NPM Supply Chain Attack: Wallet Address Swap Trick
In this article, you’ll learn: How attackers used a string-similarity algorithm to trick users with look-alike wallet addresses. Why even experienced developers can be misled by UI-level deception. What this attack reveals about supply chain risks in Web3. Practical steps to protect your code, transactions, and community trust. At Fidesium, we keep a close eye […]
Sophisticated Phishing
This write up will look at a flavour of social engineering scam that’s been emerging in the current VC winter. Earlier this week we got connected on Telegram to somebody who claimed to work for https://fenbushi.vc/, a pioneering Asian crypto VC. After some initial discussion in Telegram, we agreed to schedule a call to take […]
Is PayPal acting in good faith?
Last week, PayPal (or rather, Pax’s on behalf of PayPal), released the PAX stablecoin. So first, we would love to welcome this new player. In market terms, in order to onboard the next billion users we need to have participation from TradFi and Institutional players like PayPal. In many ways the fact that PayPal are […]