Web2 is the Soft Underbelly of Web3

Web3 Security has a Web2 Security problem. As on-chain code gets better and better, attackers are going to go after the low-hanging fruit--and that means all the boring "legacy cybersecurity stuff" your grandpa used to tell you about. (See: the ByBit hack in Feb 2025, classic web2 compromise with web3 impact).

"Back in mah day, we cared about phishing and end point device security. Oh, and young whippersnapper, and did you know 'the cloud' just means 'someone's else's computer'? Sure seems like a terrible idea to run all yer validators in (checks notes) AWS, doncha think? Using CIA's preferred cloud vendor--that'll stick it to the man fer sure LOL!"

"and betcha never heard of this here dang thing called a SIEM before either, have yeah?"

I once met a security engineer at a conference who described themselves as a "web3 native security engineer". Couldn't explain TCP/IP, how Linux works, how a browser works, couldn't tell me the OSI model, but boy did they know a lot about Solidity security!

Yeah. Don't be that guy. Cuz you're going to get rekt if you do.

Come to grandpa's[*] curmudgeonly fireside chat to hear about all the old stuff that still matters today.

[*] not an actual grandpa. yet.