Riyaz Faizullabhoy (@riyazdf) / X

Riyaz Faizullabhoy

393 posts

Riyaz Faizullabhoy

@riyazdf

building something new // prev co-founder @bastion, cto @a16z crypto, sec infra @facebook, founding engineer @anchorage, & sec @docker // work hard, be kind

Joined December 2012

Riyaz Faizullabhoy
@riyazdf
Jun 7, 2022
In web3: security is not only of utmost importance, but also cannot be over-simplified to a checkbox for audit. To help, @ajbeal, @nassyweazy, @cseifert, and I put together the following guide for thinking about smart contract security at every step 🧵
Smart Contract Security Checklist for Web3 Development - a16z crypto
From a16zcrypto.com
Riyaz Faizullabhoy
@riyazdf
Oct 11, 2021
I could not be more excited to announce that I'm joining @a16z Crypto as CTO along with my close colleague and friend @nassyweazy (CISO)! Can't wait to get started with this amazing team.
Anthony Albanese
@AAlbaneseNY
Oct 11, 2021
As web3 expands, even the most crypto-native projects will have a hard time keeping up with the latest security best practices. We’ll help with that. I’m thrilled to announce @riyazdf and @nassyweazy have joined @a16z Crypto as our new CTO and CISO! a16z.com/2021/10/11/nas…
Riyaz Faizullabhoy
@riyazdf
Apr 23, 2022
when thinking about security threats, it’s important to identify classes of attacks to address and defend against them in a systematic way. @mg_486662 and I survey web3 attack types here:
a16z.com
Web3 Security: Attack Types and Lessons Learned | Andreessen Horowitz
A good deal of web3 security rests on blockchains’ special ability to make commitments and to be resilient to human intervention. But the related feature of finality – where transactions are genera...
Riyaz Faizullabhoy
@riyazdf
Sep 18, 2023
Today, we welcome @bastion to the world. We believe companies building in web3 need more than just a wallet to deliver the best products for their users. So @nassyweazy and I have been hard at work with the Bastion team to build that holistic platform. 🧵 (1/7)
14K
Riyaz Faizullabhoy
@riyazdf
Jun 2, 2017
we published the results of a security audit of @Docker for AWS/Azure! More on the secure infra they provide here: blog.docker.com/2017/06/docker…
Riyaz Faizullabhoy
@riyazdf
Oct 18, 2017
docker trust released with 17.10 edge today! Give it a spin: docs.docker.com/edge/engine/re…
Nathan McCauley ⚓
@nathanmccauley
Oct 18, 2017
Replying to @nathanmccauley @riyazdf and @_ashfall_
'docker trust view' allows you to see what teams, engineers, or systems signed the image x.com/sbucloud/statu…
Riyaz Faizullabhoy
@riyazdf
Sep 19, 2023
I echo what Nass says here. Thank you again to our friends and colleagues for your support yesterday - it means the world to us. I am so proud to say that we are finally live! We can't wait to show you what @bastion can do 💪
Nass Eddequiouaq
@nassyweazy
Sep 19, 2023
We are blown away by yesterday's response to our announcement. Thank you again for all of your support and warm reception of @bastion. For a recap of all yesterday's announcement and our $25M fundraise👇
2.5K
Riyaz Faizullabhoy
@riyazdf
Aug 7, 2023
Onchain security incident? Batphone the experts like @samczsun @mg_486662 (and more: gist.github.com/samczsun/366b8…) with t.me/seal_911_bot
SEAL 911 Members
From gist.github.com
6.9K
Riyaz Faizullabhoy
@riyazdf
May 14, 2022
a reminder that security threats in web3 systems can span widely across infra, opsec, etc — strong security in web3 requires comprehensive threat modeling, defense mechanisms, and incident response beyond solely securing smart contracts
SilverSwap
@SilverSwapDex
May 13, 2022
1/ Update: Initially we thought the issue may have been with AWS, however after further diagnosis, we have identified that the hacker has managed to exploit Godaddy, essentially they have hijacked our domain and copied our codebase and in the process changed the swap parameters
Riyaz Faizullabhoy
@riyazdf
Sep 22, 2023
We’re laser focused at @bastion to enable the next generation of web3 interactions for businesses, that feel like web2. If you’re excited by our mission and ready to build secure and robust infrastructure, we are hiring
TechCrunch
@TechCrunch
Sep 21, 2023
Former a16z execs launch Bastion tcrn.ch/461p7sb by @ChristineMHall
bastion.com
Bastion
The full stack, trusted stablecoin solution to securely issue, custody, move, and convert digital assets, under our licenses or your own.
2.9K
Riyaz Faizullabhoy
@riyazdf
Nov 30, 2023
Excited to have @CFriedman00 take on the COO role at @bastion! Her leadership has been instrumental to our success so far and I'm confident she will continue to excel in her expanded role as we empower more businesses to unlock web3 use cases.
739
Riyaz Faizullabhoy
@riyazdf
Oct 3, 2016
Secure your updates! Lily Guo and I are going to prove to you need TUF security! Come to our talk at #LinuxCon and #ContainerCon!
Riyaz Faizullabhoy
@riyazdf
Oct 31, 2023
Today at Bastion, we're proud to announce the acquisition of Money Transmitter Licenses in New Hampshire and Arkansas. We're committed to providing enterprise-grade web3 to our customers, and this marks a critical step on that mission, just one month after launch. /1
2.1K
Riyaz Faizullabhoy
@riyazdf
Oct 14, 2022
Non-custodial != full control of keys. @nassyweazy and I break down the not so obvious trust assumptions, tradeoffs, and best practices for wallet security: a16zcrypto.com/wallet-securit…