Back to Blog

New Website Unveiled | BlockSec Safeguards Protocol's Lifecycle Security

March 18, 2024

We are excited to announce the official launch of the brand-new BlockSec website!

Figure 1: BlockSec‘s new website
Figure 1: BlockSec‘s new website

As a full-stack blockchain security service provider, BlockSec is committed to transcending the boundaries of traditional security services to offer comprehensive lifecycle security for blockchain projects. From pre-launch security audits to post-launch security monitoring and attack blocking, BlockSec ensures the most robust security for every stage of protocol development.

This website upgrade is not just a complete refresh of our brand image but also a significant milestone for BlockSec. This article will provide a detailed introduction to the full-stack security services and products offered by BlockSec, as well as how they meet the differentiated needs of projects at various stages.

Ensuring Full Lifecycle Security for Protocols

Pre-Launch:

  • Security Auditing

Post-Launch

  • Security Monitoring + Attack Blocking: Phalcon

Security Auditing

🔗 https://blocksec.com/code-audit

Figure 2: The official website of Security Auditing
Figure 2: The official website of Security Auditing

BlockSec provides smart contract and EVM chain auditing services:

  • Thorough audits covering technical, business, and financial aspects.

  • Professional reports with actionable solutions for every issue identified in our audits

  • Superior audit quality drives high client satisfaction and helps our clients win their users' trust

Check out our audit reports: https://blocksec.com/audit-reportt

Learn about our cutting-edge research: https://blocksec.com/research

Attack Monitoring & Blocking Platform: Phalcon

🔗 https://blocksec.com/phalcon

Figure 3: The official website of Phalcon
Figure 3: The official website of Phalcon

Phalcon is a security platform developed by BlockSec to monitor and block hacks. The system detects suspicious transactions, instantly alerts users, and takes automated actions in response.

  • Early and Precise Attack Monitoring: Phalcon's detection engine scans every mempool and on-chain transaction for malicious proposals and contracts, among other potential threats. It leverages DeFi semantics and AI algorithms to achieve minimal false positives.
  • Operational Risk Monitoring: Beyond just monitoring for malicious activities, the system also keeps an eye on changes to admin keys, role grants, and key variables. This enables timely detection of private key leaks, privilege alterations, and other security risks.
  • Automated Attack Blocking with Customized Actions: When a transaction meets trigger conditions, Phalcon initiates automated actions within one block time (supporting multi-signature wallets). It provides standard response action templates, and users also have the option to customize actions.
  • Low-Code Configuration: Monitor transactions, functions, events, and variables with ease, utilizing a variety of pre-set monitoring templates. No coding is required to effortlessly set up monitoring rules and response actions.
Figure 4: Use cases of Phalcon
Figure 4: Use cases of Phalcon

Support Tool: Phalcon Explorer

Phalcon Explorer is the support tool for the Phalcon platform. This powerful transaction explorer is designed for the DeFi community. It provides comprehensive data on call flows, balance changes, and transaction fund flows, as well as supports transaction simulation. This helps developers, security researchers, and traders to more intuitively understand transactions.

More BlockSec's Builder Toolkit

Crypto tracking and investigation platform: MetaSleuth

🔗 https://metasleuth.io/

Figure 5: The official website of MetaSleuth
Figure 5: The official website of MetaSleuth

Metasleuth simplifies investigations for everyone, offering profressional-grade tools tailored to meet the needs of experts. MetaSleuth is a comprehensive platform that enables users to gain a deeper understanding of blockchain activities. It offers a diverse range of features specifically designed for crypto investigations, such as fund tracking, visualizing fund flows, real-time transaction monitoring, and the ability to save and share analysis results. With its intelligent capabilities and cross-chain analysis, MetaSleuth simplifies the process of tracking funds within complex DeFi transactions, making it more accessible and efficient than ever before.

Browser Extension: MetaSuites

🔗 https://blocksec.com/metasuites

Figure 6: The official website of MetaSuites
Figure 6: The official website of MetaSuites

MetaSuites is a browser extension to generate fund flow, display address labels, download data with one-click, simulate transactions, view storage and proxy upgrades, along with more than 20 utilities on over ten blockchain browsers.

We warmly invite you to experience the new official BlockSec website and join us in building a safer Web3 world.

Sign up for the latest updates
The Decentralization Dilemma: Cascading Risk and Emergency Power in the KelpDAO Crisis
Security Insights

The Decentralization Dilemma: Cascading Risk and Emergency Power in the KelpDAO Crisis

This BlockSec deep-dive analyzes the KelpDAO $290M rsETH cross-chain bridge exploit (April 18, 2026), attributed to the Lazarus Group, tracing a causal chain across three layers: how a single-point DVN dependency enabled the attack, how DeFi composability cascaded the damage through Aave V3 lending markets to freeze WETH liquidity exceeding $6.7B across Ethereum, Arbitrum, Base, Mantle, and Linea, and how the crisis forced decentralized governance to exercise centralized emergency powers. The article examines three parameters that shaped the cascade's severity (LTV, pool depth, and cross-chain deployment count) and provides an exclusive technical breakdown of Arbitrum Security Council's forced state transition, an atomic contract upgrade that moved 30,766 ETH without the holder's signature.

Weekly Web3 Security Incident Roundup | Apr 13 – Apr 19, 2026
Security Insights

Weekly Web3 Security Incident Roundup | Apr 13 – Apr 19, 2026

This BlockSec weekly security report covers four attack incidents detected between April 13 and April 19, 2026, across multiple chains such as Ethereum, Unichain, Arbitrum, and NEAR, with total estimated losses of approximately $310M. The highlighted incident is the $290M KelpDAO rsETH bridge exploit, where an attacker poisoned the RPC infrastructure of the sole LayerZero DVN to fabricate a cross-chain message, triggering a cascading WETH freeze across five chains and an Arbitrum Security Council forced state transition that raises questions about the actual trust boundaries of decentralized systems. Other incidents include a $242K MMR proof forgery on Hyperbridge, a $1.5M signed integer abuse on Dango, and an $18.4M circular swap path exploit on Rhea Finance's Burrowland protocol.

Weekly Web3 Security Incident Roundup | Apr 6 – Apr 12, 2026
Security Insights

Weekly Web3 Security Incident Roundup | Apr 6 – Apr 12, 2026

This BlockSec weekly security report covers four DeFi attack incidents detected between April 6 and April 12, 2026, across Linea, BNB Chain, Arbitrum, Optimism, Avalanche, and Base, with total estimated losses of approximately $928.6K. Notable incidents include a $517K approval-related exploit where a user mistakenly approved a permissionless SquidMulticall contract enabling arbitrary external calls, a $193K business logic flaw in the HB token's reward-settlement logic that allowed direct AMM reserve manipulation, a $165.6K exploit in Denaria's perpetual DEX caused by a rounding asymmetry compounded with an unsafe cast, and a $53K access control issue in XBITVault caused by an initialization-dependent check that failed open. The report provides detailed vulnerability analysis and attack transaction breakdowns for each incident.