DEV Community

ohmygod profile picture

ohmygod

404 bio not found

Joined Joined on 
The 2026 DeFi Pre-Launch Security Checklist: 7 Attack Surfaces Your Audit Probably Missed
ohmygod profile

The 2026 DeFi Pre-Launch Security Checklist: 7 Attack Surfaces Your Audit Probably Missed

#security #blockchain #defi #smartcontracts
Comments
6 min read
Blockchain as Botnet: How Glassworm Turned Solana Memos Into an Unkillable C2 Channel — And How to Defend Your Pipeline
ohmygod profile

Blockchain as Botnet: How Glassworm Turned Solana Memos Into an Unkillable C2 Channel — And How to Defend Your Pipeline

#security #blockchain #solana #webdev
Comments
6 min read
How AI-Assisted Whitehats Found Three Lido Vulnerabilities in Three Weeks — Build Your Own Bug Hunting Pipeline
ohmygod profile

How AI-Assisted Whitehats Found Three Lido Vulnerabilities in Three Weeks — Build Your Own Bug Hunting Pipeline

#security #blockchain #ai #defi
Comments
7 min read
Alpenglow 20+20 Security Model: Why Solana New Consensus Halves Byzantine Tolerance
ohmygod profile

Alpenglow 20+20 Security Model: Why Solana New Consensus Halves Byzantine Tolerance

#solana #security #blockchain #defi
Comments
5 min read
Donation Attacks Are Back: How Venus Lost $3.7M and sDOLA Lost $240K in One Month — A Defense Guide for Lending Protocols
ohmygod profile

Donation Attacks Are Back: How Venus Lost $3.7M and sDOLA Lost $240K in One Month — A Defense Guide for Lending Protocols

#defi #security #ethereum #web3
Comments
8 min read
The CrimeEnjoyor Epidemic: How EIP-7702 Delegation Phishing Drained 450K+ Wallets — And How to Detect It On-Chain
ohmygod profile

The CrimeEnjoyor Epidemic: How EIP-7702 Delegation Phishing Drained 450K+ Wallets — And How to Detect It On-Chain

#ethereum #security #defi #web3
Comments
6 min read
The Solv Protocol Double-Mint Exploit: How an ERC-3525 Callback Turned 135 Tokens Into 567 Million
ohmygod profile

The Solv Protocol Double-Mint Exploit: How an ERC-3525 Callback Turned 135 Tokens Into 567 Million

#security #blockchain #solidity #defi
Comments
7 min read
Localized DoS on Solana: How Attackers Weaponize Fee Markets to Grief Individual Protocols for Pennies
ohmygod profile

Localized DoS on Solana: How Attackers Weaponize Fee Markets to Grief Individual Protocols for Pennies

#solana #security #defi #blockchain
Comments
5 min read
The Private Key Pandemic: Why 60% of 2026's DeFi Losses Come From Off-Chain Failures — And a Defense Blueprint
ohmygod profile

The Private Key Pandemic: Why 60% of 2026's DeFi Losses Come From Off-Chain Failures — And a Defense Blueprint

#security #defi #solana #ethereum
Comments
5 min read
Three Accounting Bugs That Drained $107K from DeFi Lending Protocols in One Week
ohmygod profile

Three Accounting Bugs That Drained $107K from DeFi Lending Protocols in One Week

#security #blockchain #defi #solidity
Comments
7 min read
The Moonwell Oracle Exploit: How AI-Assisted 'Vibe Coding' Turned cbETH Into a $1.12 Token and Cost $1.78M
ohmygod profile

The Moonwell Oracle Exploit: How AI-Assisted 'Vibe Coding' Turned cbETH Into a $1.12 Token and Cost $1.78M

#security #defi #blockchain #ai
Comments
6 min read
Fuzzing Solana Programs with Trident: How Ackee's Open-Source Fuzzer Catches Bugs That Unit Tests Miss
ohmygod profile

Fuzzing Solana Programs with Trident: How Ackee's Open-Source Fuzzer Catches Bugs That Unit Tests Miss

#solana #security #blockchain #tutorial
Comments
7 min read
The CrossCurve Bridge Exploit: How a Missing Gateway Check Let Attackers Spoof Axelar Messages and Drain $3M
ohmygod profile

The CrossCurve Bridge Exploit: How a Missing Gateway Check Let Attackers Spoof Axelar Messages and Drain $3M

#security #blockchain #defi #smartcontract
Comments
6 min read
Auditing for Ethereum's Parallel Execution Era: New Attack Vectors and a Foundry Toolkit for Glamsterdam
ohmygod profile

Auditing for Ethereum's Parallel Execution Era: New Attack Vectors and a Foundry Toolkit for Glamsterdam

#security #ethereum #defi #smartcontract
Comments
6 min read
The BCE PancakeSwap Exploit: How Attackers Bypassed Buy/Sell Restrictions to Weaponize a Burn Mechanism for $679K
ohmygod profile

The BCE PancakeSwap Exploit: How Attackers Bypassed Buy/Sell Restrictions to Weaponize a Burn Mechanism for $679K

#security #web3 #defi #solidity
Comments
7 min read
The 84% Problem: Why Most Hacked DeFi Tokens Never Recover — And a Pre-Hack Survival Framework
ohmygod profile

The 84% Problem: Why Most Hacked DeFi Tokens Never Recover — And a Pre-Hack Survival Framework

#security #blockchain #defi #webdev
Comments
6 min read
MCPwned: How the Model Context Protocol Is Becoming DeFi's Newest Attack Surface
ohmygod profile

MCPwned: How the Model Context Protocol Is Becoming DeFi's Newest Attack Surface

#security #ai #defi #blockchain
Comments
6 min read
Differential Testing for DeFi Protocol Forks: A Foundry Framework That Would Have Caught $50M in Exploits
ohmygod profile

Differential Testing for DeFi Protocol Forks: A Foundry Framework That Would Have Caught $50M in Exploits

#security #solidity #defi #web3
Comments
7 min read
Flash Loan-Resistant Oracle Design: A 2026 Defense Playbook with Solidity Patterns
ohmygod profile

Flash Loan-Resistant Oracle Design: A 2026 Defense Playbook with Solidity Patterns

#solidity #security #defi #ethereum
Comments
5 min read
CanisterWorm: How a Self-Propagating npm Worm Uses Blockchain C2 to Wipe Kubernetes Clusters
ohmygod profile

CanisterWorm: How a Self-Propagating npm Worm Uses Blockchain C2 to Wipe Kubernetes Clusters

#security #blockchain #webdev #devops
Comments
6 min read
The Resolv Hack Autopsy: How a Compromised AWS Key Printed $25M in Unbacked Stablecoins
ohmygod profile

The Resolv Hack Autopsy: How a Compromised AWS Key Printed $25M in Unbacked Stablecoins

#security #blockchain #defi #aws
Comments
7 min read
ForceMemo: How Stolen Credentials Turned Hundreds of GitHub Python Repos Into Blockchain-Powered Malware Distributors
ohmygod profile

ForceMemo: How Stolen Credentials Turned Hundreds of GitHub Python Repos Into Blockchain-Powered Malware Distributors

#security #blockchain #python #defi
Comments
6 min read
Building a Transfer Hook Exploit Scanner: Automated Detection of CPI Depth Bombs and Callback Reentrancy in Solana Token-2022
ohmygod profile

Building a Transfer Hook Exploit Scanner: Automated Detection of CPI Depth Bombs and Callback Reentrancy in Solana Token-2022

#security #solana #rust #defi
Comments
6 min read
The CrimeEnjoyor Epidemic: How EIP-7702 Delegation Phishing Drained 450K+ Wallets — And How to Detect It On-Chain
ohmygod profile

The CrimeEnjoyor Epidemic: How EIP-7702 Delegation Phishing Drained 450K+ Wallets — And How to Detect It On-Chain

#ethereum #security #defi #web3
Comments
6 min read
From Scanner to Stealer: How the Trivy Supply Chain Attack Targeted Crypto Wallets in 75+ CI/CD Pipelines
ohmygod profile

From Scanner to Stealer: How the Trivy Supply Chain Attack Targeted Crypto Wallets in 75+ CI/CD Pipelines

#security #blockchain #defi #devops
Comments
8 min read
Cross-Chain Bridge Security Checklist: 7 Lessons from $140M in Bridge Exploits (2025-2026)
ohmygod profile

Cross-Chain Bridge Security Checklist: 7 Lessons from $140M in Bridge Exploits (2025-2026)

#web3 #security #blockchain #smartcontract
Comments
2 min read
The ERC-2771 Identity Crisis: How DBXen's $150K Exploit Proves Meta-Transaction Security Is Still Broken in 2026
ohmygod profile

The ERC-2771 Identity Crisis: How DBXen's $150K Exploit Proves Meta-Transaction Security Is Still Broken in 2026

#security #solidity #web3 #defi
Comments
7 min read
The Venus Protocol Donation Attack: How an Attacker Turned $0.27 THE Tokens Into a $3.6M Payday
ohmygod profile

The Venus Protocol Donation Attack: How an Attacker Turned $0.27 THE Tokens Into a $3.6M Payday

#security #defi #smartcontracts #blockchain
Comments
5 min read
Mutation Testing for Smart Contracts: How Slither-Mutate + Foundry Reveals the Tests You Forgot to Write
ohmygod profile

Mutation Testing for Smart Contracts: How Slither-Mutate + Foundry Reveals the Tests You Forgot to Write

#security #solidity #ethereum #defi
Comments
5 min read
The Confused Deputy Problem in Solana CPIs: 5 Patterns That Get Programs Drained
ohmygod profile

The Confused Deputy Problem in Solana CPIs: 5 Patterns That Get Programs Drained

#solana #security #blockchain #webdev
Comments
5 min read
EVMbench and the Arms Race: How AI Agents Are Rewriting Smart Contract Security — And What Defenders Must Do Now
ohmygod profile

EVMbench and the Arms Race: How AI Agents Are Rewriting Smart Contract Security — And What Defenders Must Do Now

#security #solidity #smartcontracts #defi
Comments
4 min read
ERC-7683 Cross-Chain Intents: 7 Security Risks Every DeFi Developer Must Audit Before Deployment
ohmygod profile

ERC-7683 Cross-Chain Intents: 7 Security Risks Every DeFi Developer Must Audit Before Deployment

#security #blockchain #defi #smartcontracts
Comments
5 min read
Beyond Audits: A Practical Guide to DeFi Runtime Security Monitoring in 2026
ohmygod profile

Beyond Audits: A Practical Guide to DeFi Runtime Security Monitoring in 2026

#security #blockchain #defi #smartcontracts
Comments
6 min read
The Venus Protocol Donation Attack: How 9 Months of Patience Bypassed Three Lines of Defense
ohmygod profile

The Venus Protocol Donation Attack: How 9 Months of Patience Bypassed Three Lines of Defense

#security #defi #blockchain #smartcontracts
Comments
5 min read
When the Code Is Fine But the Team Gets Hacked: OpSec Lessons from Step Finance
ohmygod profile

When the Code Is Fine But the Team Gets Hacked: OpSec Lessons from Step Finance

#security #solana #defi #blockchain
Comments
4 min read
Solana Account Revival Attacks: How Closed Accounts Come Back to Haunt You
ohmygod profile

Solana Account Revival Attacks: How Closed Accounts Come Back to Haunt You

#solana #security #blockchain #smartcontracts
Comments
4 min read
Deposit Inflation Attacks: How One Bug Pattern Drained $4.5M Across Four Protocols in March 2026
ohmygod profile

Deposit Inflation Attacks: How One Bug Pattern Drained $4.5M Across Four Protocols in March 2026

#security #blockchain #defi #smartcontracts
Comments
1 min read
The Transient Storage Trap: Why EIP-1153 Gas Savings Are Creating a New Generation of Smart Contract Vulnerabilities
ohmygod profile

The Transient Storage Trap: Why EIP-1153 Gas Savings Are Creating a New Generation of Smart Contract Vulnerabilities

#security #ethereum #smartcontracts #web3
Comments
4 min read
The Resolv USR Minting Exploit: How $100K in USDC Became $25M Through a Broken Swap Pipeline
ohmygod profile

The Resolv USR Minting Exploit: How $100K in USDC Became $25M Through a Broken Swap Pipeline

#security #blockchain #defi #solidity
Comments
5 min read
DeFi Circuit Breakers: Engineering Rate Limits, Value Caps, and Kill Switches That Actually Save Money
ohmygod profile

DeFi Circuit Breakers: Engineering Rate Limits, Value Caps, and Kill Switches That Actually Save Money

#security #solidity #defi #smartcontracts
Comments
6 min read
The Makina Finance Flash Loan Exploit: How $280M in Borrowed USDC Drained a Curve Pool in One Transaction
ohmygod profile

The Makina Finance Flash Loan Exploit: How $280M in Borrowed USDC Drained a Curve Pool in One Transaction

#defi #security #ethereum #solidity
Comments
5 min read
DarkSword: The Zero-Click iOS Exploit Chain That's Draining Crypto Wallets in Under 60 Seconds
ohmygod profile

DarkSword: The Zero-Click iOS Exploit Chain That's Draining Crypto Wallets in Under 60 Seconds

#security #mobile #crypto #ios
Comments
6 min read
Solana's Alpenglow Security Trade-Off: How Dropping PoH for 150ms Finality Changes Every Assumption DeFi Developers Hold
ohmygod profile

Solana's Alpenglow Security Trade-Off: How Dropping PoH for 150ms Finality Changes Every Assumption DeFi Developers Hold

#solana #security #defi #web3
Comments
7 min read
Stablecoin Mint Path Auditing: A 12-Point Security Checklist After the $25M USR Exploit
ohmygod profile

Stablecoin Mint Path Auditing: A 12-Point Security Checklist After the $25M USR Exploit

#security #blockchain #defi #solidity
1
Comments
7 min read
The Resolv USR Exploit: How a $100K Deposit Minted 80 Million Unbacked Stablecoins and Crashed USR 75%
ohmygod profile

The Resolv USR Exploit: How a $100K Deposit Minted 80 Million Unbacked Stablecoins and Crashed USR 75%

#security #defi #ethereum #smartcontract
1
Comments
5 min read
The Aave CAPO Oracle Incident: How a 2.85% Price Error Triggered $26M in Wrongful Liquidations
ohmygod profile

The Aave CAPO Oracle Incident: How a 2.85% Price Error Triggered $26M in Wrongful Liquidations

#security #blockchain #defi #ethereum
Comments
6 min read
The Noisy Neighbor Attack: How Solana's Localized Fee Markets Create a $0.50 Kill Switch for Any DeFi Protocol
ohmygod profile

The Noisy Neighbor Attack: How Solana's Localized Fee Markets Create a $0.50 Kill Switch for Any DeFi Protocol

#security #web3 #solana #defi
Comments
7 min read
Signature Replay Across L2s: How One Permit2 Signature Can Drain Your Tokens on Every Chain Simultaneously
ohmygod profile

Signature Replay Across L2s: How One Permit2 Signature Can Drain Your Tokens on Every Chain Simultaneously

#security #web3 #defi #solidity
Comments
6 min read
The First 60 Minutes After a DeFi Exploit: A Battle-Tested Incident Response Playbook for 2026
ohmygod profile

The First 60 Minutes After a DeFi Exploit: A Battle-Tested Incident Response Playbook for 2026

#security #web3 #defi #solidity
1
Comments
7 min read
AI-Augmented Smart Contract Auditing: Building an Aderyn + MCP Pipeline That Catches What Manual Review Misses
ohmygod profile

AI-Augmented Smart Contract Auditing: Building an Aderyn + MCP Pipeline That Catches What Manual Review Misses

#security #blockchain #ai #defi
1
Comments
6 min read
The DBXen ERC2771 Exploit: How _msgSender() and msg.sender Confusion Turned 1,085 Staking Cycles Into Instant Cash
ohmygod profile

The DBXen ERC2771 Exploit: How _msgSender() and msg.sender Confusion Turned 1,085 Staking Cycles Into Instant Cash

#security #blockchain #defi #solidity
Comments
5 min read
Building MEV-Resistant DeFi: A Practitioner's Guide to Protecting Protocols and Users From Value Extraction
ohmygod profile

Building MEV-Resistant DeFi: A Practitioner's Guide to Protecting Protocols and Users From Value Extraction

#solidity #solana #security #defi
1
Comments
7 min read
The Resolv USR Exploit: How $200K Minted $80M in Stablecoins and What It Means for Mint Security
ohmygod profile

The Resolv USR Exploit: How $200K Minted $80M in Stablecoins and What It Means for Mint Security

#security #defi #ethereum #smartcontract
Comments
7 min read
ERC-3525 Meets Reentrancy: How a Token Standard Interaction Turned 135 Tokens Into 567 Million in the Solv Protocol Exploit
ohmygod profile

ERC-3525 Meets Reentrancy: How a Token Standard Interaction Turned 135 Tokens Into 567 Million in the Solv Protocol Exploit

#security #defi #ethereum #smartcontract
1
Comments
5 min read
When Your IDE Phones Home via Solana: How a Fake Windsurf Extension Turned the Blockchain Into a Command-and-Control Server
ohmygod profile

When Your IDE Phones Home via Solana: How a Fake Windsurf Extension Turned the Blockchain Into a Command-and-Control Server

#security #solana #webdev #blockchain
Comments
6 min read
The Anchor Constraint Security Checklist: 10 Validation Patterns That Prevent 90% of Solana Program Exploits
ohmygod profile

The Anchor Constraint Security Checklist: 10 Validation Patterns That Prevent 90% of Solana Program Exploits

#solana #security #smartcontracts #blockchain
Comments
6 min read
Auditing Inherited Code: How to Detect Fork-Inherited Vulnerabilities Before They Become $7M Exploits
ohmygod profile

Auditing Inherited Code: How to Detect Fork-Inherited Vulnerabilities Before They Become $7M Exploits

#security #blockchain #defi #smartcontracts
Comments
8 min read
Cross-Chain Bridge Message Validation: 7 Defensive Patterns That Would Have Stopped the $3M CrossCurve Exploit
ohmygod profile

Cross-Chain Bridge Message Validation: 7 Defensive Patterns That Would Have Stopped the $3M CrossCurve Exploit

#security #blockchain #defi #web3
1
Comments
6 min read
The Aave CAPO Oracle Incident: How a 2.85% Price Error Triggered $26M in Wrongful Liquidations
ohmygod profile

The Aave CAPO Oracle Incident: How a 2.85% Price Error Triggered $26M in Wrongful Liquidations

#security #blockchain #defi #ethereum
Comments
6 min read
MEV-Resistant Smart Contract Design: 5 Battle-Tested Patterns After the $50M Aave Slippage Catastrophe
ohmygod profile

MEV-Resistant Smart Contract Design: 5 Battle-Tested Patterns After the $50M Aave Slippage Catastrophe

#security #ethereum #solidity #defi
Comments
6 min read
loading...