SlowMist

We're looking for a Senior Devops Engineer： This role is based in HK. Responsibilities:  Support multi-region environments & provide support to worldwide-based teams Build and maintain tools for automation, deployment, monitoring, and operations Everything as a code approach: Run our infrastructure with Github, Ansible, and Kubernetes Solve diverse complex problems of high scale Troubleshoot and resolve issues in our various environments Conduct periodic on-call duties and emergency response Requirements: 5 experience in infrastructure/engineering and at least 3 years of experience in DevOps role Proficiency in Linux system administration Strong knowledge of configuration management such as Ansible/bash (or similar) Knowledge of PostgreSQL (or similar) administration Solid experience with GitOps process and CI/CD tools such as Github Actions, ArgoCD or similar Ability to utilize monitoring tools like Prometheus/Grafana/DataDog Strong experience in working on various cloud providers and VM Crypto and blockchain experience is a plus Good command of conversational spoken and written English Other requirements: Strong written and verbal communication skills Proven ability to take ownership of projects and drive them to completion Experience working in agile, international environments Startup and crypto friendly Benefits: Competitive compensation packages Performance bonus Equity for outstanding teammates Comprehensive insurance coverage (medical, dental, family, life) Regular body check-ups, well being and productivity allowance Company Overview: SlowMist Limited is a blockchain security firm. Our goal is to make the blockchain ecosystem as secure as possible for everyone. By delivering a comprehensive security solution customized to individual projects, we can identify risks and prevent them from occurring. SlowMist offers a variety of services that include but are not limited to security audits, threat information, defense deployment, security consultants, and other security-related services. We also offer AML (Anti-money laundering) software, MistEye (Security Monitoring) , SlowMist Hacked (Crypto hack archives), FireWall.x (Smart contract firewall) , Safe Staking and other SaaS products. 

We're looking for a Chief Technology Officer (CTO) This role is based in HK. Responsibilities: Develop and implement the overall technology strategy in alignment with SlowMist's business goals. Lead the exploration of new technologies and innovations in blockchain and security. Oversee the design, architecture, and development of SlowMist’s security solutions, including MistEye, FireWall.x, SlowMist Hacked, and other SaaS products. Work closely with external partners, including blockchain platforms, exchanges, and technology providers, to integrate third-party solutions and maintain robust, scalable platforms. Define and manage the technical roadmap, prioritizing initiatives that align with SlowMist's business objectives and growth plans. Serve as the primary technical advisor to the executive team and board of directors. Communicate technical concepts and strategies to non-technical stakeholders effectively. Oversee the technology budget, ensuring that resources are allocated efficiently and projects are completed within budget. Requirement:  Deep understanding of blockchain technology, smart contracts, tokenomics, and cybersecurity practices. Experience with platforms like Ethereum, Binance Smart Chain, Solana, and Layer 2 solutions is essential. Proven experience in a senior technical leadership role, ideally as a CTO or VP of Engineering, with a track record of leading successful technology projects in blockchain, security, or fintech. Hands-on experience with full-stack development, particularly in languages like Solidity, Rust, Python, JavaScript, and Go. Familiarity with Web3.js, Node.js, and cloud platforms like AWS or Azure. Bachelor’s or Master’s degree in Computer Science, Engineering, or a related field. Advanced certifications in blockchain or cybersecurity are a plus. Strong knowledge of cybersecurity best practices and regulatory requirements related to blockchain technology. Contributions to open-source blockchain projects. Good command of conversational spoken and written English Benefits: Competitive salary and equity package. Performance bonus Equity for outstanding teammates Comprehensive insurance coverage (medical, dental, family, life) Regular body check-ups, well being and productivity allowance Company Overview: SlowMist Limited is a blockchain security firm. Our goal is to make the blockchain ecosystem as secure as possible for everyone. By delivering a comprehensive security solution customized to individual projects, we can identify risks and prevent them from occurring. SlowMist offers a variety of services that include but are not limited to security audits, threat information, defense deployment, security consultants, and other security-related services. We also offer AML (Anti-money laundering) software, MistEye (Security Monitoring) , SlowMist Hacked (Crypto hack archives), FireWall.x (Smart contract firewall) , Safe Staking and other SaaS products. 

We're looking for an Administration Officer: This role is based in HK. Responsibilities: Handle daily administration duties such as data input and information verification, generate daily reports, etc. Handle all the office cleaning and disinfection matters when it's needed  Perform basic clerical tasks and projects assigned from time to time. Verify bills and arrange payment requisitions for all tele-communication services and mobile services plans Log and distribute in-coming documents; file and keep record the document flow. Requirement:  Diploma for above relevant discipline in Business Administration 1-3 working experience in office admin, workplace admin or office assistant Good command of both writing and speaking skills in English & Chinese  Multi-tasking, problem-solving, time management and strong interpersonal skills Short notice or Immediate is a bonus Benefits: Competitive salary and equity package. Performance bonus Equity for outstanding teammates Comprehensive insurance coverage (medical, dental, family, life) Regular body check-ups, well being and productivity allowance Company Overview: SlowMist Limited is a blockchain security firm. Our goal is to make the blockchain ecosystem as secure as possible for everyone. By delivering a comprehensive security solution customized to individual projects, we can identify risks and prevent them from occurring. SlowMist offers a variety of services that include but are not limited to security audits, threat information, defense deployment, security consultants, and other security-related services. We also offer AML (Anti-money laundering) software, MistEye (Security Monitoring) , SlowMist Hacked (Crypto hack archives), FireWall.x (Smart contract firewall) , Safe Staking and other SaaS products. 

🚨 Web3 Security Guide: Understanding and Avoiding Honeypot Scams 🚨 The world of #Web3 and #crypto presents incredible opportunities, but with it comes the risk of falling into traps like honeypot scams. These deceptive schemes lure users in with the promise of rising token prices, only to block them from selling or withdrawing their funds once they've invested. 🪤 In our latest article, we break down: - What honeypot scams are 🧐 - Common tactics used by scammers to trap investors 🎣 - Real-world examples of victims’ experiences 👥 - Practical tips on how to stay safe and protect your assets in the crypto space 🔐 🔑 Key Takeaways: - Always verify the token’s contract address, not just its name. - Use security tools like MistTrack and GoPlus to assess risks before investing. - Check for verified audits on platforms like Etherscan or BscScan. As Web3 continues to evolve, staying informed and vigilant is crucial to avoiding these types of scams. Don't let FOMO lead you into a trap—ALWAYS DYOR 💡 👉 Dive deeper into how honeypot scams operate and how you can avoid them here: https://lnkd.in/ewZP9mPv As always, stay vigilant!

As the world continues to digitize, international cooperation is becoming essential in the fight against cryptocurrency crime. Cryptocurrencies offer decentralization, anonymity, and fast, cross-border transactions—but these features also make them a prime tool for illicit activities like money laundering, fraud, and ransomware. According to SlowMist Hacked archives, over $33 billion in losses have been attributed to blockchain-related crimes since 2012. The solution? Global collaboration. Recent successes, such as the joint efforts between China and Thailand to extradite a major pyramid scheme suspect and the shutdown of the notorious DarkMarket, demonstrate the power of cross-border law enforcement action. But it doesn’t stop there. Blockchain technology itself plays a key role. Real-time analytics, machine learning, and advanced tracking tools enable law enforcement to follow the money, identify illicit transactions, and stop criminals in their tracks. At SlowMist, we’re proud to support global law enforcement with our AML tools, MistTrack. This year alone, we've helped recover millions in stolen assets and contributing to a safer blockchain ecosystem for all. Want to learn more about how international cooperation is shaping the future of crypto security? 📖👇 https://lnkd.in/eACw_dVQ

Protecting Your X Accounts from Phishing Attacks In recent times, we have observed a surge in incidents where Web3 project owners and celebrities have had their X accounts compromised, leading to phishing tweets being disseminated. These breaches are often orchestrated through sophisticated hacking techniques, such as: 1. Fake Calendly/Kakao Meeting Links: Hackers trick users into clicking on fraudulent links, thereby gaining account authorization or even controlling their devices. 2. Trojan-Infected Programs: Direct messages lure users into downloading malicious software disguised as legitimate applications (e.g., games, meeting apps), which can then steal private keys, mnemonics, and X account permissions. 3. SIM Swap Attacks: Cybercriminals use SIM swapping to hijack X accounts that rely on phone number verification. The SlowMist Security Team has been instrumental in resolving several such incidents. A notable example occurred on July 20, when the X account of the TinTinLand project was hacked. The attacker pinned a phishing tweet, but thanks to the swift intervention of the SlowMist Security Team, TinTinLand successfully regained control, reviewed authorizations, and implemented enhanced security measures for their X account. Read the full article to learn more about these threats and discover effective strategies to safeguard your account. https://lnkd.in/eQavH9ir #Web3 #CyberSecurity #SlowMist #PhishingProtection #BlockchainSecurity #SIMSwap #CyberThreats #StaySafe #CryptoSecurity

Security Alert for the TON Ecosystem 🚨 As the TON ecosystem expands, so do the threats from Web3 phishing groups. Our latest findings reveal that the TonConnect SDK, which facilitates cross-platform wallet interactions, faces challenges in domain verification—a critical step to prevent fraudulent signature requests. This vulnerability could potentially allow attackers to impersonate trusted DApps, posing significant risks to users. In our analysis, we've seen similar issues in other platforms like MetaMask and WalletConnect. Unfortunately, this problem is complex and has not yet been fully resolved across the board. To safeguard your assets, we strongly recommend that users consistently verify the domains when connecting their wallets to DApps. Being vigilant can help prevent fraudulent activities and ensure the security of your digital interactions. Full analysis and recommendations are available below. https://lnkd.in/eE7qyVJR #Web3 #TON #BlockchainSecurity #PhishingAlert #TonConnectSDK #SlowMist

🌟 Slowmist Cybersecurity Award 2023-24 🌟 We are thrilled to announce that Ms. Cheung Yung Yung Mandy, a distinguished student at the MSc in Finance (FinTech and Financial Analytics) program at the Hong Kong Baptist University, has been honored with the prestigious SlowMist Cybersecurity Award for the academic year 2023-24. 🏆 This award is a testament to Mandy’s outstanding performance in FIN7900 Cybersecurity, Privacy, and Regtech for Finance. Her work has not only set a benchmark for academic excellence but also underscores the critical importance of secure financial technologies in today’s digital era. We look forward to her continued success and the innovative strides she will undoubtedly make in the world of finance and technology. #Cybersecurity #FinTech #SlowMistAward https://lnkd.in/eqyzUCSP

Recently, we published a comprehensive checklist and targeted guidelines for auditing Account Abstraction wallets. Today, we are pleased to extend our expertise by providing additional guidelines for auditing public blockchains. https://lnkd.in/egs4DVMP Explore our latest insights on cryptocurrency threat modeling and security enhancement. We leverage established models such as CIA Triad, STRIDE, DREAD, and PASTA to meticulously identify threats and fortify security measures. Our robust testing methodologies—black-box, gray-box, and white-box—ensure thorough analysis and protection from all perspectives.

Just wanted to thank everyone for their support during the hashtag #Web3 Festival in Hong Kong. We couldn't have done it without you! 😊