Cybersecurity enthusiast turned Web3 protector — from Web2 pentesting to helping users, investors, and founders stay safe in crypto.
State of Web3 Security: Auditing your Smart Contract will not protect you from being REKT. In our era, most (85%) of the losses in Web3 is due to Social Engineering. Phishing, Malwares, stolen Private Keys. All of that is most of the time combined, but the entry point for attackers is always the same: a human mistake. Numbers of assets stolen are increasing every day, and we face new trends and very sophisticated techniques.
Enhancing security for companies can be achieved by: Training people on identifying the latest threats & techniques (yes, being paranoid is the right mindset), doing Operational Security Audits, and having incident response plans that you fully understand and have rehearsed multiple times. Focus on what’s the company’s crown jewels? How could you lose your money? How would the company no longer exist? Could an insider steal everything?