Hey, I'm Igor. I'm a security-oriented smart contract engineer.

On September 2nd, an attacker turned Bunni's innovative math against itself, draining two pools across Ethereum and Unichain and stealing $8.4M in under 5 minutes. No fancy vulnerabilities, just a price manipulation and 44 carefully crafted micro withdrawals that exploited a precision bug everyone missed, even after three audits...

If you’ve ever upgraded a smart contract and watched perfectly good state turn to junk, you’ve seen storage collisions. Old state gets written over and variables become corrupted, rendering the contract useless. There are examples of how simple storage collisions can cause millions of dollars in damages, which happened to Audius...