$40M in Exolix Swaps Exposed via API Vulnerability: Anyone with a partner's key can dump the full swap history. Using keys from public apps, a researcher extracted 355,944 txs (~$39.5M). Exolix called it a "feature", but this "feature" exposes blockchain intel on Monero users. Read the full post (especially the chats):

$40M in Exolix Swaps Exposed via API Vulnerability | RasterSec

Broken access control in Exolix

X (formerly Twitter)

thrasherXBT (@thrasherXBT) on X

the best "advising" we can do is just building useful shit that makes bad policy irrelevant

I remember being happy two years ago when #Monero's price bounced back from ~ $113 to $135 right after the Binance delisting announcement. The point still stands: "Imagine what would happen to Bitcoin or any other crypto if they were delisted...🤔" View quoted note →

2 Years of Monero After the Binance Delist™ 📽️ by Giallo (https://x.com/gialloxmr)

Safety is an illusion… ...and security is a process.

🚨 SECURITY ANNOUNCEMENT – EigenWallet Market Makers: "There may be a vulnerability in the maker. Possibly actively exploited. I strongly urge everyone to shutdown their ASB for now. We are investigating the issue."

Until death, all defeat is psychological.

I spent 3 years as a Marxist. I protested. I made crazy demands. I accepted no responsibility. No accountability. But then I turned 4.

RetoSwap v1.6.0-reto is live! Full release notes: github.com/retoaccess1/haveno-reto/releases/tag/1.6.0-reto View quoted note →

UPDATE about HavenoDEX / RetoSwap from Haveno lead dev Woodser: v1.5 is tagged. This version fixes a critical exploit that allowed an attacker to manipulate the initialization protocol and create compromised multisig trade wallets before funds were deposited. Following the incident, critical paths in the code have been reviewed for additional potential vulnerabilities leading up to multisig creation. Defensive checks are added in

GitHub

core: always verify trade message sender against pub key rings by woodser · Pull Request #2315 · haveno-dex/haveno

Decentralized P2P exchange platform built on Monero and Tor - core: always verify trade message sender against pub key rings by woodser · Pull Req...

to verify peer identities against known public key rings for strict cryptographic continuity. Anyone is welcome to audit the code for further vulnerabilities, and we ask that findings be disclosed responsibly. This version also updates Tor and improves its permissions on Windows. Full release notes:

GitHub

Release v1.5.0 · haveno-dex/haveno

build: bump version to 1.5.0 (#2323)

What's Changed - Always verify peer identity against known public key rings by woodser #2315 - Update Tor Browser to 15.0.13, binary to 0.4.9.8 #2321 - Update demo video to v1.4 by fxrstor #2319 - Update documentation links with standardized hyphens #2320

Monero is the currency and the foundation of the ultimate offshore jurisdiction in cyberspace, as predicted in The Sovereign Individual! "First in scores, then in hundreds, and ultimately in the millions, individuals will escape the shackles of politics."

Monero Circular Economy: From Cypherpunk Hundreds to Sovereign Millions

XmrBazaar's User Growth Chart: Freedom's Exponential Awakening Curve

View quoted note →

🎉Happy 2nd Birthday, XmrBazaar.com! 🎂 Today we're celebrating 5,000+ delivered orders, 15,000 listings from ~10,000 users who actively chose freedom over surveillance by trading peer-to-peer and growing the Monero circular economy. Real growth. Real momentum. Onward 🚀

PSA: RetoSwap / HavenoDEX exploit live Lead dev recommends pulling all offers IMMEDIATELY

A major breakthrough for Monero multisig escrows: @spirobel just integrated Serai-powered multisig! It improves multisig UX thus eliminating the current choice traders face today: either risky but easy direct trades or clunky multistep escrows with repeated logins/sync or manual CLI steps (as described here: https://themeritocrat.substack.com/p/why-monero-cli-proves-xmrbazaar-mediators). As someone mediating daily on XmrBazaar, this is a true game changer! Future of Monero P2P trade just got a lot brighter💖 Read & help test:

Robust Monero Escrow with offline Arbitrators

During the development of the Serai network, a new piece of innovation was discovered. This piece brings us one step closer to the birth of a trad...

9 AM: You start grinding for your family. By lunch: You’ve earned exactly zero. The State just took it ALL.

Often, the real vulnerabilities aren't behind the monitor: they're sitting in front of it. (and their pride, greed, and sloth aren't just deadly sins: they're the key exploits) Screenshot link / 🧵: https://xcancel.com/kayabaNerve/status/2055272009253212544

"Owning and spending Monero feels revolutionary!" 💯^^can confirm^^💯 * from my XMRChat❤️‍🔥🥹🙏

Tip aillia | XMRChat

#Monero Twitter as I see it