Loading...
Supporting developers, startups, and full-fledged companies building on Stellar and Soroban
© 2025 Stellar Development Foundation
Subscribe to the Newsletter
By CyVers
Cyvers is a ML & AI based security solution that proactively mitigates and prevents asset-loss related exploits in real-time.
The problem
In 2023 alone, $1.7B was lost due to smart contract exploits and access control violations. Alarmingly, more than 90% of the exploited contracts had been audited. This trend continues in 2024, with large-scale losses. In many cases, these exploits are happening even when organizations are leveraging 3rd party custodians and/or MPC or multi-sig wallets. In short, while security audits and traditional security measures are important, it is clear they must not be the only line of defense when it comes to on-chain asset security. The solution to these issues lives in real-time threat detection and response.
The solution
Cyvers is a proactive security platform that provides real-time detection and automated mitigation against exploits. The platform is built on top of proprietary machine learning and AI models to predict, alert, and mitigate asset loss-related risks with an accuracy of 95%. In practice, Cyvers consumes all activity broadcasted to the network in real-time through Cyvers' operated nodes and/or data providers. This allows our platform to monitor, classify, and risk score each interaction and to detect any malicious or illicit activity in real-time - in many cases, before. Our models have been trained on thousands of confirmed attacks across leading to our impressive detection rate and an industry-leading false positive rate. Within the platform, there are 3 products, all of which use the same underlying technology and provide value to different groups across the Stellar/Soroban network. Each tool can be accessed through API and UI and can be integrated during development or post-deployment.
VigiLens - Native cross-chain threat intelligence platform to identify security vulnerabilities across entire networks.
Product - Cross-chain threat intelligence platform designed to provide a robust, real-time data feed of all security-related malicious and illicit activity detected across Stellar and Soroban.
How - VigiLens consumes all on-chain activity in real-time and feeds this data through proprietary machine learning and AI models to provide predictive alerts to mitigate security vulnerabilities. Accessible via API or UI, users can filter for different threat criteria to ensure they’re only notified and actioning alerts that are relevant to them. In addition, you can create custom workflows and triggers to ensure that any required response is automated and initiated immediately and appropriately.
Audience - This tool has a very broad use case. The Stellar Foundation could leverage this data feed to better understand illicit network activity, exploit trends, and use it as a source of potential areas of improvement for future upgrades on both Stellar and Soroban. Traders, hedge funds, and lending protocols could leverage VigiLens as a data source to inform positions and risk exposure. Insurance companies can use it to de-risk clients building in or holding assets on Stellar/Soroban, affecting the availability and cost of insurance for ecosystem players. Given Stellar’s interest in use cases like CBDCs, cross-border payments, and tokenization of RWA, public sector agencies could use VigiLens to ensure financial compliance and public asset safety. These are a few of many other use cases.
Address Shield - Real-time security monitoring and incident response for wallet addresses and smart contracts.
Product - Customizable address-level monitoring and automated rules for response. Add addresses of interest through UI or API and protect against smart contract and application layer risks including but not limited to malicious contract deployment, smart contract exploits, oracle manipulation, MEV/Front-running attacks, phishing scams, private key and access control leakage exploits.
How - The implementation and “kill chain” regarding how the response mechanism would mitigate the risks is dependent on the use case. AddressShield can act as a first line of defense, alerting and triggering automated responses like contract pause functions, blocking transactions and triggering workflows. With VigiLens you can build bespoke responses for each threat type (17 in total) on individual addresses or create blanket rules. This can be implemented directly through the UI or API.
Audience - The tool integrates with both decentralized/non-custodial and centralized/custodial use cases. In DeFi, it can protect smart contracts against vulnerabilities and exploits. By detecting malicious contract deployments, alerting teams of manipulation attempts, and pausing contracts Cyvers is able to prevent and mitigate asset loss. In contrast, in CeFi it can detect and mitigate access control and private key leakage-related exploits. On other networks that VigiLens supports currently, we have lending protocols, DEXs, CEXs, insurance companies, regulators, analytics firms, hedge funds and layer 2’s using the system to protect themselves against these threats.
Reputation Risk Scoring Engine - Cross-chain address and smart contract risk exposure scoring.
Product - Reputation Risk Scoring provides a complete, cross-chain view of an address or contract’s exposure to security and sanctions-related risks. It automatically scans for exposure to scams, smart contract exploits, sanctions lists, illicit funding sources and more.
How - Leveraging the VigiLens data set and models, the Reputation Risk Scoring Engine scans the input address and calculates an overview risk score and includes a breakdown by risk type and exposure. Please see the attached deck for further context.
Audience - Any organization that is looking to ensure they are not facilitating or handling digital assets that may have exposure to illicit activity can use this tool. Many criminals are leveraging cross-chain swaps and bridges as a new way to launder and obfuscate funds and existing compliance tools are not proficient in tracing risk through these types of transactions. As such, regulated organizations that are using existing compliance tools for transaction monitoring may facilitate the trade or on/off ramp of these assets without knowledge that they carry exposure to illicit activity. Reputation Risk Scoring can be used by CEXs, DEXs, law enforcement, banks, regulators, on/off ramp providers, and more.
In short, Cyvers can provide the entire Stellar / Soroban ecosystem with value. From the Foundation itself, to builders and down to the individual users whose assets can be protected, Cyvers can be an additional pillar of security and trust in the Stellar ecosystem. Given the significant leadership role in developing the web3 ecosystem Stellar plays, we believe that Cyvers can help further demonstrate Stellar and Soroban’s commitment to user security and safety.
$50.0K
Assaf Buchner
David Lavid
No other submissions.