Anatomy of a Targeted Meeting Lure

TL;DR A contact I recognised reached out to “catch up”, steered me toward a video call, then pushed a link that looked like a Microsoft Teams invite. It wasn’t. The visible text said teams.live.com, the tap target was a malicious url which I will not be reproducing here, and the preview card was forged […]
Q2 2026 at Fidesium

16 new detectors, and an accuracy floor we cannot regress past Most product updates are changelogs. We try not to write those. The only question that matters is whether your protocol is safer today than it was 90 days ago. Here is the answer for Q2 2026. We hardened the platform before we shipped new […]
Fidesium × Sumvin: Auditing a Soulbound Identity Protocol on Sei

Fidesium’s latest customer, Sumvin, is a soulbound ERC-721 identity protocol. Our engagement covered the full Solidity codebase, the UUPS upgrade path, and the Safe-based governance model. The engagement produced 9 actionable findings (0 Critical, 1 High, 2 Medium, 2 Low, 4 Info). A Low overall risk posture. Here’s how our multi-pass Framework, applied to a […]
Fidesium × Adrena: a Case Study

Auditing a Solana Perps DEX at Production Scale TL;DR: Fidesium audited Adrena – a Solana-native perpetual futures DEX run by the Autonom Foundation – across two engagements covering ~36,000 lines of Rust, 122 instructions, and a live version migration. The engagement produced 14 actionable findings (1 Critical, 3 High, 8 Medium, 2 Low), 43 recommendations, […]
Attack Your Own Protocol Before Someone Else Does

April 2026 was the worst month on record for crypto. Almost none of it was clever. Roughly 600 to 650 million dollars walked out the door in April. The worst month the industry has ever logged. Here is the part that should keep you up at night. It was not math. It was not some […]