The blockchain ecosystem, a blend of tech breakthroughs and risk, continues to evolve, with security remaining a critical concern. Two recent reports from SlowMist, a blockchain security firm established during the extended crypto bear market of 2018, highlight the challenges of combating sophisticated cyber threats and ensuring regulatory compliance.
The first report exposes a malicious Solana trading bot on GitHub, while the second provides comprehensive guidelines for stablecoin issuers in Hong Kong.
Together, these updates underscore SlowMist’s role in safeguarding the blockchain sector.
Recently, SlowMist’s security team investigated a crypto asset theft reported by a victim, tracing the incident to a deceptive open-source project on GitHub.
This followed a similar case involving another incident, which concealed a crypto-stealing mechanism.
The investigation revealed a cunning attack vector: malicious code embedded in the bot’s configuration file that extracted sensitive data, including private keys, from users’ local environments.
The code decoded a Base58 string into a Keypair object using the Solana SDK, wrapped it in an Atomic Reference Counted pointer for thread-safe sharing, and sent the private key to a hacker-controlled server via a POST request.
The attacker obscured their tracks by decoding a hardcoded malicious URL and leveraging fake GitHub accounts to inflate the project’s credibility through artificial stars and forks.
SlowMist’s findings emphasize the sophistication of software supply chain attacks, urging users to verify open-source tools meticulously.
This incident, part of a broader wave of scams targeting DeFi users, highlights the need for security audits to protect digital assets.
Meanwhile, SlowMist’s expertise extends beyond threat detection to regulatory compliance, particularly in Hong Kong’s stablecoin market.
Recently, SlowMist released its Smart Contract Implementation Guidelines for Stablecoin Issuers in Hong Kong, aligning with the Hong Kong Monetary Authority’s (HKMA) Draft Guideline on Supervision of Licensed Stablecoin Issuers, issued this year.
This guideline responds to the Stablecoins Bill, which aims to ensure stability, security, and regulatory alignment in Hong Kong’s stablecoin ecosystem.
SlowMist’s framework offers issuers a technical roadmap to meet these stringent requirements, emphasizing secure smart contract design and ongoing risk management.
The guidelines detail critical practices, such as on-chain activity monitoring using SlowMist’s MistEye system to track management role usage and detect unauthorized activities.
They also advocate for threat intelligence subscriptions to identify emerging risks promptly.
A key requirement is the inclusion of a “business exit plan” in smart contracts, ensuring an orderly wind-down of operations, including reserve asset liquidation and proceeds distribution to holders.
SlowMist stresses that smart contracts must incorporate “retirement” mechanisms from the design phase, embedding protocol-level end-of-life agreements.
For issuers considering consortium chains or alternative distributed ledger technologies (DLTs), SlowMist recommends security audits to demonstrate equivalence or superiority to mainstream public chains.
These audits must assess resistance to common attacks, consensus mechanisms, and vulnerabilities that could impact issuance, redemption, or operations.
By integrating these measures, SlowMist helps issuers comply with HKMA standards and international frameworks like OWASP, fostering a more compliant stablecoin ecosystem.
SlowMist’s focus on threat intelligence and compliance underscores its holistic approach to blockchain security.
The firm’s tools, such as MistTrack for anti-money laundering (AML) and FireWall.x for smart contract protection, have supported platforms like Binance and HashKey.
Its collaboration with Hong Kong’s licensed virtual asset service providers and recognition by the Hong Kong Securities and Futures Commission (HKSFC) further indicate its role.
As blockchain adoption grows, SlowMist’s efforts to expose threats like the Solana bot and guide stablecoin issuers highlight the need for vigilance and regulatory alignment in this high-stakes digital frontier.