_hrkrshnn
0 Suivis
1 Abonnés
1 J’aime
0 Partagé(s)
Publications
Anyone who uses Claude code / OpenAI Codex / Google Jules extensively for Solidity or smart contract work?
I'd love to have a chat.
I'd love to have a chat.
Record temperatures in NYC this week.
Record temperatures in Cannes next week.
God hates crypto people.
Record temperatures in Cannes next week.
God hates crypto people.
Insider threats are on the rise across organizations, both within and outside the crypto industry.
Time to think hard on who you are hiring, where they are based, and tighten up access controls.
Time to think hard on who you are hiring, where they are based, and tighten up access controls.
We talk to a lot of founders, and the truly successful ones are often non-consensus and have ideas that are met with criticism here on crypto Twitter.
Every time you hear a lot of (unsuccessful) people here piling on someone. It's a sign that the opposite is true.
Every time you hear a lot of (unsuccessful) people here piling on someone. It's a sign that the opposite is true.
The next two years will accelerate crypto far beyond what has been done in the last 15 years.
What's happening right now is unreal. Get in or be left out forever.
What's happening right now is unreal. Get in or be left out forever.
Crypto doesn’t have a villain to rally against anymore.
So people keep trying to turn legitimate actors into villains instead.
So people keep trying to turn legitimate actors into villains instead.
Crypto has a data problem. So many places with the wrong data.
Funny how the most successful businesses in both crypto and AI are the same: token factories.
Humans yearn for the tokens.
Humans yearn for the tokens.
“Browser Pay” should exist. Why doesn’t it?
Imagine a standardized browser popup that handles payments: one click to approve a credit‑card or stablecoin transaction.
Instead, the best option we have is a credit card autofill.
Imagine a standardized browser popup that handles payments: one click to approve a credit‑card or stablecoin transaction.
Instead, the best option we have is a credit card autofill.
Anecdotally, blackhats start seriously paying attention once your project crosses $100M in TVL (or an equivalent metric).
This is especially true for non-EVM chains. Ethereum has painfully endured many hacks, so its security posture has matured over time. But non-EVM ecosystems often have a false sense of safety simply because they haven’t yet crossed that critical threshold.
It’s fine to move fast and break things early. But once you hit $25M in value at risk, it's time to get paranoid. At $100M, blackhats are guaranteed to be watching.
You’ll also attract extra Blackhat attention:
1. At launch, when folks hunt for low-hanging bugs (these stories rarely go public).
2. During integrations: devs poke around, and it only takes one bad actor to trigger an exploit.
If I could offer one piece of advice: rethink your security posture around the $25M mark, especially if you moved fast or were lax early on (totally normal for startups and nothing to be ashamed of).
This is especially true for non-EVM chains. Ethereum has painfully endured many hacks, so its security posture has matured over time. But non-EVM ecosystems often have a false sense of safety simply because they haven’t yet crossed that critical threshold.
It’s fine to move fast and break things early. But once you hit $25M in value at risk, it's time to get paranoid. At $100M, blackhats are guaranteed to be watching.
You’ll also attract extra Blackhat attention:
1. At launch, when folks hunt for low-hanging bugs (these stories rarely go public).
2. During integrations: devs poke around, and it only takes one bad actor to trigger an exploit.
If I could offer one piece of advice: rethink your security posture around the $25M mark, especially if you moved fast or were lax early on (totally normal for startups and nothing to be ashamed of).
I know a really cracked engineer who is looking for a co-founder. He's the real deal and can single-handedly ship a billion-dollar protocol.
An ideal person is business-savvy and customer-focused.
DM me if you want me to put you in touch.
An ideal person is business-savvy and customer-focused.
DM me if you want me to put you in touch.
userbeat dot com
Every chain competes for who has the most users.
The only way to save crypto.
Every chain competes for who has the most users.
The only way to save crypto.
Crypto payments today are not business-friendly, even stablecoin payments.
Today, the pitch for stablecoin is a global, uniform interface with cheap fees. But it's absolutely a mess for tracking. Try talking to a finance person who has to deal with it.
Today, the pitch for stablecoin is a global, uniform interface with cheap fees. But it's absolutely a mess for tracking. Try talking to a finance person who has to deal with it.
Lots of bad takes on KYC on here today.
Nobody wants to force KYC on their users, but you have to do it to stay compliant. Seriously, who in their right mind wants to build an onboarding flow where you ask your user to pull up an ID and verify the face? The churn on that step is massive.
I once talked with a lawyer about the risks, and how they enforce it is scary, even if you had no intent to transact with a sanctioned individual.
Unless the policymakers change this, if you want to run a legitimate business, you must comply, even at the expense of additional customer friction or security concerns about data.
Many products today perform 'silent KYCs' to minimize onboarding dropoffs and trigger a full KYC as transaction values and risks increase (they know who you are with the limited data you give them, like phone numbers).
TLDR: you're barking at the wrong tree on KYC. The correct tree is the regulators.
Nobody wants to force KYC on their users, but you have to do it to stay compliant. Seriously, who in their right mind wants to build an onboarding flow where you ask your user to pull up an ID and verify the face? The churn on that step is massive.
I once talked with a lawyer about the risks, and how they enforce it is scary, even if you had no intent to transact with a sanctioned individual.
Unless the policymakers change this, if you want to run a legitimate business, you must comply, even at the expense of additional customer friction or security concerns about data.
Many products today perform 'silent KYCs' to minimize onboarding dropoffs and trigger a full KYC as transaction values and risks increase (they know who you are with the limited data you give them, like phone numbers).
TLDR: you're barking at the wrong tree on KYC. The correct tree is the regulators.
DM me if you're a founder who will be in Toronto for @consensus2025.
DM me if you're going to be in Toronto for @consensus2025.
My hot take is that most crypto projects launch a token way too early.
So many great teams build incredible products only to re-architect everything around a token. Most do not think about growth, distribution or scale.
So many great teams build incredible products only to re-architect everything around a token. Most do not think about growth, distribution or scale.
The next few weeks are looking like the most crucial time for crypto.
Who signed the first 7702 transaction?
Connectez-vous pour découvrir d’autres contenus