710710
0xsec.eth π
@0xsec.eth #710710
just for fun β’ security researcher β’ share my findings to bring security awareness β’ /dev /infosec /farcaster /bot
790 Follower 52 Following
Happy Degen Claim & Confetti Day ππ
Lets rain 4900 $DEGEN
The experiment I did in the last season, where I auto-claimed for you guys, wasn't about "a joke" of a free gas. It was actually a clever way to surprise one step ahead of you all or even @jacek, so you wouldn't have guessed I'd auto-claim for you guys until you realized it was already in your walletπΈ .
In conclusion, I think we can all agree that confetti has a special meaning to us. So, share your thoughts and let's celebrate this degen confetti day! ππ
Lets rain 4900 $DEGEN
The experiment I did in the last season, where I auto-claimed for you guys, wasn't about "a joke" of a free gas. It was actually a clever way to surprise one step ahead of you all or even @jacek, so you wouldn't have guessed I'd auto-claim for you guys until you realized it was already in your walletπΈ .
In conclusion, I think we can all agree that confetti has a special meaning to us. So, share your thoughts and let's celebrate this degen confetti day! ππ
Hey everyone,
as I mentioned earlier since its still not update yet. Today, I simulated a real bot attack to target degen.mint.club (@mcdegen), which had the same issue as @warpcast. It affected 47 users and resulted in 279,695 swapped $degen. I'll send out refunds ASAP, hopefully by tomorrow, according to the list here (https://dune.com/queries/4083858).
Based on this, I think it's clear that @warpcast will be more vulnerable to this issue. Pls help me prioritize fixing it ASAP!
cc: @dwr.eth @undefined @jacek @mcdegen
as I mentioned earlier since its still not update yet. Today, I simulated a real bot attack to target degen.mint.club (@mcdegen), which had the same issue as @warpcast. It affected 47 users and resulted in 279,695 swapped $degen. I'll send out refunds ASAP, hopefully by tomorrow, according to the list here (https://dune.com/queries/4083858).
Based on this, I think it's clear that @warpcast will be more vulnerable to this issue. Pls help me prioritize fixing it ASAP!
cc: @dwr.eth @undefined @jacek @mcdegen
Still no update yet!
I came across a similar vulnerability related to this and I'm planning to test a real exploit tomorrow. I'll be able to show you how to steal your assets. Today, I'm working on creating an exploit bot to run on my vps.
https://dune.com/queries/4078976: If your asset was stolen by these address, it'll be sent back once the issue gets fixed. Don't worry!
builder, realized the issue? DC me for the details issue to fix!
I came across a similar vulnerability related to this and I'm planning to test a real exploit tomorrow. I'll be able to show you how to steal your assets. Today, I'm working on creating an exploit bot to run on my vps.
https://dune.com/queries/4078976: If your asset was stolen by these address, it'll be sent back once the issue gets fixed. Don't worry!
builder, realized the issue? DC me for the details issue to fix!
Just changed my fname @0x321 to @0xsec.eth, as the ENS for 0x321 was already taken! I originally set up this account just for fun, sharing my findings on Fc projects with the community here, and it wasn't meant to represent my real or personal account.
2mo ago, Ive reached out to @horsefacts.eth about a security issue on 'Verified Addresses', but it looks like there's still no update. The thing is, users might not even notice if someone else adds a new wallet address to their account. This is because the new address won't show up in Wc, and you can only see it through the Fc API (like @neynar). This could happen if someone uses a bot script to scan accounts in real-time based on their sequential FID. Until this gets fixed, just make sure to double-check your verified addresses list at least 20 minutes after adding a new address to your Wc using neynar. https://warpcast.com/jacek/0x40c845cf
Hey All!
I've got a sweet surprise for ya - I've covered all the gas fees for the pre-official Degen Airdrop S7 claiming! That's right, 14,583 addresses have been claimed so far. You should see your $WDEGEN reward in your wallet on the Degen chain. Go check it out and congrats to everyone!
cc @jacek
I've got a sweet surprise for ya - I've covered all the gas fees for the pre-official Degen Airdrop S7 claiming! That's right, 14,583 addresses have been claimed so far. You should see your $WDEGEN reward in your wallet on the Degen chain. Go check it out and congrats to everyone!
cc @jacek
maybe there'll be a surprise on the day of the claim! I'm planning to cover all the gas fees just like I did on the previous Liquidity reward claim. I'll make sure to take care of everything π§βπ³
Hereβs a spot-on personality analysis of my account, courtesy of the smartest AI in the Farcaster world, @xcasttech. Itβs so accurate that I just canβt wait to share it with everyone. You should give it a try tooβwhat do you say?
30?what!!!π€£π€£π€£
30?what!!!π€£π€£π€£
Thank you so much @betashop.eth & team for this amazing challenge. π And to all the other winners, congrats on your well-deserved prizes! π It's amazing to see so many talented individuals creating such incredible value for the Moxie ecosystem - your dashboards are truly impressive! π₯
been checking out the Degen chain! since @jacek is all about focusing more on rewards on the Degen chain, like the liquidity mining rewards that are going out to Degen chain, which is amazing!π.
With all the scammers popping up lately, so I figure it's best to take the initiative to claim the reward for you all, so you don't have to worry about it. And guess what? Your $wdegen reward is already in your wallet!
With all the scammers popping up lately, so I figure it's best to take the initiative to claim the reward for you all, so you don't have to worry about it. And guess what? Your $wdegen reward is already in your wallet!
Yes, everything is fine.
Just reporting: "Just identified a high security vulnerability lead to a large-scale data breach and compromise sensitive information" in Dune.
cc @dune.eth
https://dune.com/feedback/p/just-identified-a-critical-security-vulnerability-lead-to-a-large
cc @dune.eth
https://dune.com/feedback/p/just-identified-a-critical-security-vulnerability-lead-to-a-large
Dedegen?
Yeah, hereis!
Yeah, hereis!
I just made a query for all those accounts that are suspected of farming, who's the real person behind the account dummy, only created to stake millions of degens? take alook, you won't believe it π±
https://dune.com/0x321/degen-s6-238132/a1ca6bc6-2e87-4961-a80c-f06713662b5e
https://dune.com/0x321/degen-s6-238132/a1ca6bc6-2e87-4961-a80c-f06713662b5e
Most people don't know that deleting a tip doesn't actually do anything - it'll still be counted and marked as valid anyway
Ya. Its ME!
321...321...321..
https://warpcast.com/0x321/0x81aaa3b5
https://warpcast.com/0x321/0xdec3f75f
321...321...321..
https://warpcast.com/0x321/0x81aaa3b5
https://warpcast.com/0x321/0xdec3f75f
Hey, it's hard to get in touch with you since Warpcast is hiding me on your cast reply & direct cast (dm). So, I added some "!!!big!!!" to the app to get your attention π€―. If you see this, please reply and DM me back so we can connect π
Found a critical issue on app.wildcard.lol - dm me for the details @lolwildcard
"I can set my points and tip anyone $WILD as much as I want πΈπ"
cc @yekim.eth @defikaran.eth
"I can set my points and tip anyone $WILD as much as I want πΈπ"
cc @yekim.eth @defikaran.eth