Blogs

September 29, 2022
★Featured★
Proactive After-deployment Monitoring
Besides rigorous internal code reviews and external auditing, we are frequently asked by our customers: what we should do to keep our protocol safe once it's deployed on the chain?
September 23, 2022
★Featured★
Security of Solana Smart Contracts: two caveats of the SPL Associated Token Account
read this blog on two important caveats of using associating token accounts as learned by the Sec3 core team
September 6, 2022
★Featured★
Announcing sec3 WatchTower: Smart Monitor for Smart Contracts
sec3 announces the first release of WatchTower: an in-situ threat monitoring service for Solana smart contracts to detect, prevent and stop security attacks in real time.
September 6, 2022
★Featured★
A Review of Recent Hacks on Solana: what’s in common and how to prevent them?
Solana ecosystem has seen super rapid growth while witnessing multiple hacks (involving Wormhole, CashioApp, CremaFinance, Nirvana, and Slope Wallet), which collectively caused close to $400 million losses. In this article, we review the essence of these hacks and aim to find effective solutions to prevent such attacks in the future.
July 6, 2022
★Featured★
Security of Solana Smart Contracts: why you should always validate PDA Bump Seeds
The same seeds with multiple valid bumps can have crucial security implication: PDAs can be faked if their bump seeds are not validated