BlockSec 于 2023 年 03 月 17 日 05:48:59 (UTC) 成功阻止了一次针对 ParaSpace(一个顶级 NFT 借贷协议)的攻击企图,保护了价值 500 万美元的加密资产。
正如我们在上一篇博客中提到的,我们始终坚信更具主动性的威胁预防解决方案能够帮助抵御威胁。我们已于 2022 年内部部署了此类系统。截至本文撰写之时,我们的系统已成功阻止多次攻击,并为用户挽回了约 1400 万美元的资产。
请在本文中了解我们关于主动威胁预防的观点。
我们的解决方案的可行性和实践性已得到社区的广泛认可,并且我们与社区中的一些顶尖合作伙伴进行了合作。例如,我们正与 Compound 合作,为 Compound V3 智能合约开发风险预防系统。
我们始终致力于为 Web3 社区构建区块链安全基础设施,其中包括 Phalcon Explorer(一个面向 Web3 开发者和安全研究人员的交易分析工具)、MetaDock(一个面向 Web3 用户的安全工具箱)以及 MetaSleuth(一个面向 Web3 用户的资金追踪工具)。
Tether Freezes $6.76M USDT Linked to Iran's IRGC & Houthi Forces: Why On-Chain Compliance is Now a Geopolitical Battlefield
Looking ahead, targeted freezing events like this $6.76M USDT action will only become more common. On-chain data analysis is improving. Stablecoin issuers are also working closely with regulators. As a result, hidden illicit financial networks will be exposed.
Weekly Web3 Security Incident Roundup | Mar 2 – Mar 8, 2026
During the week of March 2 to March 8, 2026, seven blockchain security incidents were reported with total losses of ~$3.25M. The incidents occurred across Base, BNB Chain, and Ethereum, exposing critical vulnerabilities in smart contract business logic, token deflationary mechanics, and asset price manipulation. The primary causes included a double-minting logic flaw during full token deposits that allowed an attacker to exponentially inflate their balances through repeated burn-and-mint cycles, a price manipulation vulnerability in an AMM-based lending market where artificially inflated vault shares created divergent price anchors to incorrectly force healthy positions into liquidation, and a flawed access control implementation relying on trivially spoofed contract interfaces that enabled attackers to bypass authorization to batch-mint and dump arbitrary tokens.
Weekly Web3 Security Incident Roundup | Feb 23 – Mar 1, 2026
During the week of February 23 to March 1, 2026, seven blockchain security incidents were reported with total losses of ~$13M. The incidents affected multiple protocols, exposing critical weaknesses in oracle design/configuration, cryptographic verification, and core business logic. The primary drivers included oracle manipulation/misconfiguration that led to the largest loss at YieldBloxDAO (~$10M), a crypto-proof verification flaw that enabled the FOOMCASH (~$2.26M) exploit, and additional token design and logic errors impacting Ploutos, LAXO, STO, HedgePay, and an unknown contract, underscoring the need for rigorous audits and continuous monitoring across all protocol layers.