Disclaimer: The information provided through the BNB Chain community does not constitute advice or recommendation for investment or trading. Projects are listed in no particular order below. BNB Chain does not take responsibility for any of your investment decisions. Please seek professional advice before taking financial risks.

AvengerDAO is a community-driven initiative created to protect the users and projects on BNB Chain from malicious actors and activity. AvengerDAO publishes a list of risk projects and addresses on  DappBay Red Alarm every Friday.

By actively identifying and flagging such items through DappBay’s Red Alarm,  AvengerDAO can help users identify high-risk BNB Chain dApps with the level of risk, the risk description, and other important risk details. Web3 users can safely navigate BNB Chain dApps while staying safe.

Security Incidents

HashDit is an industry-leading blockchain security company that focuses on building a safe ecosystem for both protocol users and smart contract developers on BNB Chain. HashDit is member of AvengerDAO. HashDit’s analysis shows that there are two spam/phishing alerts this week

Lessons Learned

1. Before calling the approve() function of some airdrop token contracts, it's better to check in advance if the `Gas Used by Transaction` exceeds 90% in the previous approval transactions.

Red Alarm Weekly Highlights

AvengerDAO publishes a list of risk projects and addresses on DappBay Red Alarm every Friday.  If you have questions or feedback for below risk highlights, please contact here.

Newly Detected High-Risk dApp Projects

Newly Detected High-Risk Address

AvengerDAO members offer APIs to  check the security of a contract to be interacted with or get relevant information such as potential risks of a specific address to perform due diligence. AvengerDAO API gives a comprehensive evaluation of each address.

We advise you to regularly check with these APIs when receiving an airdrop for a certain token, or interacting with the contracts that they want to invest in.  https://dappbay.bnbchain.org/risk-scanner is integrated with these APIs. Please have a try!

List latest TOP10 high risk addresses detected from Weekly Scan.

All the addresses are listed here.

Latest Risk Remediation - TVL >1M$ Projects

AvengerDAO is actively scanning TVL >1M$ projects. This week, 9 projects are identified with potential risks and 3 have been resolved. Most of the issues are due to a lack of multi-sig wallet setup. We recommend projects to study the Web3 Risk Framework to learn more about best practices.

Stay Safe - DYOR (Do Your Own Research)

AvengerDAO advise you to act with caution in general, but ask that you take particular care when dealing with the projects we highlight as risky on our weekly update.  

AvengerDAO updated the comprehensive Web3 Risk frameworks, a collaborative effort to promote the adoption of best practices in Web3 Security. This aims to enhance further adoption by setting an industry standard for safe practices and raise awareness on safety and security in the ecosystem. (all information are available : Web3 Security Frameworks | Avenger DAO)

• Business Continuity
  Critical element and business continuity best practices.
• Crypto Wallet
  Comprehensive checklist of the critical elements surrounding the secure management of crypto wallets.
• Decentralized Finance
  Checklist of the critical elements surrounding the secure development of DeFi decentralized applications.
• Smart Contract
  Checklist of the critical elements surrounding the secure development of solidity smart contracts.
• Project Management
  Critical elements surrounding the web3 project management best practices.

All the BNBChain projects should do the self-check based on the recommended best practices and checklists to avoid potential risks.

At the same time, HashDit is also emphasizing the importance of “How to identify the rug-pulls?” and to all the Web3 users, please ensure DYOR and keep BUIDL on BNBChain ecosystem and most importantly, stay SAFU!

About AvengerDAO​

AvengerDAO is a community driven initiative that protects users from possible exploits, scams and malicious actors on BNB Chain. The founding members of AvengerDAO started this because BNB Chain is the largest public chain today, and the larger the community, the greater the responsibility.

Our goal is to protect users from financial losses and malicious contracts. Deter malicious actors and notify BNB Chain’s users. We aim to enhance further adoption by setting an industry standard for safe practices and raise awareness on safety and security in the ecosystem.