BNB Chain та AvengerDAO
1️⃣ Adopting Web3 Standards
1. What of the following is a correct way of Identifying scam projects:
- Analyzing displayed transaction details.
2. Best practices and standards benefits:
- Enhanced security, minimized risks
3. Security vulnerability checks on smart contracts:
- Check throughout development life cyclec
2️⃣ Becoming Web3 Security-Literate
1. What are some security challenges introduced by Web3's decentralized nature?
- Malicious actors leveraging anonymity and pseudonymity
2. What is the purpose of Avenger DAO's "Meter" feature?
- Providing alerts when users interact with flagged dApps
3. What are the key components of advancing Web3 security?
- Robust auditing, adherence to security best practices, and collaboration
3️⃣ Protecting Yourself in the Dark Forest of Web3
1. What are common types of attacks used by cybercriminals in the web3 space?
- Phishing and social engineering
2. Which of the following is a tip for protecting your private keys and social accounts?
- Store your private keys securely
3. What should you do if you suspect that your web3 assets have been compromised?
- Contact your wallet or exchange provider to report the suspected compromise
4️⃣ How to Stay Safe from Phishing in Web3?
1. Click this link to view the fund flow graph of a phishing incident. What type of phishing is it?
- Zero-Value Transfer
2. Who is the phisher in the incident above and how many assets did they gain?
- 0x5ccd37e261ba28e57f11d54b60ebcd198c614776, 888.13 BSC-USD
3. Which of the following behaviors is the correct approach to anti-phishing?
- Double-check addresses before you interact with them.
5️⃣ Defend Against Sandwich Attacks on BNB Smart Chain
1. Defend Against Sandwich Attacks on BNB Smart Chain
- An attack that exploits the AMM's mechanism by placing transactions both before and after a user's transaction.
2. What is a Private RPC and how does it help against sandwich attacks?
- A confidential portal to interact with the blockchain, hiding transaction data from public nodes.
3. Which of the following is a strategy to avoid sandwich attacks?
- Setting a lower slippage tolerance to avoid transactions when the price slips beyond the limit.
6️⃣ Secure and streamline your Web3 experience with MPC and Account Abstraction
1. In what way does the use of Multi-Party Computation (MPC) help mitigate issues traditionally faced with private key management?
- MPC allows the private key to be split into multiple parts and distributed amongst multiple parties, reducing the risk of total key exposure
2. Which option does NOT belong to the impacts that Account Abstraction (AA) had to the Web3 user experience in terms of transaction execution?
- AA ensures faster verification of transactions by the network
3. According to the article, how are MPC and AA proposed to enhance Web3 account security together?
- By using MPC to ensure that no single point of failure to user’s credential and AA to enhance the security and convenience for account recovery.
7️⃣ Smart contract monitoring for early threat detection
1. Smart contract monitoring for early threat detection
- Time
2. What is the purpose of Aegis?
- To help identify potential hacks
3. How is the feature of Aegis called that lets you go back in time?
- Backtesting
8️⃣ Guarding the Gates of Web3: Tackling Cyber and Financial Exploits
1. What characteristic of Web3 heightens the complexity of cybersecurity?
- Its decentralization, permissionless nature, and code transparency
2. Which of the following is a recommended best practice in a comprehensive defense strategy for Web3?
- Threat monitoring and hunting combined with formal verification, code audits, and bug bounties
3. What approach offers a robust defense against cyber and financial threats in the Web3 ecosystem?
- Threat monitoring and hunting with automated remediation that doesn’t harm the protocol continuity
9️⃣ AvengerDAO Risk Scanner - Navigate Web3 Safely
1. What are the three core technologies incorporated into the AvengerDAO Risk Scanner?
- Big Data Analytics, On-Chain Analytics, and Formal Verification
2. What factors are taken into account when assigning a Trust Score with the Risk Scanner?
- Honeypot information, Blacklisted addresses, and code vulnerabilities among other threats
3. How can users benefit from using the AvengerDAO Risk Scanner?
- It identifies the risk associated with wallets and smart contracts.
1️⃣0️⃣ The Crucial Role of a Security Operations Center (SOC)
1. What is the primary focus of a SOC team?
- Providing round-the-clock security surveillance and incident response
2. How does a SOC team monitor the BNB Chain ecosystem?
- By utilizing advanced technologies for real-time monitoring and analysis
3. What role does a SOC team play in incident response?
- Coordinating swift and effective responses to identified threats
1️⃣1️⃣ Financial Risks of DeFi
1. What is the potential consequence of oracle manipulation in decentralized finance?
- Ability to borrow more than a user should
2. On-chain slippage refers to:
- The difference between the expected and executed prices of assets in decentralized exchanges
3. What is the risk associated with cascading liquidations in decentralized lending platforms?
- A chain reaction of liquidations leading to significant financial losses for participants