Audit log

Every state-changing event for MonoSwap: moderation decisions on community submissions, plus corrections and updates from the news pipeline. URL-based decisions carry three independent witnesses — the original source, an Internet Archive snapshot taken at submission time, and a Solana memo signed by our publicly-disclosed publisher key.

1. #1publishby system:backfill

   2026-05-28 03:34:38Z
   Score: ? → ? (no score change)
   anchoranchored

   chain

   ●mainnet-betaslot 422,639,350

   sig

   2ngrSRwe6Ssh…b2i4naZDcopyexplorer ↗

   hash

   Ei98RMyTWmdV…ovHoagW9copysha256 → base58

   verifying row…full verify ↗

   canonical bytes (4939 B) ▸

   {"actor":"system:backfill","investigation_id":"f603d502-d5a7-4a5b-92ae-04468b387928","kind":"publish","page_slug":"monoswap","published_at":"2026-05-28T03:34:38.712Z","sequence_num":1,"snapshot":{"content_type":"investigation","entity_name":"MonoSwap","sections":[{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://www.web3isgoinggreat.com/?id=monoswap-hack","type":"other","url":""},{"credibility":3,"name":"https://www.halborn.com/blog/post/explained-the-monoswap-hack-july-2024","type":"other","url":""},{"credibility":3,"name":"https://cointelegraph.com/news/breaking-monoswap-hacked-warning-issued-stay-away","type":"other","url":""},{"credibility":3,"name":"https://cryptobriefing.com/monoswap-hack-staked-liquidity-stolen/","type":"other","url":""},{"credibility":3,"name":"https://crypto.news/monoswap-suffers-hack-urges-users-to-withdraw-funds/","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://slowmist.medium.com/cunning-phishing-in-the-dark-forest-493221c34687","type":"other","url":""},{"credibility":3,"name":"https://www.binance.com/en/square/post/2024-07-25-monoswap-hack-involves-fake-kakao-video-software-11257487109529","type":"other","url":""},{"credibility":3,"name":"https://www.halborn.com/blog/post/explained-the-monoswap-hack-july-2024","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://www.web3isgoinggreat.com/?id=monoswap-hack","type":"other","url":""},{"credibility":3,"name":"https://cryptodaily.co.uk/2024/07/monoswap-urges-users-to-withdraw-funds-after-major-hack","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://docs.monoswap.io/about/overview","type":"other","url":""},{"credibility":3,"name":"https://www.rootdata.com/Projects/detail/MonoSwap?k=MTEzMzM%3D","type":"other","url":""},{"credibility":3,"name":"https://theblock101.com/what-is-monoswap-amm-dex-is-built-on-the-blast-ecosystem","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://defillama.com/protocol/monoswap-v3","type":"other","url":""},{"credibility":3,"name":"https://defillama.com/protocol/monoswap","type":"other","url":""},{"credibility":3,"name":"https://www.cryptotimes.io/2024/07/25/monoswap-hack-users-advised-to-stop-staking-and-withdraw-funds/","type":"other","url":""},{"credibility":3,"name":"https://www.web3isgoinggreat.com/?id=monoswap-hack","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://www.halborn.com/blog/post/explained-the-monoswap-hack-july-2024","type":"other","url":""},{"credibility":3,"name":"https://slowmist.medium.com/cunning-phishing-in-the-dark-forest-493221c34687","type":"other","url":""},{"credibility":3,"name":"https://blog.ueex.com/crypto-hacks/monoswap-hack/","type":"other","url":""}]}],"sources_used":[],"summary":"MonoSwap is a decentralized exchange (DEX) and launchpad built on the Blast L2 network that launched in late February 2024. On July 24, 2024, the protocol was compromised via a social engineering attack in which a developer was tricked into installing infostealer malware disguised as a video conferencing app, allowing attackers to drain approximately $1.3 million in staked liquidity. The stolen funds were subsequently laundered through Tornado Cash, and the protocol has remained largely inactive with negligible TVL since the incident.","timeline":[{"date":"2024-02-01","event":"MonoSwap launches on Blast L2 mainnet coinciding with Blast's mainnet launch","source":""},{"date":"2024-04-01","event":"MonoSwap TVL peaks at approximately $2.8 million","source":""},{"date":"2024-07-23","event":"MonoSwap developer installs counterfeit Kakao video conferencing application (kakaocall[.]kr) during a call with individuals posing as venture capitalists; infostealer malware extracts private keys","source":""},{"date":"2024-07-24","event":"MonoSwap publicly discloses the hack via X (Twitter), advising users not to deposit funds or stake and to withdraw immediately; attackers drain most staked liquidity positions","source":""},{"date":"2024-07-25","event":"SlowMist publishes analysis of kakaocall[.]kr phishing infrastructure; links it to broader coordinated social engineering campaign; same phishing domain found in compromised @OurTinTinLand tweet","source":""},{"date":"2024-07-25","event":"Multiple security outlets confirm approximately $1.3 million in losses laundered through Tornado Cash","source":""},{"date":"2024-07-25","event":"MonoSwap states it is investigating and 'planning refund options'","source":""},{"date":"2026-05-01","event":"MonoSwap V3 TVL remains at approximately $95,000; no evidence of refund program or recovery; protocol effectively dormant","source":""}]},"v":1}

   Verify offline (run on your own machine)

   python -m src.verify_decision 61816946-f419-4402-888c-213347c07a11copy