Cybersecurity enthusiast turned Web3 protector. I started as a Web2 Pentester and now help users, crypto investors, and founders secure their digital presence. I audit & securely configure your online & offline accounts: DNS, X accounts, Discord Server, Slack Workspace, Google Workspace and more.
State of Web3 Security: Auditing your Smart Contract will not protect you from being REKT. In our era, most (85%) of the losses in Web3 is due to Social Engineering. Phishing, Malwares, Stealing Private Keys, all of that is most of the time combined, but the entry point for attackers is gonna be a human mistake. Numbers of assets stolen are increasing every day, and we face new trends and sophisticated techniques.
Enhancing security for companies can be achieved by: training people on identifying the latest threats & techniques (yes, being paranoid is the right mindset), doing operational security audits, and having incident response plans that you fully understand and have rehearsed multiple times. Focus on what’s the company’s crown jewels? How could you lose your money? How would the company no longer exist? Could an insider steal everything?