The crypto world just got a tad more dramatic! Remember friend.tech? That swanky web3 social app where you can trade “shares” in Twitter accounts? Yep, that one. They’ve landed in some hot water, and it’s steaming!
Here’s the tea: Banteg, a mysterious figure and core contributor to Yearn Finance, spilled the beans by publishing a “leaked” repository. This wasn’t just any leak; it contained the juicy details of over 101,000 friend.tech users. We’re talking Base addresses and their matching Twitter usernames. Yikes, right?
But wait, there’s more to this plot twist. Banteg didn’t just stop at exposing the repository. He went on to highlight a rather unsettling situation about friend.tech’s permissions. Hold onto your hats because this is where it gets wild. According to our whistleblower, these 101,183 users had unknowingly given friend.tech the green light to post on their behalf. Can you imagine? Is your favorite crypto platform tweeting away without your knowledge? The audacity!
You might be wondering, “How did this even happen?” Well, our detective Banteg was on the case. After releasing a CSV file packed with user data (including funding sources and usernames), he pointed fingers at friend.tech’s API. Spot On chain analysts backed this up, claiming that this API had leaked info. For instance, any Tom, Dick, or Harry could view wallets created by users through this API. Not the best look for friend.tech, huh?
But let’s zoom out a bit. For those out of the loop, friend.tech operates as a web3 social application on the Coinbase-incubated Layer 2 chain Base. Its unique selling point? Users can trade “shares” in Twitter accounts. Shareholders get VIP access to private chat rooms, making it a hit among the crypto community. And with some big names signing up recently, the platform’s popularity has skyrocketed. To give you an idea, it raked in protocol fees exceeding $1.42 million in just 24 hours! That places it among the top three crypto projects regarding user-paid costs.
So, what’s the takeaway from all this drama? It’s a stark reminder that in the digital age, security is paramount. Whether you’re a casual user or a crypto mogul, always be vigilant about where and how you share your data. Because, as this story shows, you never know when a leak might turn into a flood.
