FEATURED PODCAST

October 13, 2025

Validator sniping: How to harvest IP addresses to redirect MEV | Sebastian Bürgel (Gnosis)

This week, the VP of Technology at Gnosis, Sebastian Burgel, joins Jack Sanford to discuss network-layer security gaps, the early days of building on Ethereum, and more.

Sebastian Bürgel's modified Lighthouse client harvests beacon chain attestations to map validator pubkeys to IP addresses, enabling targeted DDoS attacks during known block production slots to redirect MEV rewards.

This consensus-layer attack vector bypasses all smart contract security controls while directly threatening validator economics.

We spoke with Sebastian, VP of Technology at Gnosis and founder of HOPR, about his attestation harvesting methodology using modified beacon nodes that collect signatures and correlate them with originating IP addresses. Most validators broadcast attestations directly from their staking infrastructure, creating this mapping opportunity.

His research demonstrates how home validators without failover infrastructure become prime targets for economically-motivated DDoS attacks that current security frameworks ignore completely.

Next Podcasts

More Web3 Security Insights

October 13, 2025

Safe's $60B security stack: Formal verification, audits, and $1M bounties | Richard Meissner

This week Richard Meissner, the Co-Founder of Safe joins Jack Sanford to discuss securing $60B in TVL, the future of Ethereum and more.

September 17, 2025

Securing $23 billion in restaked assets with Anto Joseph, Principal Security Engineer at Eigen Labs

Eigen Labs secures $23 billion in restaked assets with Anto Joseph, Principal Security Engineer.

September 11, 2025

How to secure $70 billion in DeFi: Aave's approach to Web3 security w/ Ernesto Boado

Ernesto Boado explains how Aave protected $70 billion in DeFi with a strategic security focus, upgrades, DAO coordination, and flawless documentation—showing the real wins and challenges of scaling and innovating in Web3 without losing resilience.

September 11, 2025

Step Multisig Process Protecting Billions | Chris von Hessert

Polygon protects billions through a rigorous 13-step multisig process. In this episode, Chris von Hessert breaks down the real challenges, ethical dilemmas, and strategic truths of Web3 security. Essential for anyone serious about moving beyond crypto hype.

September 11, 2025

Security Lessons from the oldest bug bounty program w/ Fredrik Svantes (Ethereum Foundation) Sherlock Podcast

Fredrik Svantes runs Ethereum's $2 million audit competitions and the world's oldest blockchain bug bounty program—here's how he filters AI spam from real vulnerabilities and secures trillion-dollar infrastructure. From World of Warcraft gold farming detection to protocol-level security at Ethereum Foundation, Fredrik reveals the systematic approaches that actually work at scale.