Offside Labs’ Security Insights
Subscribe
Sign in
Home
Archive
About
Stop Spoofing My Wallet!
Demystifying Simulation Spoofing Attacks
Sep 4
•
Offside Labs
Share this post
Stop Spoofing My Wallet!
blog.offside.io
Copy link
Facebook
Email
Note
Other
August 2024
Compensation for Composition
In this blog post, we reveal an issue in the Trader Joe v2 Liquidity Book. This flaw lets arbitragers perform swaps without paying fees, allowing them…
Aug 2
•
Offside Labs
Share this post
Compensation for Composition
blog.offside.io
Copy link
Facebook
Email
Note
Other
May 2024
One Key Bug in OneKey Mini
Delve into the security vulnerabilities of OneKey Mini hardware wallets. Through detailed analysis and hands-on experimentation, we discovered that…
May 30
•
Offside Labs
Share this post
One Key Bug in OneKey Mini
blog.offside.io
Copy link
Facebook
Email
Note
Other
December 2023
Saga of Saga – Part 2: Digging Into Solana's Smartphone Security
Explore the intricate security designs of Solana's Web3 Smartphone, 'Saga', with a deep dive into its unique features like Seed Vault and the challenges…
Dec 16, 2023
•
Offside Labs
Share this post
Saga of Saga – Part 2: Digging Into Solana's Smartphone Security
blog.offside.io
Copy link
Facebook
Email
Note
Other
From Near Loss to Victory: The $2M Blockchain Rescue
The Affine DeFi crisis averted: Our whitehat team stepped in, preventing a $2M theft and ensuring user funds' safety.
Dec 12, 2023
•
Offside Labs
Share this post
From Near Loss to Victory: The $2M Blockchain Rescue
blog.offside.io
Copy link
Facebook
Email
Note
Other
November 2023
Saga of Saga - Part 1: Unlocking the Debate on True Vulnerabilities
If a victim has to give his password, erase his phone, and hand it over, is it still a vulnerability? Dive into our analysis of the Saga mobile's…
Nov 26, 2023
•
Offside Labs
Share this post
Saga of Saga - Part 1: Unlocking the Debate on True Vulnerabilities
blog.offside.io
Copy link
Facebook
Email
Note
Other
Unrolling the Scroll: Probing the Security of a Zero-Knowledge Roll-Up
Dive into our quest to uncover vulnerabilities in Scroll's zero-knowledge roll-up, exposing subtle bugs and exploring the security measures within this…
Nov 12, 2023
•
Offside Labs
1
Share this post
Unrolling the Scroll: Probing the Security of a Zero-Knowledge Roll-Up
blog.offside.io
Copy link
Facebook
Email
Note
Other
December 2022
Could Wrapped Tokens Like WETH Be (forced) Insolvent?
Uncover the fascinating journey of a budding hacker delving into Interlay's Bitcoin-Polkadot bridge, interBTC, and revealing critical security flaws in…
Dec 21, 2022
•
Offside Labs
Share this post
Could Wrapped Tokens Like WETH Be (forced) Insolvent?
blog.offside.io
Copy link
Facebook
Email
Note
Other
July 2022
The Defrauded Fraud Proof of A Bitcoin Bridge
Hanging out in the Immunefi discord leads me to new wonderlands! Last month I was notified of a new bounty program from Interlay, who claimed the…
Jul 31, 2022
•
Offside Labs
Share this post
The Defrauded Fraud Proof of A Bitcoin Bridge
blog.offside.io
Copy link
Facebook
Email
Note
Other
June 2022
How to Steal $100M from Flawless Smart Contracts
Embark on an exciting journey as I expose a critical design flaw in Moonbeam's network, safeguarding over $100M and earning a $1M bug bounty reward.
Jun 28, 2022
•
Offside Labs
Share this post
How to Steal $100M from Flawless Smart Contracts
blog.offside.io
Copy link
Facebook
Email
Note
Other
How did I Save 70000 ETH and Win 6 Million Bug Bounty
Discover how I, pwning.eth, saved 70,000 ETH and won a $6M bug bounty by spotting a crucial flaw in Aurora Engine.
Jun 14, 2022
•
Offside Labs
Share this post
How did I Save 70000 ETH and Win 6 Million Bug Bounty
blog.offside.io
Copy link
Facebook
Email
Note
Other
Share
Copy link
Facebook
Email
Note
Other
This site requires JavaScript to run correctly. Please
turn on JavaScript
or unblock scripts