• bitcoinBitcoin (BTC) $ 43,811.00
  • ethereumEthereum (ETH) $ 2,252.14
  • tetherTether (USDT) $ 1.00
  • bnbBNB (BNB) $ 230.22
  • xrpXRP (XRP) $ 0.627652
  • solanaSolana (SOL) $ 62.59
  • usd-coinUSDC (USDC) $ 0.999521
  • staked-etherLido Staked Ether (STETH) $ 2,250.50
  • cardanoCardano (ADA) $ 0.449546
  • dogecoinDogecoin (DOGE) $ 0.100832
  • avalanche-2Avalanche (AVAX) $ 25.83
  • tronTRON (TRX) $ 0.105057
  • chainlinkChainlink (LINK) $ 15.54
  • polkadotPolkadot (DOT) $ 6.15
  • the-open-networkToncoin (TON) $ 2.30
  • matic-networkPolygon (MATIC) $ 0.843243
  • wrapped-bitcoinWrapped Bitcoin (WBTC) $ 43,623.00
  • shiba-inuShiba Inu (SHIB) $ 0.000010
  • litecoinLitecoin (LTC) $ 73.40
  • daiDai (DAI) $ 1.00
  • bitcoin-cashBitcoin Cash (BCH) $ 249.33
  • uniswapUniswap (UNI) $ 6.05
  • leo-tokenLEO Token (LEO) $ 3.79
  • stellarStellar (XLM) $ 0.123615
  • okbOKB (OKB) $ 57.24
  • moneroMonero (XMR) $ 172.22
  • kaspaKaspa (KAS) $ 0.138071
  • cosmosCosmos Hub (ATOM) $ 9.97
  • ethereum-classicEthereum Classic (ETC) $ 20.31
  • true-usdTrueUSD (TUSD) $ 0.996615
  • crypto-com-chainCronos (CRO) $ 0.096396
  • nearNEAR Protocol (NEAR) $ 2.29
  • hedera-hashgraphHedera (HBAR) $ 0.067909
  • filecoinFilecoin (FIL) $ 4.77
  • internet-computerInternet Computer (ICP) $ 4.89
  • aptosAptos (APT) $ 7.57
  • lido-daoLido DAO (LDO) $ 2.31
  • bittensorBittensor (TAO) $ 339.10
  • thorchainTHORChain (RUNE) $ 6.48
  • mantleMantle (MNT) $ 0.609228
  • vechainVeChain (VET) $ 0.025399
  • immutable-xImmutable (IMX) $ 1.37
  • quant-networkQuant (QNT) $ 112.17
  • optimismOptimism (OP) $ 1.75
  • binance-usdBUSD (BUSD) $ 0.999170
  • the-graphThe Graph (GRT) $ 0.162375
  • blockstackStacks (STX) $ 1.04
  • injective-protocolInjective (INJ) $ 17.48
  • celestiaCelestia (TIA) $ 9.92
  • render-tokenRender (RNDR) $ 3.83
  • aaveAave (AAVE) $ 97.53
  • arbitrumArbitrum (ARB) $ 1.07
  • rocket-pool-ethRocket Pool ETH (RETH) $ 2,462.79
  • makerMaker (MKR) $ 1,446.76
  • terra-lunaTerra Luna Classic (LUNC) $ 0.000217
  • elrond-erd-2MultiversX (EGLD) $ 48.60
  • algorandAlgorand (ALGO) $ 0.157008
  • havvenSynthetix Network (SNX) $ 3.70
  • flowFlow (FLOW) $ 0.771861
  • ordinalsORDI (ORDI) $ 53.72
  • theta-tokenTheta Network (THETA) $ 1.07
  • first-digital-usdFirst Digital USD (FDUSD) $ 0.999849
  • wemix-tokenWEMIX (WEMIX) $ 3.20
  • bitcoin-svBitcoin SV (BSV) $ 51.71
  • the-sandboxThe Sandbox (SAND) $ 0.453133
  • axie-infinityAxie Infinity (AXS) $ 7.08
  • fantomFantom (FTM) $ 0.333953
  • bittorrentBitTorrent (BTT) $ 0.00000097
  • kucoin-sharesKuCoin (KCS) $ 9.52
  • decentralandDecentraland (MANA) $ 0.484829
  • iotaIOTA (IOTA) $ 0.295136
  • galaGALA (GALA) $ 0.029243
  • eosEOS (EOS) $ 0.748061
  • neoNEO (NEO) $ 11.90
  • kavaKava (KAVA) $ 0.830879
  • whitebitWhiteBIT Coin (WBT) $ 5.67
  • tezosTezos (XTZ) $ 0.885458
  • mina-protocolMina Protocol (MINA) $ 0.739920
  • bitget-tokenBitget Token (BGB) $ 0.523850
  • usddUSDD (USDD) $ 0.989746
  • xdce-crowd-saleXDC Network (XDC) $ 0.051179
  • klay-tokenKlaytn (KLAY) $ 0.217166
  • beam-2Beam (BEAM) $ 0.014947
  • conflux-tokenConflux (CFX) $ 0.195668
  • ecasheCash (XEC) $ 0.000035
  • pyth-networkPyth Network (PYTH) $ 0.455359
  • frax-etherFrax Ether (FRXETH) $ 2,247.64
  • cheeleeCheelee (CHEEL) $ 12.44
  • fraxFrax (FRAX) $ 0.997698
  • tokenize-xchangeTokenize Xchange (TKX) $ 8.34
  • suiSui (SUI) $ 0.627810
  • pepePepe (PEPE) $ 0.000002
  • illuviumIlluvium (ILV) $ 103.77
  • pancakeswap-tokenPancakeSwap (CAKE) $ 2.44
  • terra-luna-2Terra (LUNA) $ 1.05
  • chilizChiliz (CHZ) $ 0.082651
  • frax-shareFrax Share (FXS) $ 8.25
  • sei-networkSei (SEI) $ 0.284195
  • apecoinApeCoin (APE) $ 1.64
  • heliumHelium (HNT) $ 4.10
  • rocket-poolRocket Pool (RPL) $ 29.89
  • curve-dao-tokenCurve DAO (CRV) $ 0.628668
  • gatechain-tokenGate (GT) $ 4.28
  • blurBlur (BLUR) $ 0.500705
  • radixRadix (XRD) $ 0.051908
  • fetch-aiFetch.ai (FET) $ 0.520787
  • compound-ethercETH (CETH) $ 45.31
  • dydxdYdX (ETHDYDX) $ 2.94
  • arweaveArweave (AR) $ 7.99
  • staked-frax-etherStaked Frax Ether (SFRXETH) $ 2,398.14
  • gnosisGnosis (GNO) $ 194.41
  • casper-networkCasper Network (CSPR) $ 0.043330
  • trust-wallet-tokenTrust Wallet (TWT) $ 1.20
  • tether-goldTether Gold (XAUT) $ 2,024.61
  • gasGas (GAS) $ 7.59
  • gmxGMX (GMX) $ 51.76
  • osmosisOsmosis (OSMO) $ 0.755941
  • bonkBonk (BONK) $ 0.000008
  • compound-wrapped-btccWBTC (CWBTC) $ 879.64
  • nexoNEXO (NEXO) $ 0.839487
  • coinbase-wrapped-staked-ethCoinbase Wrapped Staked ETH (CBETH) $ 2,373.35
  • pax-goldPAX Gold (PAXG) $ 2,014.20
  • rollbit-coinRollbit Coin (RLB) $ 0.150338
  • zcashZcash (ZEC) $ 31.49
  • paxos-standardPax Dollar (USDP) $ 0.998915
  • huobi-tokenHuobi (HT) $ 2.75
  • aelfaelf (ELF) $ 0.626180
  • terrausdTerraClassicUSD (USTC) $ 0.046941
  • oasis-networkOasis Network (ROSE) $ 0.081712
  • apenftAPENFT (NFT) $ 0.00000042
  • woo-networkWOO Network (WOO) $ 0.230023
  • zilliqaZilliqa (ZIL) $ 0.023355
  • flare-networksFlare (FLR) $ 0.014065
  • 1inch1inch (1INCH) $ 0.376056
  • stepnSTEPN (GMT) $ 0.287262
  • msolMarinade staked SOL (MSOL) $ 72.19
  • roninRonin (RON) $ 1.43
  • huobi-btcHuobi BTC (HBTC) $ 44,045.00
  • akash-networkAkash Network (AKT) $ 1.77
  • flokiFLOKI (FLOKI) $ 0.000040
  • holotokenHolo (HOT) $ 0.002237
  • singularitynetSingularityNET (AGIX) $ 0.308781
  • astarAstar (ASTR) $ 0.071173
  • kujiraKujira (KUJI) $ 3.10
  • dashDash (DASH) $ 32.48
  • basic-attention-tokenBasic Attention (BAT) $ 0.238441
  • 0x0x Protocol (ZRX) $ 0.415503
  • compound-governance-tokenCompound (COMP) $ 51.55
  • nemNEM (XEM) $ 0.038432
  • qtumQtum (QTUM) $ 3.22
  • memecoin-2Memecoin (MEME) $ 0.037919
  • bitcoin-goldBitcoin Gold (BTG) $ 18.57
  • iotexIoTeX (IOTX) $ 0.034551
  • aleph-zeroAleph Zero (AZERO) $ 1.30
  • convex-financeConvex Finance (CVX) $ 3.95
  • enjincoinEnjin Coin (ENJ) $ 0.320394
  • ribbon-financeRibbon Finance (RBN) $ 0.362804
  • mask-networkMask Network (MASK) $ 3.78
  • ocean-protocolOcean Protocol (OCEAN) $ 0.526672
  • axelarAxelar (AXL) $ 0.621513
  • siacoinSiacoin (SC) $ 0.005960
  • loopringLoopring (LRC) $ 0.244337
  • mx-tokenMX (MX) $ 2.99
  • theta-fuelTheta Fuel (TFUEL) $ 0.047185
  • celoCelo (CELO) $ 0.571791
  • worldcoin-wldWorldcoin (WLD) $ 2.47
  • safepalSafePal (SFP) $ 0.706823
  • ethereum-pow-iouEthereumPoW (ETHW) $ 2.75
  • chiaChia (XCH) $ 31.91
  • justJUST (JST) $ 0.032766
  • yearn-financeyearn.finance (YFI) $ 8,584.90
  • lido-staked-solLido Staked SOL (STSOL) $ 71.87
  • jasmycoinJasmyCoin (JASMY) $ 0.005781
  • ethereum-name-serviceEthereum Name Service (ENS) $ 9.08
  • ankrAnkr Network (ANKR) $ 0.027536
  • beldexBeldex (BDX) $ 0.046124
  • nxmNexus Mutual (NXM) $ 46.49
  • superfarmSuperVerse (SUPER) $ 0.591776
  • fasttokenFasttoken (FTN) $ 1.31
  • sushiSushi (SUSHI) $ 1.36
  • iconICON (ICX) $ 0.267988
  • audiusAudius (AUDIO) $ 0.220057
  • dexeDeXe (DEXE) $ 4.48
  • wrapped-centrifugeWrapped Centrifuge (WCFG) $ 0.708281
  • autonolasAutonolas (OLAS) $ 5.36
  • ravencoinRavencoin (RVN) $ 0.021392
  • moonbeamMoonbeam (GLMR) $ 0.317464
  • golemGolem (GLM) $ 0.249987
  • echelon-primeEchelon Prime (PRIME) $ 8.07
  • oec-tokenOKT Chain (OKT) $ 13.75
  • kusamaKusama (KSM) $ 26.96
  • aragonAragon (ANT) $ 5.74
  • escoin-tokenEscoin (ELG) $ 1.03
  • decredDecred (DCR) $ 14.45
  • magicMagic (MAGIC) $ 0.882656
  • wavesWaves (WAVES) $ 2.27
  • lukso-token-2LUKSO (LYX) $ 7.35
  • balancerBalancer (BAL) $ 4.19
  • biconomyBiconomy (BICO) $ 0.310136
  • waxWAX (WAXP) $ 0.065474

DeFi Hacks Usually Come Down to Poor Security: Halborn COO

0 57

DeFi Hacks Usually Come Down to Poor Security: Halborn COO

  decrypt.co 24 m

DeFi Hacks Usually Come Down to Poor Security: Halborn COO

The tech industry has had its eyes fixed on artificial intelligence, and cybersecurity professionals are lining up to find vulnerabilities and patch security holes in AI platforms like OpenAI’s ChatGPT. But blockchain cybersecurity firm Halborn has kept its eyes on the ball, continuing to look for ways to support and secure Web3 projects.

“I think as the ecosystem starts to mature, we’ll start to see a slowdown of some of the dumb mistakes that a lot of projects are making, a lot of organizations are making,” Halborn COO David Schwed told Decrypt at Messari Mainnet. “This is a controversial statement, but many hacks are preventable.”

Schwed pointed to a report by the blockchain security firm that said over $5 billion had been lost in DeFi hacks between 2016 and 2022.

“A number of the hacks were not necessarily on-chain vulnerabilities,” Schwed said. “They were standard Web2 security that was just compromised or breached due to poor security practices.”

While Schwed pointed to a lack of cybersecurity deficiencies in some projects, he also recognized that certain breaches, like zero-day attacks stemming from vulnerable technology, are inevitable. However, he emphasized the need for companies to be prepared.

In cyber security, a zero-day (vulnerability, exploit, or attack) refers to a software vulnerability unknown to those responsible for patching or fixing the software. The zero refers to the amount of time developers had to address to address and patch the vulnerability.

“If you’re relying on a piece of technology, and there’s a vulnerability in that technology that’s a zero-day, I would not fault that organization,” Schwed said. “What I would fault them for potentially is looking for detective-type controls.” Detective controls are designed to find errors or problems after the transaction has occurred.

“So if you start to see anomalies in a smart contract, or anomalies behavior on-chain, that’s when you should have a strong incident response program, or have the ability to issue circuit breakers within a contract or being able to sweep the funds into a potentially non-effected wallet.”

Zero-day attacks are only one of the potential threats DeFi projects face. Last week, the decentralized cryptocurrency exchange Balancer was hit by a denial-of-service (DNS) attack that led to the theft of over $250,000 in funds.

Since their inception, blockchains have been lauded for their decentralization, with many proponents saying hacking blockchains like Bitcoin and Ethereum is impossible because these chains are decentralized. But while blockchain tech may be decentralized, Schwed said the dapps built on top of them are not.

“From the time it’s built to the time it’s deployed, there are still engineers that work at all of these organizations that will update the smart contracts,” he said, adding there is still somewhat of a centralization in deploying smart contracts, their security, and monitoring.

Schwed pointed to the reliance on platforms like Amazon Web Services (AWS), Azure, and Google Cloud for Web3 projects, underscoring that «true 100% decentralization» remains elusive. «There are always centralization choke points in the ecosystem, and a certain level of centralization might actually benefit everyone,» he said.

Schwed suggests Web3 companies look at their projects as a threat actor, and see where potential vulnerabilities lie. Another option he suggests is seeking out professionals or so-called red teams to address security concerns. For companies that lack the funds to hire these professionals, Schwed suggests offering equity in the organization.

Despite the risk posed by cybercriminals and hacks, Schwed is optimistic about the future of blockchain technology.

“I believe that this [technology] has the ability to disrupt and really innovate and provide such value to us as a society, and everybody in this space does and will be more than willing to help,” he concluded.

Source

Leave A Reply

Your email address will not be published.