1、#BHUSA BlackHatEventsUse Your Spell Against Y ou:A Proactive ThreatPrevention of Smart Contract ExploitYajin ZhouBlockSec&Zhejiang UniversityThis work is a team effort of researchers from Zhejiang University and BlockSec.Hailin Wang,Jianfeng Zhu,Hang Feng,Youwen Hu,Runhuai Li,Sheng Yu,Lei Wu,Yajin Z
2、houAbout MeCo-founder of BlockSec and Professor of Zhejiang UniversityResearch interestsDeFi security,Blockchain system securityPublish:60+papers with 9,000+citationsHack and build systemsRead more:https:/yajin.org#BHUSA BlackHatEventsSecurity Matters in Web3#BHUSA BlackHatEvents0.0020.0040.0060.008
3、0.00100.00120.00140.00160.00180.00200.0001/01/202027/01/202022/02/202019/03/202014/04/202010/05/202005/06/202001/07/202027/07/202022/08/202017/09/202013/10/202008/11/202004/12/202030/12/202025/01/202120/02/202118/03/202113/04/202109/05/202104/06/202130/06/202126/07/202121/08/202116/09/202112/10/2021
4、07/11/202103/12/202129/12/202124/01/202219/02/202217/03/202212/04/202208/05/202203/06/202229/06/202225/07/202220/08/202215/09/202211/10/202206/11/202202/12/202228/12/202223/01/202318/02/202316/03/202311/04/202307/05/202302/06/202328/06/2023TVLLOSSDespite the bull and bear cycles in the crypto market
5、,losses caused by exploits and scams have been growing at a rapid pace.Security Matters in Web3#BHUSA BlackHatEventsDeFi Security Incidents Dashboardhttps:/ Security Incidents are PrevalentEconomical incentiveHackers can get“paid”.Think about a house full of gold but without a good security system L
6、ess security-qualified developersDevelopers are not trained well in security concepts DeFi composability:creates more attack vectors#BHUSA BlackHatEventsWhy Security Incidents are PrevalentOpenness:everyone can see the code on the chain,and everyone can issue an attack tx if a vulnerability existsAn