A vulnerable bot was allowing anyone to steal its owner's funds. We neutralized it, and the technical elements showcase an interesting Solidity anti-pattern.
Killing a Bad (Arbitrage) Bot ... to Save Its Owner
A Six-Year-Old Solc Riddle
In late October, we received a request to work on a project unlike any we've had before.
Harvest Finance Vulnerability, $200K Bounty
We disclosed a critical vulnerability to Harvest Finance, through Immunefi. The vulnerability concerns a proxy pattern and was discovered via an interesting automated analysis.
Symbolic Value-Flow Static Analysis of Ethereum Smart Contracts
A technical paper describing our most recent analysis technology, responsible for 7 major vulnerabilities detected in-the-wild.