chaindrainMVP
Preview surface — demo data. Where real data exists today (e.g. RealT, BlackRock BUIDL, Lift Dollar) we render it; everywhere else we render synthetic enrichment generated deterministically from public signal and clearly marked Demo or Inferred. The Phase 3 roadmap replaces every synthetic source with live ingestion — see Methodology → Exposure Graph & Similarity Engine.

Three Sigma

Security, Audit & Insurance Vendorsmedium·risk 0.4300·TVL ·blast $0·active
websitegithubtwitterdiscord
Static profile (Identity / Contract / Dependency / Governance / Reputation)

Identity

Sector
Security, Audit & Insurance Vendors
Subsector tags
infra_tooling, general_defiDemo
Chain deployments
Website
https://www.three-sigma.xyzDemo
Launch date
Immutable
noDemo
Permissionless
noDemo

Contract

Primary address
Proxy pattern
n/a
Upgrade authority
n/a
Multisig threshold
Compiler
0.8.20
Uses assembly
noDemo
Bug bounty
noneDemo
Contract addresses
0x2eea1fc4dd669bcc853c0e3fa35e0eafec48f1b8, 0x61a91f03942bf8f16ba148310d360f2194e84abd, 0xde776d8c61b0bea0e031d662b7a7d22f87e5b765Demo
Audits tier
2

Dependency

Oracle providers
Bridge dependencies
Stablecoin dependencies
LST / LRT deps
Demo
DEX liquidity venues
velodrome, uniswap_v4, pancakeswapDemo
CEX listings
Demo
Custodian
Demo
KMS provider
aws_kmsDemo
RPC provider
quicknodeDemo
Frontend host
vercelDemo
npm lockfile sha
sha256:eb7a2db8cc45ab02a5e14806b3a77967606ad5032d05f23b7b13fb03c0f353c0Demo

Governance

Governance type
noneDemo
Governance token
Demo
Treasury size
$0Demo
Team size
97Demo
Jurisdiction
BVIDemo
Incorporated entity
Three Sigma Labs Ltd.Demo
Anonymous team
yesDemo
Security disclosure
yesDemo
IR SLA (hours)
24Demo

Reputation

GitHub
https://github.com/three-sigma/three-sigmaDemo
Commit velocity (30d)
8Demo
Contributors
28Demo
Twitter
@three-sigmaDemo
Discord
https://discord.gg/fqgnz6Demo
Last incident
May 17, 2025Demo
KYT screening
cleanDemo

Threat History

2 recorded incidents
oracle manipulationprotocolunattributed_criminalDemo
$8M

On 2025-05-17, Three Sigma suffered a oracle manipulation incident resulting in approximately $7,986,539 in losses. The exploit targeted the protocol layer. Attribution: unattributed_criminal. This is a demonstration entry — not a real incident.

DEMO:AADAPT.TA0040DEMO:AADAPT.TA0007
View incident →
frontend dns hijackfrontendunknownDemo
$2.7M

On 2024-06-24, Three Sigma suffered a frontend dns hijack incident resulting in approximately $2,700,587 in losses. The exploit targeted the frontend layer. Attribution: unknown. This is a demonstration entry — not a real incident.

DEMO:AADAPT.TA0001DEMO:AADAPT.TA0008
View incident →

Peer Incidents · Method B

8 root-cause predicate matches

Vulnerable to: rug pull hard

Matches the rug pull hard predicate

22 historical peer events
  • SushiSwapDemo
    $25.6M
  • AlliumDemo
    $110.6K
  • HTX (Huobi)Demo
    $23M
  • Aptos FoundationDemo
    $1.2M
  • EtherscanDemo
    $633.1K
  • + 17 more

Vulnerable to: phishing drainer

Matches the phishing drainer predicate

18 historical peer events
  • GoldfinchDemo
    $1M
  • BitgetDemo
    $739.9K
  • OrcaDemo
    $180.8K
  • Ether.fiDemo
    $443.4K
  • Alchemy PayDemo
    $334.2K
  • + 13 more

Vulnerable to: rug pull soft

Matches the rug pull soft predicate

14 historical peer events
  • Euler FinanceDemo
    $3.2M
  • KlimaDAODemo
    $100.8K
  • Governed protocol (monetary policy–driven)Demo
    $174K
  • R3 (Ethereum interop only)Demo
    $79.1K
  • ViaBTCDemo
    $805.5K
  • + 9 more

Vulnerable to: frontend dns hijack

Matches the frontend dns hijack predicate

11 historical peer events
  • Bridge.xyz / StripeDemo
    $10.4M
  • UK FCA Digital SandboxDemo
    $3.6M
  • CryptoQuantDemo
    $517.3K
  • Celsius (defunct)Demo
    $22M
  • KyberSwapDemo
    $5M
  • + 6 more

Vulnerable to: supply chain npm

Matches the supply chain npm predicate

10 historical peer events
  • Beefy FinanceDemo
    $176.2K
  • PowerledgerDemo
    $7.4M
  • UnichainDemo
    $8.8M
  • MEXCDemo
    $1M
  • Mango MarketsDemo
    $915.6K
  • + 5 more

Vulnerable to: kms misconfiguration

Matches the kms misconfiguration predicate

9 historical peer events
  • Stably, Inc. (issuance via regulated partners depending on program)Demo
    $505K
  • MatrixdockDemo
    $4.3M
  • EulerDemo
    $3.6M
  • NosanaDemo
    $1.7M
  • Tron FoundationDemo
    $1.3M
  • + 4 more

Vulnerable to: dvn collapse

Matches the dvn collapse predicate

8 historical peer events
  • Blast, Blockdaemon Wallet +2Demo
    $93.6M
  • Fordefi, XSGDDemo
    $17M
  • Element Finance, QuantozDemo
    $1.1M
  • Mercado Bitcoin, SwellDemo
    $15.3M
  • Internet Computer (DFINITY), Mantle +1Demo
    $10.3M
  • + 3 more

Vulnerable to: regulatory seizure

Matches the regulatory seizure predicate

6 historical peer events
  • RaydiumDemo
    $1.9M
  • CoinDCXDemo
    $29.8M
  • Silo FinanceDemo
    $14M
  • Base BridgeDemo
    $8.3M
  • EigenDADemo
    $101M
  • + 1 more

Dependency Twins · Method A + B + C ensemble

Top 10 of 25 precomputed
#1

Aptos Foundation

L1 & L2 Network Operators · medium
Ensemble
0.472
A · Jaccard0.03
B · Overlap3
C · Cosine0.75
Matches on
  • subsector_tags = infra_tooling, general_defi
  • method_b_root_causes = rug_pull_hard, rug_pull_soft
#2

Project mBridge

Payment Rails, On/Off-Ramps & CBDCs · medium
Ensemble
0.461
A · Jaccard0.10
B · Overlap2
C · Cosine0.90
Matches on
  • kms_provider = aws_kms
  • subsector_tags = general_defi, infra_tooling
  • method_b_root_causes = rug_pull_hard, rug_pull_soft
#3

German Federal Government blockchain bond pilots

Payment Rails, On/Off-Ramps & CBDCs · medium
Ensemble
0.459
A · Jaccard0.08
B · Overlap2
C · Cosine0.92
Matches on
  • frontend_host = vercel
  • subsector_tags = general_defi, infra_tooling
  • method_b_root_causes = dvn_collapse, rug_pull_hard
#4

Ledger Live

Self-Custody Wallets & Key Management · medium
Ensemble
0.430
A · Jaccard0.07
B · Overlap2
C · Cosine0.83
Matches on
  • frontend_host = vercel
  • subsector_tags = infra_tooling, general_defi
  • method_b_root_causes = rug_pull_hard, rug_pull_soft
#5

Blast

Rollups, Data Availability & ZK Infra · critical
Ensemble
0.406
A · Jaccard0.14
B · Overlap1
C · Cosine0.95
Matches on
  • kms_provider = aws_kms
  • frontend_host = vercel
  • subsector_tags = infra_tooling, general_defi
  • method_b_root_causes = dvn_collapse
#6

Chorus One

Liquid Staking & Restaking · medium
Ensemble
0.400
A · Jaccard0.13
B · Overlap1
C · Cosine0.94
Matches on
  • kms_provider = aws_kms
  • frontend_host = vercel
  • subsector_tags = infra_tooling, general_defi
  • method_b_root_causes = phishing_drainer
#7

Tron Foundation

L1 & L2 Network Operators · medium
Ensemble
0.400
A · Jaccard0.13
B · Overlap1
C · Cosine0.94
Matches on
  • kms_provider = aws_kms
  • frontend_host = vercel
  • subsector_tags = infra_tooling, general_defi
  • method_b_root_causes = kms_misconfiguration
#8

Arcade

Lending, Money Markets & CDPs · medium
Ensemble
0.400
A · Jaccard0.13
B · Overlap1
C · Cosine0.94
Matches on
  • kms_provider = aws_kms
  • frontend_host = vercel
  • subsector_tags = infra_tooling, general_defi
  • method_b_root_causes = kms_misconfiguration
#9

Ethereum Calldata

Rollups, Data Availability & ZK Infra · medium
Ensemble
0.400
A · Jaccard0.13
B · Overlap1
C · Cosine0.94
Matches on
  • kms_provider = aws_kms
  • frontend_host = vercel
  • subsector_tags = infra_tooling, general_defi
  • method_b_root_causes = supply_chain_npm
#10

Kelp DAO

Liquid Staking & Restaking · high
Ensemble
0.387
A · Jaccard0.08
B · Overlap2
C · Cosine0.68
Matches on
  • frontend_host = vercel
  • subsector_tags = general_defi, infra_tooling
  • method_b_root_causes = rug_pull_hard