The sophistication of this attack boggles the mind and should terrify any project relying on multisig ceremonies.

"The malware manipulated the front-end interface of Safe{Wallet} ... displaying legitimate transaction data to the developers while executing malicious transactions in the background."

I'm very interested in learning exactly how that was accomplished.

The sophistication of this attack boggles the mind and should terrify any project relying on multisig ceremonies.

"The malware manipulated the front-end interface of Safe{Wallet} ... displaying legitimate transaction data to the developers while executing malicious transactions in the background."

I'm very interested in learning exactly how that was accomplished.

https://crypto.news/post-mortem-reveals-stealthy-malware-injection-led-to-50m-radiant-capital-exploit/

Eng @ Coinbase, working on Base
https://bayardo.org

Inside job?


Looks like gr at excuse 😂

Who knows!  Compromising multiple hardware devices is pretty next level though, combined with the all that UI engineering to make it all work .... crazy.