This is the biggest blind signing compromise of a multisig to date

Bybit lost ~$1.5bn by signing a compromised tx on their safe (more details to be determined)

But FOR GOD'S SAKE if you deal with such amounts use verification tools such as the one by @pcaversaccio

𝐖𝐨𝐫𝐤𝐢𝐧𝐠 𝐨𝐧 𝐰𝐡𝐚𝐭'𝐬 𝐧𝐞𝐱𝐭.

https://github.com/pcaversaccio

This is the biggest blind signing compromise of a multisig to date

Bybit lost ~$1.5bn by signing a compromised tx on their safe (more details to be determined)

But FOR GOD'S SAKE if you deal with such amounts use verification tools such as the one by @pcaversaccio
https://github.com/pcaversaccio/safe-tx-hashes-util

Founder of @rotkiapp🐦, the portfolio tracker that protects your privacy.

#Berlin. University of Tokyo graduate. Marathon runner. #ethereum developer. #birding

A doodler and computerer. I like permissive/permissionless open source, smart contracts, p2p systems, room-scale VR, and NixOS.

shazow.net

Currently: WhatsABI

Probably.

But also by default daily limits and timelocks for anything as heavy as changing the implementation.

Do you think there's value in making a stand-alone web service to do this? Something people can bookmark to get the results for their latest pending signatures?

Maybe even return the result as an image that can be fingerprinted with a prior setting that is hard to fake with malware?

My money is on Bybit having an ETH short they’re protecting with a planned stunt.