ChainCatcher news, Nano Labs, SlowMist, and Aquarius announced the establishment of the Fortress Foundation and launched its first initiative—the Fortress Initiative. This is a framework for liquidity management security design and process audit standards, aimed at setting a new benchmark for security and transparency in the cryptocurrency liquidity management field. The initiative provides detailed security guidelines for liquidity management protocols and establishes practices for auditing liquidity management processes, supplemented by practical case studies to ensure operability.The core vision of the Fortress Initiative is to establish global standards for liquidity management security and process auditing, thereby building trust across the entire cryptocurrency ecosystem. Its mission is to provide cutting-edge security frameworks and rigorous audit standards, enabling organizations to effectively protect digital assets while optimizing liquidity management operations.The initiative follows a comprehensive one-year roadmap aimed at achieving a seamless transition from concept to full industry integration. The initial phase focuses on foundational development work, including defining concepts, establishing brand identity, assembling core contributors and partner organizations, and drafting frameworks through collaboration with key stakeholders. During this phase, the team developed risk assessment protocols, audit methodologies, and penetration testing plans, which were validated through pilot case studies. Subsequently, the launch phase will collect feedback and drive participation through formal releases, interactive panel discussions, live demonstrations, and community workshops at major industry events. The final phase will optimize and expand the framework based on early audit results, incorporate regulatory compliance measures, establish a trained network of auditors, and culminate in a security summit to showcase progress and plan future strategies.The Fortress team stated that in the early stages of the project, they will focus on inviting asset management protocols and ecosystem partners with BTC staking needs to participate in the construction.The initiative has received strong support from industry-leading organizations. Nano Labs (Nasdaq: NA) is a publicly listed company on Nasdaq and a leading chip design company in Asia, at the forefront of technological innovation and recognized as a major and steadfast holder of Bitcoin. SlowMist is a globally renowned blockchain security company with over a decade of professional experience, bringing unparalleled expertise to the field of cybersecurity. Aquarius is a research-driven asset management company managing over $600 million in assets, providing rich expertise in liquidity management and liquidity management strategies. Additionally, the Sei native lending protocol Takara Lend, supported by Sei Blockchain, joined as one of the first donating members, highlighting their commitment to collaboratively establish standards and processes that will shape the future of liquidity management security.The technical framework of the Fortress Initiative is equally robust, with security standards covering the entire liquidity management lifecycle—from pre-liquidity management assessments, continuous monitoring, to post-management issue response systems—integrating comprehensive testing, monitoring, coordination, and tracking systems comparable to ISO 9001 standards. This framework includes detailed smart contract code audits, comprehensively checking for issues such as permission vulnerabilities, security design, design logic, variable coverage, variable declarations and scopes, arithmetic accuracy, uninitialized storage pointers, and denial-of-service attacks. Additionally, the framework encompasses rigorous security awareness testing conducted through red team testing and phishing simulations, comprehensive multi-chain asset security monitoring, and thorough assessments of internal management processes, including recruitment, code deployment, incident response, and multi-signature wallet management.The Fortress Foundation is a non-profit organization dedicated to promoting blockchain security, with the goal of establishing standards for security and transparency in the liquidity management ecosystem.

ChainCatcher message, SlowMist detected that the address starting with 0x452E2 lost 27.3 ETH due to the lack of access control in its uniswapV3SwapCallback function.

ChainCatcher message, Loopring has released an update on the X platform regarding the previous security incident: "We are working with SlowMist and several other security experts and relevant institutions to continue investigating the attack on the smart wallets. Loopring will soon provide more information to the community. Security and user protection remain Loopring's top priority."Yesterday's news reported that some Loopring smart wallets were attacked due to a security vulnerability. This attack exploited a wallet with only one guardian, specifically the official Loopring guardian. The hacker initiated the recovery process, impersonating the wallet owner to reset ownership and extract assets.The attack successfully compromised Loopring's 2FA service, allowing the hacker to impersonate the wallet owner and obtain recovery approval from the official guardian. Subsequently, the attacker transferred assets out of the affected wallet.Loopring stated that it is currently actively collaborating with Mist security experts to determine how its 2FA service was compromised. To protect users, operations related to Guardian and 2FA have been suspended.Loopring is working with law enforcement and professional security teams to track down the perpetrators.

ChainCatcher news, ICC Camp has reached a strategic cooperation with SlowMist, GSR, dtcpay, and Alchemy Pay, which will provide ecological support for ICC Camp. By integrating the resource advantages of both parties, they will jointly build a powerful global Web3 gaming ecosystem, helping outstanding startup teams in the Web3 gaming field thrive in the future.ICC Camp will officially launch the first phase of student enrollment and mentor lineup announcement on January 3, 2024. ICC Camp sincerely invites institutions, media, and communities interested in the Web3 gaming ecosystem to join the first phase of the startup camp program and share in the prosperous development of the Web3 gaming ecosystem.

ChainCatcher news, OKX has officially reached a strategic partnership with the blockchain security company SlowMist. The two parties will collaborate on security business in areas such as digital asset ecosystem security, digital asset anti-money laundering, and cutting-edge security technology research. In addition, both sides will jointly explore in-depth integration solutions for blockchain ecosystem security, continuously leading industry security standards and contributing to the progress and safe development of the entire industry.

ChainCatcher news, recently, SlowMist and HashKey Group officially established a strategic partnership. The two parties will conduct in-depth cooperation in areas such as digital asset ecosystem security, anti-money laundering for digital assets, and cutting-edge security technology research, jointly exploring more comprehensive security standards and solutions to safeguard HashKey Group's various businesses.It is reported that SlowMist has been deeply engaged in the blockchain security field for many years, and both the comprehensiveness and cutting-edge nature of its technology are at the leading position in the industry. HashKey Group, as a leader in digital asset management and blockchain technology solutions, has always maintained a leading position in the continuously innovating fintech field. It is believed that this strategic cooperation will provide higher security standards for HashKey Group and contribute to the progress and safe development of the entire industry. (Source link)

ChainCatcher news, Slow Mist has officially completed the security audit of Bitizen. As a leading next-generation decentralized self-custody Web3 wallet built on MPC technology, Bitizen's security has always attracted industry attention. In this security audit, the Slow Mist audit team utilized professional methods such as black-box, gray-box, and white-box testing to audit the Bitizen wallet application and security solutions from various aspects, including the application of MPC technology in the creation of keyless wallets, keyless signing processes, as well as sharded backup and recovery. It has been verified that Bitizen meets the requirements for asset security and usability of wallets, and no critical or severe risk vulnerabilities were found during the audit.As an internationally leading blockchain security audit company, the Slow Mist audit team praised Bitizen's security mechanisms, design solutions, and the team's security awareness and attitude. Bitizen has also demonstrated to the public through third-party security audits that a wallet that is simple and easy to operate can also possess extreme security. It is reported that after this audit, both parties will further engage in more comprehensive security cooperation.

ChainCatcher news, the cross-chain aggregation flash exchange platform Transit Swap has officially restarted. The new contract is fully open source, with a security audit completed by Slow Mist Technology, and a maximum security vulnerability bounty of 1 million USD has been launched. This maintenance upgrade includes the following aspects:Transit Swap has optimized user authorization at the contract level, eliminating the separate module for managing user authorization.Optimized Transit Swap cross-chain bridge interaction to prevent malicious transfer of funds within the cross-chain bridge. A whitelist mechanism is adopted to reduce external call permissions.A comprehensive upgrade of the Transit Swap contract, abolishing the permissions of the old version contract. The new contract is fully open source and has undergone a security audit by Slow Mist Technology.The Transit Swap web version officially supports the display of trading content such as candlestick charts and liquidity pools, optimizing the user trading experience and helping users analyze trading data more comprehensively, enriching trading information.Transit Swap has launched a vulnerability and security bounty program, offering a reward of up to 1 million USD for users or developers who discover security vulnerabilities in Transit Swap. At the same time, Transit Swap has introduced the Transit Security Fund, injecting 10% of Transit Swap's monthly revenue into the security fund to effectively prevent security incidents.According to previous reports by ChainCatcher, Transit Swap was hacked on October 2, 2022, resulting in a theft of approximately 28.9 million USD. Subsequently, Transit Swap, in collaboration with global security teams, recovered 24 million USD for users, with an actual loss of about 4.9 million USD, which has been fully compensated to users by Transit Swap. It is reported that before the hack, Transit Swap had once become one of the top four aggregation trading platforms in the world, with over 70,000 monthly active users.