Pablo(🦑,🪐) @silenlee - Twitter Profile

黑帽也不容易的，他要考虑到整个路径不留痕迹，没有后面的刑侦隐患，还要考虑到资金隐匿，还要避开各种机构冻结，链上回滚，安全委员会截留。挖到漏洞也像黑暗森林一样，如果自己没准备好就出手，可能会白忙活还把自己搭进去。准备过程中，又担心同行先出手。最难的是最后能把这笔钱变现，真的能洗干净花出去。这些还都不包括可能要组织复杂的社会工程攻击。总之，都不容易！做这个贼需要学习掌握的技术太多了！

0

14

1

0

1K

Pablo(🦑,🪐)

@silenlee

28 days ago

@tydrohq @chainlink Can you disclose more about the current orcale issue?

0

1

0

1K

silenlee retweeted

International Cyber Digest

@IntCyberDigest

29 days ago

‼️🚨 Microsoft calls this "intended behaviour," so here we go. How to dump the credentials of every user stored in Microsoft Edge: 1. Open Edge. Don't browse anywhere, just open it. 2. Flip to Task Manager, find Edge, expand the task. 3. Highlight the "browser" sub-task, right-click, and choose "Create Memory Dump." 4. Open the dump file and look for credentials. The logged-in Windows user can dump every stored Edge credential with no additional rights. Which means any malware that user executes has those credentials for the asking. Thanks to Rob VandenBrink at SANS: https://t.co/ebtVZxne4L

IntCyberDigest's tweet photo. ‼️🚨 Microsoft calls this "intended behaviour," so here we go.

How to dump the credentials of every user stored in Microsoft Edge:

1. Open Edge. Don't browse anywhere, just open it.
2. Flip to Task Manager, find Edge, expand the task.
3. Highlight the "browser" sub-task, right-click, and choose "Create Memory Dump."
4. Open the dump file and look for credentials.

The logged-in Windows user can dump every stored Edge credential with no additional rights. Which means any malware that user executes has those credentials for the asking.

Thanks to Rob VandenBrink at SANS: https://t.co/ebtVZxne4L

289

13K

2K

7K

1M

silenlee retweeted

路人蝙

@lurenbian

30 days ago

求职（求转发我最近两年在云南本地&加密业内从事公益； 2021~2024 间陆续在两家 Tokenfund 工作，主要负责研究、案源、投后和投资者关系；更早在 memecoin 做 marketing ; 加密行业前我在外贸工厂做直播策划。我能对多种人、事、物保持长时间的、低度的兴趣，并以此幸运的交到很多朋友，特别帮助到案源、投后、投资者关系方面的工作。我长期关注 DAO 治理、关注加密行业与各国当局的政策博弈，部分预言了 @arbitrumdao_gov 最近行为的后续影响。今年部分研究内容请移步我的账号文章列表。我寻求任何 to G/policy 相关的 internship 或 VC/生态/公益相关的 senior 职位。

32

124

31

23

45K

Pablo(🦑,🪐)

@silenlee

about 1 month ago

@PvE_Farmer @tydrohq +1, why not just raise the borrow cost?

0

9

Pablo(🦑,🪐)

@silenlee

about 1 month ago

@lanhubiji 是您，老师

0

104

Pablo(🦑,🪐)

@silenlee

about 1 month ago

感觉现在表态给 DeFi United 的捐款有一点中国人随礼的意思，哎那谁谁给了多少，那谁谁又给了多少呀，行，那我们就折衷下给这么多吧，再多心疼，再少丢面～看到很多 AAVE 的支持者，工作人员，服务商慷慨解囊，我一方面很欣慰，另一方也很疑惑，敢情就我把钱都存 AAVE，你们钱都在外面存着呢？

DCF GOD

@dcfgod

about 1 month ago

rsETH hole filling tracker: Hole: 112204 rsETH = 118.4k ETH Lido: -2.5k ETH Etherfi: -5k ETH Arbitrum freeze: -30.7k ETH Ethena: Didn't say how much, assume -1k ETH Excess rsETH in aave / coumpound: ~-15k ETH Stani personal donation: -5k ETH Layerzero: Didn't say how much, assume -5k ETH Mantle: -30k (!!!!) Kraken / Ink: Didn’t say how much, assume -5k eth Golem: -1k eth Ernesto: -0.1k eth BGD labs: -0.25k ETH Emilio: -0.5k ETH Aave dao: -25k ETH THE HOLE IS FILLED. likely goal is now reducing the amount they need to borrow from Mantle. Far better outcome if Aave themselves have to take on no laons

16

295

24

26

99K

4

6

0

670

Pablo(🦑,🪐)

@silenlee

about 1 month ago

@lugeweb3 他强调了一下我也救了4万+的ETH

0

88

Pablo(🦑,🪐)

@silenlee

about 1 month ago

Balancer 被 hack 的资金跟着 rsETH hack 资金一起从 @THORChain 搬到 BTC 网络去了。之前 bybit 那次 hack 时间也是从 thorchain 转移出去，那次还说是因为 bybit 跟他们之前在资产标签上有过节，所以找他们帮忙冻结被拒绝了。

Lookonchain

@lookonchain

about 1 month ago

The Balancer exploiter, who stole nearly $120M, is active again after 5 months and is laundering funds by swapping $ETH into $BTC through THORChain. Over the past hour, the exploiter moved 1,100 $ETH ($2.55M) and is converting it into $BTC. https://t.co/E1b8eZbWLb