GoPlus中文社区
由币安领投的Web3用户安全网络,致力于保护10亿Web3终端用户的交易和资产安全。
加入我们,共建 GoPlus 安全生态。
3 Following
315 Followers
133 Liked
42 Shared
See original
Hey, don't say it, this fraudster is really talented!
The latest scam gadget after the private key collision machine and Bitcoin lottery machine—the "BaoU Machine"—can earn 200,000 U per day! It's even more confusing than discount black U and low-price gold; beginners, be extra careful!
The latest scam gadget after the private key collision machine and Bitcoin lottery machine—the "BaoU Machine"—can earn 200,000 U per day! It's even more confusing than discount black U and low-price gold; beginners, be extra careful!
See original
The Dev myth from $1000 to $18 million? Uncovering the secrets of the RUG group’s $3.7 million black money!
Meet @ShittymikeSol, self-proclaimed $PNUT Dev, who turned $1000 into $18 million in a month! Now going live on X to make you rich, first battle $HNUT easily 1400 times! But the K-line of $HNUT actually formed a standard RUG posture, what kind of shocking dark truth is hidden behind this?
On December 29, 2025, he tweeted, "After a year off, the first real Alpha trade, bought $HNUT for 500 USD, skyrocketed to 200,000 USD in one day, closed at the peak the next day to profit 700,000 USD, exploded 1400 times! Meanwhile, inviting you to copy trades and join the Telegram community in his profile.
Quickly received community feedback: $HNUT plummeted 99.99%, we began investigating the $HNUT Creator/Dev address: 4eqKkKsvHUaYFARg5D3G1c2fsaHxzkvSZUkshusmRWd3, found no profits or connections.
On December 29, 2025, he tweeted, "After a year off, the first real Alpha trade, bought $HNUT for 500 USD, skyrocketed to 200,000 USD in one day, closed at the peak the next day to profit 700,000 USD, exploded 1400 times! Meanwhile, inviting you to copy trades and join the Telegram community in his profile.
Quickly received community feedback: $HNUT plummeted 99.99%, we began investigating the $HNUT Creator/Dev address: 4eqKkKsvHUaYFARg5D3G1c2fsaHxzkvSZUkshusmRWd3, found no profits or connections.
See original
🎉Happy New Year🎉
May 2026 be protected by GoPlus on your Web3 journey, keeping you safe and full of rewards!
May 2026 be protected by GoPlus on your Web3 journey, keeping you safe and full of rewards!
See original
🚨GoPlus Security Alert: Beware of phishing scams disguised as #LIT airdrops
PerpDEX @Lighter_xyz token $LIT airdrop distribution is complete, users do not need to claim. A large number of fake official and foundation Twitter accounts have emerged in the market, along with phishing links for airdrop collection and eligibility queries!
⚠️Please carefully verify the official website address to avoid phishing losses, and install the GoPlus security plugin to intercept phishing tweets and links in real-time!
PerpDEX @Lighter_xyz token $LIT airdrop distribution is complete, users do not need to claim. A large number of fake official and foundation Twitter accounts have emerged in the market, along with phishing links for airdrop collection and eligibility queries!
⚠️Please carefully verify the official website address to avoid phishing losses, and install the GoPlus security plugin to intercept phishing tweets and links in real-time!
See original
$DOYR's biggest winner — Dev issued nearly 10,000 MEME coins through 3 associated addresses, with profits exceeding $1.2 million!
A MEME coin born from a tweet mishap by Binance's sister @heyibinance and CZ's loving interpretation, peaked at a market cap of $30 million, now only $4 million left, seemingly not creating a wealth myth in the community, but GoPlus uncovered a big winner behind it making a guaranteed profit of millions of dollars — #DOYR's Dev/Creator!
DOYR Creator: 0x7e043336ed98fb1aef5cae2606b39bc9a3180e68
Creator issued $DOYR, buying 208.5 million coins first, then quickly shipped them out in batches, with a profit of only $4,200 this time.
But then we found that this address sent 3,333 MEME coins in this pattern over 187 days, with total profits exceeding $350,000! And that's not all...
DOYR Creator: 0x7e043336ed98fb1aef5cae2606b39bc9a3180e68
Creator issued $DOYR, buying 208.5 million coins first, then quickly shipped them out in batches, with a profit of only $4,200 this time.
But then we found that this address sent 3,333 MEME coins in this pattern over 187 days, with total profits exceeding $350,000! And that's not all...
See original
GoPlus November Web3 Security Data Report
In November, Web3 suffered economic losses amounting to $183,981,395 due to major security incidents. Types of security incidents include smart contract vulnerabilities, social engineering attacks, phishing attacks, pig butchering, rug pulls, etc.
Exploit
In November, exploits (including contract attacks, social engineering fraud, private key leaks, etc.) caused losses of $175,031,395 due to 15 major incidents. Typical incidents include:
On November 3, Balancer (@Balancer) was attacked due to a vulnerability in smart contract business calculations, resulting in losses exceeding $128 million, including assets such as WETH, osETH, and wstETH, suspected to be carried out by North Korean hackers.
Exploit
In November, exploits (including contract attacks, social engineering fraud, private key leaks, etc.) caused losses of $175,031,395 due to 15 major incidents. Typical incidents include:
On November 3, Balancer (@Balancer) was attacked due to a vulnerability in smart contract business calculations, resulting in losses exceeding $128 million, including assets such as WETH, osETH, and wstETH, suspected to be carried out by North Korean hackers.
See original
Revealing the on-chain truth behind Binance Life
A carnival of 'life reboot'
In early October 2025, a token named 'Binance Life' quietly appeared on the BSC chain.
48 hours after launch, its name appeared in countless tweets, group chats, and meme images.
Four days later, the market capitalization surpassed 150 million USD,
Trading volume reached 410 million USD/day,
Becoming the first Chinese meme coin to be listed on Binance Alpha.
In just 96 hours, from a single tweet to a massive following,
A carnival of 'on-chain life reboot' officially kicked off.
The butterfly effect of 'copy and paste'
The starting point of the story is just a 'copy and paste'.
In early October 2025, a token named 'Binance Life' quietly appeared on the BSC chain.
48 hours after launch, its name appeared in countless tweets, group chats, and meme images.
Four days later, the market capitalization surpassed 150 million USD,
Trading volume reached 410 million USD/day,
Becoming the first Chinese meme coin to be listed on Binance Alpha.
In just 96 hours, from a single tweet to a massive following,
A carnival of 'on-chain life reboot' officially kicked off.
The butterfly effect of 'copy and paste'
The starting point of the story is just a 'copy and paste'.
See original
How to earn $100,000 a month in Web3?
It's hard to answer, but I found a certain dark corner—someone is secretly earning $100,000 a month relying on you!
Four years ago, the protagonist 'Xiao Hei' wrote a factory contract that could pre-calculate and lock the contract deployment address in the exploration of the Ethereum CREATE2 opcode. It can predict and generate a specific contract address based on 'salt'.
4 years later, Xiao Hei frantically captured trends on social media, deploying $giggle, jellyjelly, and other popular MEME tokens with the same name as the Pixiu token.
He realized a brilliant 'psychological loophole'.
Four years ago, the protagonist 'Xiao Hei' wrote a factory contract that could pre-calculate and lock the contract deployment address in the exploration of the Ethereum CREATE2 opcode. It can predict and generate a specific contract address based on 'salt'.
4 years later, Xiao Hei frantically captured trends on social media, deploying $giggle, jellyjelly, and other popular MEME tokens with the same name as the Pixiu token.
He realized a brilliant 'psychological loophole'.
See original
🚨GoPlus Security Alert: Beware of popular Chinese MEME tokens with names like #Cultivation #BossBecomesRich #4
Recently, the #BNBChain Chinese MEME market has been booming, and the GoPlus team has detected multiple tokens named after popular tokens, with thousands of addresses already participating in trading.
⚠️Always verify the token contract address is correct when trading, and use GoPlus Token security checks to avoid purchasing counterfeit tokens and losses from the貔貅币.
Recently, the #BNBChain Chinese MEME market has been booming, and the GoPlus team has detected multiple tokens named after popular tokens, with thousands of addresses already participating in trading.
⚠️Always verify the token contract address is correct when trading, and use GoPlus Token security checks to avoid purchasing counterfeit tokens and losses from the貔貅币.
See original
🚨GoPlus Security Alert:
The Twitter account of the Bitcoin liquidity and re-staking platform @EchoProtocol_ is suspected to be stolen. The 2,515.648579 uBTC mentioned in the account's posts are false information. The provided Echo Protocol Telegram link will lead to a fake Safeguard phishing scam. Please do not click, to avoid asset loss!
The Twitter account of the Bitcoin liquidity and re-staking platform @EchoProtocol_ is suspected to be stolen. The 2,515.648579 uBTC mentioned in the account's posts are false information. The provided Echo Protocol Telegram link will lead to a fake Safeguard phishing scam. Please do not click, to avoid asset loss!
See original
📢 Malicious transaction interception rate 97%! GoPlus launches the world's first "Blockchain Security Firewall" GSM, significant effects tested on the BNB chain.
The world's first security protection layer that can be natively integrated into public chain nodes - GSM (GoPlus Security Module), with a core breakthrough that can be securely embedded in the blockchain execution layer, achieving non-external defense and intercepting malicious transactions in milliseconds before they are on-chain.
Specific implementation method: Integrate GSM directly into the node client (such as BNBChain), scanning before transactions enter the memory pool (mempool), cutting off the hacker attack path from the source. GoPlus provides actual test results conducted on the BNBChain, where in 100 real attack transaction replay tests, GSM achieved:
🛡️ 97% attack blocking rate
✈️ <40ms latency (node 0 crashes under thousands of TPS concurrency)
💰 Prevented losses exceeding $22 million
This technology will propel blockchain security from "post-event remediation" to "pre-event immunity," paving the way for a billion-level user entry. Currently, GoPlus is opening up ecological cooperation to the entire industry, supporting L1/L2 public chains, RPC service providers, and wallet protocols for one-click integration, allowing developers to quickly deploy through open-source solutions.
The world's first security protection layer that can be natively integrated into public chain nodes - GSM (GoPlus Security Module), with a core breakthrough that can be securely embedded in the blockchain execution layer, achieving non-external defense and intercepting malicious transactions in milliseconds before they are on-chain.
Specific implementation method: Integrate GSM directly into the node client (such as BNBChain), scanning before transactions enter the memory pool (mempool), cutting off the hacker attack path from the source. GoPlus provides actual test results conducted on the BNBChain, where in 100 real attack transaction replay tests, GSM achieved:
🛡️ 97% attack blocking rate
✈️ <40ms latency (node 0 crashes under thousands of TPS concurrency)
💰 Prevented losses exceeding $22 million
This technology will propel blockchain security from "post-event remediation" to "pre-event immunity," paving the way for a billion-level user entry. Currently, GoPlus is opening up ecological cooperation to the entire industry, supporting L1/L2 public chains, RPC service providers, and wallet protocols for one-click integration, allowing developers to quickly deploy through open-source solutions.
See original
😱5000U scammed——Just saw a newbie on Youtube asking how to transfer money to Binance, he left his wallet recovery phrase, and upon checking, his wallet actually had 72USDT. Is he cursing himself while thinking he found money?
Hahaha, ⚠️You have fallen into the 【accidental exposure of recovery phrase】 scam, if you transfer Gas fees to the wallet, it will be automatically emptied, and you won't take away a single cent. Already 200 addresses have been scammed out of 5000U #TRX!
Hahaha, ⚠️You have fallen into the 【accidental exposure of recovery phrase】 scam, if you transfer Gas fees to the wallet, it will be automatically emptied, and you won't take away a single cent. Already 200 addresses have been scammed out of 5000U #TRX!
See original
GoPlus's Latest Review Paper on Smart Contract and DeFi Security Accepted by a TOP Journal of the Chinese Academy of Sciences
Recently, the GoPlus team’s review paper titled "Comprehensive Review of Smart Contract and DeFi Security: Attack, Vulnerability Detection, and Automated Repair" in the field of smart contract and decentralized finance (DeFi) security was officially accepted by the TOP journal "Expert Systems With Applications" of the Chinese Academy of Sciences!
"Expert Systems With Applications" was founded in 1990 and is an authoritative journal in the field of computer science and artificial intelligence under Elsevier, currently having an impact factor of 7.5, being a TOP journal in the first district of the Chinese Academy of Sciences, and classified in JCR Q1.
Recently, the GoPlus team’s review paper titled "Comprehensive Review of Smart Contract and DeFi Security: Attack, Vulnerability Detection, and Automated Repair" in the field of smart contract and decentralized finance (DeFi) security was officially accepted by the TOP journal "Expert Systems With Applications" of the Chinese Academy of Sciences!
"Expert Systems With Applications" was founded in 1990 and is an authoritative journal in the field of computer science and artificial intelligence under Elsevier, currently having an impact factor of 7.5, being a TOP journal in the first district of the Chinese Academy of Sciences, and classified in JCR Q1.
See original
GoPlus Exclusive Reveal: EIP-7702 Phishing Techniques
Phishing groups are using a large number of addresses with leaked private keys for fraud, and the combination with EIP-7702 allows them to gain account management rights over addresses with leaked private keys. At the same time, these bait addresses have rich historical transaction records, making ordinary users easily let down their guard and transfer Gas due to the balance in the greedy bait addresses, leading to theft.
Case One
1. Address 0x000085bad5b016e5448a530cb3d4840d2cfd15bc has deployed multiple malicious Delegator contracts 0x930fcc, 0x1f0733, 0x9eece7 on ETH.
2. Afterwards, a large number of addresses with leaked private keys were authorized to a malicious Delegator contract via address 0x9d1ff3a11f7791c6bff9399aafd5a4eaffc83efb and automation scripts, completing the bait setup.
Case One
1. Address 0x000085bad5b016e5448a530cb3d4840d2cfd15bc has deployed multiple malicious Delegator contracts 0x930fcc, 0x1f0733, 0x9eece7 on ETH.
2. Afterwards, a large number of addresses with leaked private keys were authorized to a malicious Delegator contract via address 0x9d1ff3a11f7791c6bff9399aafd5a4eaffc83efb and automation scripts, completing the bait setup.
See original
🚨7702 malicious Delegator strikes again, thousands of addresses are victimized in just 3 days
A new 7702 malicious Delegator appears again on #ETH🔥🔥🔥🔥🔥🔥 #BSC #Base . Thousands of addresses have been victimized in just 3 days of going online, and the fraudsters have stolen more than $10,000 in crypto assets.
Malicious Delagator address (same as#ETH#Base ):
0x89046d34e70a65acab2152c26a0c8e493b5ba629
Once the user authorizes this address, the BNB or other tokens transferred in will be transferred to the fraudulent address:
0x77dd9A93d7a1Ab9Dd3bdD4A70A51B2E8C9b2350D
⚠️GoPlus security advice: Do not transfer or authorize to any unfamiliar address. The new 7702 scam is using addresses with historically leaked private keys to conduct widespread phishing attacks.
A new 7702 malicious Delegator appears again on #ETH🔥🔥🔥🔥🔥🔥 #BSC #Base . Thousands of addresses have been victimized in just 3 days of going online, and the fraudsters have stolen more than $10,000 in crypto assets.
Malicious Delagator address (same as#ETH#Base ):
0x89046d34e70a65acab2152c26a0c8e493b5ba629
Once the user authorizes this address, the BNB or other tokens transferred in will be transferred to the fraudulent address:
0x77dd9A93d7a1Ab9Dd3bdD4A70A51B2E8C9b2350D
⚠️GoPlus security advice: Do not transfer or authorize to any unfamiliar address. The new 7702 scam is using addresses with historically leaked private keys to conduct widespread phishing attacks.
See original
GoPlus has exposed this website claiming to be Trump's wallet, TrumpWallet.com, and found
——its backend is communicating with slingshot.app, privacy and user agreements reference slingshot! Is this some sort of marketing tactic for the Slingshot wallet❓ or perhaps an acquisition/outsource by the Trump family❓
Currently, Trump's eldest son @DonaldJTrumpJr has denied any connection, and we also ask @SlingshotCrypto to respond.
——its backend is communicating with slingshot.app, privacy and user agreements reference slingshot! Is this some sort of marketing tactic for the Slingshot wallet❓ or perhaps an acquisition/outsource by the Trump family❓
Currently, Trump's eldest son @DonaldJTrumpJr has denied any connection, and we also ask @SlingshotCrypto to respond.
See original
Deeply restoring the principles of 7702 phishing attacks, how should wallets and users prevent them?
EIP-7702 grants addresses capabilities and flexibility similar to smart contracts, and more and more 7702 applications are continuously being created, which is crucial for bringing more people into Web3 and enhancing user experience.
However, the flexibility of 7702 and the fact that most users are still unfamiliar with 7702 are being exploited by fraudulent groups. Recently, we have observed that some users have fallen victim to phishing groups like #InfernoDrainer due to MetaMask's 7702 batch execution capability, leading to what originally required dozens of authorizations being merged into a single transaction, resulting in asset theft.
Note: MetaMask itself has no security issues. MetaMask prioritizes user safety when providing 7702-related capabilities and has implemented many security measures. Users need to understand more about the capabilities and related risks of 7702 to prevent such security incidents from happening again.
However, the flexibility of 7702 and the fact that most users are still unfamiliar with 7702 are being exploited by fraudulent groups. Recently, we have observed that some users have fallen victim to phishing groups like #InfernoDrainer due to MetaMask's 7702 batch execution capability, leading to what originally required dozens of authorizations being merged into a single transaction, resulting in asset theft.
Note: MetaMask itself has no security issues. MetaMask prioritizes user safety when providing 7702-related capabilities and has implemented many security measures. Users need to understand more about the capabilities and related risks of 7702 to prevent such security incidents from happening again.
See original
Trends in Token Issuance of SOLANA, BASE, and BNB Chain
Author: Zhupiter, GoPlus research
2025-03-16
This report analyzes the token issuance trends of SOLANA, BASE, and BNB three major blockchain networks from December 2024 to March 2025 and the situation of honeypot tokens, revealing the development dynamics and security risks of each platform in the token market.
As shown in the above chart, overall, SOLANA maintained the highest token issuance volume throughout the observation period, with the number of new tokens significantly exceeding the other two blockchains.
The following chart shows the new token issuance trends of the three chains:
SOLANA
In mid-January 2025, the token issuance volume of SOLANA reached its peak, approaching 800,000 tokens, and then showed a continuous downward trend.
2025-03-16
This report analyzes the token issuance trends of SOLANA, BASE, and BNB three major blockchain networks from December 2024 to March 2025 and the situation of honeypot tokens, revealing the development dynamics and security risks of each platform in the token market.
As shown in the above chart, overall, SOLANA maintained the highest token issuance volume throughout the observation period, with the number of new tokens significantly exceeding the other two blockchains.
The following chart shows the new token issuance trends of the three chains:
SOLANA
In mid-January 2025, the token issuance volume of SOLANA reached its peak, approaching 800,000 tokens, and then showed a continuous downward trend.
See original
🚨GoPlus Security Alert: Multiple well-known exchanges have historically leaked user data totaling over ten million, and you might be among them!
Attack teams have infiltrated the technical or customer service teams of exchanges early on to steal user data, and then send targeted phishing emails like 【Suspicious login detected, regulatory request】, leaving many confused and falling victim! GoPlus recommends you:
1. Change your password regularly
2. Enable two-factor authentication (2FA)
3. Verify the source of exchange emails, and do not click on links in emails lightly to avoid phishing scams.
Attack teams have infiltrated the technical or customer service teams of exchanges early on to steal user data, and then send targeted phishing emails like 【Suspicious login detected, regulatory request】, leaving many confused and falling victim! GoPlus recommends you:
1. Change your password regularly
2. Enable two-factor authentication (2FA)
3. Verify the source of exchange emails, and do not click on links in emails lightly to avoid phishing scams.
See original
🚨GoPlus Security Alert
According to#GoPlususer feedback, the wallet plug-in named "Phantom Currency Wallet Converter" in the#MicrosoftEdge official extension store is a fake official phishing software ⚠️, and some users' assets have been stolen. Please be sure to use the extension entrance recommended by @phantom official website to install it to avoid asset loss!
According to#GoPlususer feedback, the wallet plug-in named "Phantom Currency Wallet Converter" in the#MicrosoftEdge official extension store is a fake official phishing software ⚠️, and some users' assets have been stolen. Please be sure to use the extension entrance recommended by @phantom official website to install it to avoid asset loss!
Login to explore more contents