Cosine: The large asset security management model needs a major upgrade, and details on why the Safe front-end was tampered with still need to be disclosed
ChainCatcher message, Slow Mist Yu Xian posted on platform X stating that Safe has ultimately been breached. The smart contract part is indeed fine (easily verifiable on-chain), but the front end was tampered with and forged to achieve a deceptive effect.As for why it was tampered with, we will wait for the official details from Safe. Safe can be considered a type of security infrastructure; theoretically, anyone using this multi-signature wallet could be stolen from, similar to Bybit. All other services with front ends, APIs, and user interaction may carry this risk as well. This is also a classic supply chain attack, and the security management model for large/huge assets needs a significant upgrade.