman’s switch” and "logic gates" are put into practice and you can do exactly the same things yourself. Check out the screenshots, and also the articles I'll drop below (Apple automation as example). But you can also use Android + Tasker + miBand!
• officercia.mirror.xyz/pJSR4RwyOV_elzP8ymn3Ckn-Mat9s5sKE5Mqdmol06Y
#opsec #privacy
I am the Wild West's fastest 🔫 🔫🔫🔫🔫gunslinger!
Appreciate the honorable mention from the rekt.news team!
• rekt.news/velocore-rekt
#security #web3
🔔 Reminder 🔔
The AMA with @hake_stake from @ProofOf_Podcast will take place today- in just 3 hours 🧢
Join our Discord NOW to attend 🙌
Use this list of fantastic telegram channels I've put together in order to discover them as your own personal Web3-Google!
• t.me/addlist/uesom31GM1I4Yjgy
What’s new?
• Added new channels!
Feel free to use this folder to onboard your non-web3 friends to Web3, as the majority of the channels are maintained by independent researchers. There are also additional channels for news, CT reviews, and more!
A small tip to subscribooors: if you find a channel interesting, move it out of the folder into your main list of chats. That way you’ll view content you’re interested in more often, and channels get more views instead of just subscribers!
#offtopic
Analysis (Velocore): x.com/officer_cia/status/1797101710105612667
#security #alert #web3
Also suggest checking out: https://glide.r.xyz
#security #audit
The essence of both attacks is very similar - the victim must copy the wrong address. There is only one difference - in case of address poisoning, the victim copies the address from the transaction history, and in this attack type victim’s device is NOT infected with malware.
In the case of crypto-clipper attack, the device is typically infected by a malware that attacks the clipboard and substitutes a similar but incorrect address.
To protect yourself from the first attack - use the address list in your wallet. To protect yourself from the second attack - always check the address after it has been in the clipboard of your device.
#security #web3
300M$ worth of Bitcoin probably got lost because of either address poisoning attack or crypto clipper malware.
Check out attached image.
• x.com/officer_cia/status/1796960673806602526
#security #opsec
Still rocking 🎸🤘
• x.com/useweb3/status/1796921056097140989
#defi #blog #web3
3 years! 🎊🎉🎄
• x.com/officer_cia/status/1796535764374728730
Missed our brunch this morning? 👀
🍔🍻 Then catch us tonight at Idle Hands, Austin, for an evening of drinks, famous NADC burgers and Glider Insights 💊
RSVP to secure your spot 👈
🗓️ May 30, 5-8PM
📍 Idle Hands, Austin