Greetings!

More than $1.5M was stolen this week across seven incidents. Yet, things could have been far worse following a supply chain attack on Solana’s web3.js library, which drained multiple wallets. Meanwhile, the remaining compromises continued the trend of targeting smaller projects on BSC with price and reward manipulation exploits.

To learn more about the exploits affecting Vestra, Arata, MAAT, BYC, GAGAW, and other protocols, subscribe to the premium edition below.

To gain access to comprehensive vulnerability write-ups, post-mortems, exploit proof of concepts (PoCs), attacker addresses, and additional data regarding this week’s compromises, please subscribe to the premium plan below.

Let’s dive into the news!