Security Week at a Glance
At Minterest, we prioritise security at every step. During our recent Security Week, we emphasised the importance of vigilance and engaged with our community through various activities.
Our commitment to security is evident in the six successful code audits we’ve undergone so far, enhancing our platform’s robustness. These audits, conducted in 2022 and early 2023, reflect our dedication to maintaining a high standard of security and ensuring user confidence in our platform’s safety.
Fireside Chat with Zokyo
The highlight of our Security Week was undoubtedly engaging Fireside Chat held on X Spaces with a distinguished security auditing company ZOKYO.
The Fireside Chat began by stressing the paramount importance of cybersecurity in DeFi by highlighting that access control issues remain a common source of losses in this space, often caused by unauthorised wallet takeovers.
The conversation shifted to the auditing process, with Zokyo CTO Andrei Stefan, providing a glimpse into its intricacies. He emphasised that each audit is truly unique, influenced by factors like project complexity, team size, and auditing methodology. Denis Romanovsky from Minterest engineering chimed in, underscoring the significance of comprehensive documentation and testing to streamline the audit process.
The dialogue also touched on the challenges of auditing, including the delicate balance of knowing when to conclude the search for vulnerabilities. Additionally, it was noted that audits can catalyse improvements within teams, fostering better practices and workflows long term. In terms of safeguarding digital assets on protocols, both Andrei and Denis reiterated the importance of securing private keys, enabling two-factor authentication, exercising caution with phishing attempts, and remaining vigilant against social engineering attacks.
Furthermore, they recommended that every stakeholder or interested individual must read audit reports for projects and verify the credibility of auditing companies even if the Whitepaper seems too daunting. As Andrei said,
“At Zokyo, we are trying to audit projects first for the community, for the retail user, second for the investors and third for the technical knowledge. The community and the investors, 99% of them, are not technical people and we are trying to be as user friendly as possible without using too many technical terms and just explain as simply as possible.”
Overall, the discussion underscored the pivotal role of code audits in upholding DeFi protocols security and the indispensable nature of individual security measures.
You can access the Fireside Chat here
— Minterest (@Minterest) September 7, 2023
11, September 2023
