Scallop and Blockaid Prevent Financial Manipulation on Sui Ecosystem

Great case study on how we're securing one of the largest DeFi lending protocols on Sui, managing pools across 23 assets with approximately $130M in TVL with our Onchain Monitoring platform.

DeFi protocols suffered 28 exploits in April, totaling $635.2 million lost, the highest monthly incident count ever recorded. This isn't just bad luck. The cost of executing an attack has dropped dramatically, and when attacking gets cheaper, frequency goes up. For financial institutions building on-chain, the only viable response is a stronger, layered defense - AI-powered detection - Formal Verification - Manual audits ... not as separate tools, but as a unified security stack. Full interview: https://lnkd.in/d3VYUEQ7

🔒 Aave Overhauls Collateral & Listing Standards After KelpDAO Exploit Aave is expanding its asset listing criteria to include cybersecurity and architecture assessments in addition to financial risk, according to Coindesk. The lending protocol aims to set a new standard for the broader DeFi ecosystem following the KelpDAO exploit.

THORChain incident update #2 We have become aware of multiple fake accounts and false information circulating regarding “refunds”, “airdrops”, compensation claims, and other alleged initiatives. To be absolutely clear: - Initial findings indicate that no user funds were lost in the incident - THORChain is currently conducting no refund, airdrop, or compensation program - Any account claiming otherwise is impersonating THORChain or spreading misinformation. Please rely only on official THORChain communication channels for updates. THORChain contributors are still actively investigating the recent incident alongside THORSec and external security partners. More information will be shared as the investigation progresses.

Lombard dumping LayerZero for Chainlink CCIP isn't just a vendor switch — it's the market voting on trust after the Kelp DAO exploit. When B in BTC assets is on the line, "good enough" interoperability doesn't cut it. Expect more protocols to follow. Security isn't a feature, it's the product.

Banks and asset managers are moving onchain. The security frameworks they built for custodial finance won't protect them there. We broke down what a real institutional security stack looks like: custody, protocol due diligence, transaction security, real-time monitoring, compliance screening, and incident response. Each layer matters. A gap in any one of them creates exposure the others can't cover. From our Ultimate Guide to Web3 Security: https://buff.ly/GhuOsOl

In crypto, compromising customer funds isn't simply an incident — it's a disaster. 🆘 That’s why crypto trading platform BitMEX, known for its strict, engineering-led approach to security, has never lost a coin. 🪙 As their platform grew and complexity increased, BitMEX needed a way to stay precise, act fast, and avoid unnecessary escalations, without slowing down operations. By partnering with Sysdig, they reduced triage time by 50%, began investigations in just 30 seconds, and cut time spent on non-critical vulnerabilities in half! 🦾 Sysdig Sage™ became an AI-powered force multiplier for their lean, globally distributed security team—giving junior team members the context to bridge the skill gap while senior engineers stayed focused on high-impact threats. See what BitMEX’s CISO has to say about how Sysdig helps them stay disciplined, move fast, and build institutional trust in one of the world’s most high-risk industries: 👉 https://okt.to/1Uegb6

In crypto, compromising customer funds isn't just an incident — it's a disaster. 🆘 That’s why crypto trading platform BitMEX, known for its strict, engineering-led approach to security, has never lost a coin. 🪙 As their platform grew and complexity increased, BitMEX needed a way to stay precise, act fast, and avoid unnecessary escalations, without slowing down operations. By partnering with Sysdig, they reduced triage time by 50%, began investigations in just 30 seconds, and cut time spent on non-critical vulnerabilities in half! 🦾 Sysdig Sage™ became an AI-powered force multiplier for their lean, globally distributed security team—giving junior team members the context to bridge the skill gap while senior engineers stayed focused on high-impact threats. See what BitMEX’s CISO has to say about how Sysdig helps them stay disciplined, move fast, and build institutional trust in one of the world’s most high-risk industries: 👉 https://okt.to/igEwWZ

April was the worst month for crypto hacks ever. 29 Hacks, $600M exploited. What’s weird is how little of it was code bugs. Drift got hit via access control/social engineering. Kelp got hit via bridge infra. We’ve been treating security like a snapshot. Run the audit, fix findings, ship. But most of these failures happen after that moment. Key management. Permissions. Decisions under pressure. This is where OPSEC audits start to matter more. Because at this point, it’s not about whether your contracts are safe. It’s about whether your team is.

An audit tells you a protocol was safe at the moment it was reviewed. Six months later, governance proposals, new strategies, and liquidity shifts can change that picture entirely. Onchain risk is dynamic. Due diligence needs to be too. From our Ultimate Guide to Web3 Security: https://buff.ly/j57I4Om