Anatomy of a Targeted Meeting Lure

TL;DR A contact I recognised reached out to “catch up”, steered me toward a video call, then pushed a link that looked like a Microsoft Teams invite. It wasn’t. The visible text said teams.live.com, the tap target was a malicious url which I will not be reproducing here, and the preview card was forged […]
Q2 2026 at Fidesium

16 new detectors, and an accuracy floor we cannot regress past Most product updates are changelogs. We try not to write those. The only question that matters is whether your protocol is safer today than it was 90 days ago. Here is the answer for Q2 2026. We hardened the platform before we shipped new […]
Fidesium × Sumvin: Auditing a Soulbound Identity Protocol on Sei

Fidesium’s latest customer, Sumvin, is a soulbound ERC-721 identity protocol. Our engagement covered the full Solidity codebase, the UUPS upgrade path, and the Safe-based governance model. The engagement produced 9 actionable findings (0 Critical, 1 High, 2 Medium, 2 Low, 4 Info). A Low overall risk posture. Here’s how our multi-pass Framework, applied to a […]
Fidesium × Adrena: a Case Study

Auditing a Solana Perps DEX at Production Scale TL;DR: Fidesium audited Adrena – a Solana-native perpetual futures DEX run by the Autonom Foundation – across two engagements covering ~36,000 lines of Rust, 122 instructions, and a live version migration. The engagement produced 14 actionable findings (1 Critical, 3 High, 8 Medium, 2 Low), 43 recommendations, […]
What We Built in Q1 2026 – And Why It Matters for Smart Contract Security

TL;DR: Fidesium’s Q1 2026 update delivers scanning speeds 140x faster on large repositories, cross-contract bug detection across multi-file codebases, on-chain deployment scanning for 30+ EVM chains, a Solana fuzzing harness that outperforms public alternatives by 5x, and a 90%+ improvement in reentrancy detection. Here’s what changed, what it means for your team, and why […]
Fidesium January 2026 Product Update: Preserving Audit Value as Code Ships Faster

Why do smart contract audits lose relevance so quickly? Because every meaningful code change introduces uncertainty that the original audit never reviewed. December’s updates focus on one core goal: making audits last as protocols evolve, tooling scales, and teams ship faster. This month, we strengthened audit continuity across three critical areas: Interoperability with existing security […]
Chadi Sebbar’s Journey into Smart Contract Security

Web3 security isn’t just about code, it’s about the people who dedicate their careers to protecting the ecosystem, and with it a vision for a better future. One of them is Chadi Sebbar, a multilingual security engineer whose unique path shows what it takes to build trust in a decentralized world. Who This Story Is […]
Fidesium PB&J Case Study

Security as a process allows companies to launch quickly and on schedule. In the world of blockchain and Web3 development, security is not merely a checkpoint but a continuous process. When done correctly it empowers organizations to innovate boldly while mitigating risks. This approach transforms potential vulnerabilities into opportunities for refinement, allowing PB&J to launch […]
Fidesium PB&J Case Study Part 2

How PB&J Secured a Web3 Game in 1 Minute – and Launched in Under 30 Days In Web3, one missed vulnerability can erase months of work and millions in value – but one minute can save it all. Web3 leaders don’t just ship fast – they ship secure. PB&J Consulting joined that club when they […]
The Wild West of Crypto: When a Rug Pull is Not a Rug Pull

The cryptocurrency space is often compared to the Wild West – largely unregulated, where degens and normies alike transact in an ecosystem full of risk and opportunity. In this environment, ‘rug pulls’ have become a major concern for crypto investors. A rug pull refers to when developers of a new cryptocurrency abandon the project and […]