Renewing Brand Protection for Astar w/ChainPatrol

Governance Offchain Discussions
1

Renewal Proposal - December 2024

Brand Protection Services for Astar Network

Date: December 11th, 2024

1st Proposal (May 2024):

  • 135,000 ASTR (approx. $2,000 USD/mo) for a 6-Month Contract

New Proposal (December 2024):

  • 485,000 ASTR (approx. $3,000 USD/mo for a 12-Month Contract;
    ASTR price as of Dec 11)

Summary

ChainPatrol has served as Astar Network’s brand protection partner for the past seven months after the successful approval of our service in May:

https://forum.astar.network/t/proposal-to-astar-network-enhancing-security-and-trust-with-chainpatrol/6859/20

During this time, we’ve actively mitigated threats, protected users, and enhanced the platform’s security posture.

We’re now seeking community approval to renew this partnership for a full year to continue safeguarding the Astar Network against malicious actors.

About ChainPatrol

DETECT | REPORT | REVIEW | BLOCK | TAKEDOWN

ChainPatrol is a leading provider of Web Security and Brand Protection. Our core mission is to address the rising pace and volume of online threats targeting Web3 brands and communities. ChainPatrol offers a multi-faceted suite of software products that aim to secure Web3 companies and mitigate the rapidly evolving threat environment.

ChainPatrol leverages a Wallet Security Network to safeguard wallet users with fast response blocking against malicious domains. Our 24/7 monitoring system, auto-detects and block threats within minutes across 20+ leading crypto wallets, including MetaMask, Coinbase Wallet, and Phantom.

ChainPatrol’s Threat Detection Engine monitors across Domains, Social Platforms, App Stores and Marketplaces improving threat tracking and takedown automation.

By utilizing a multitude of techniques, ChainPatrol has become the pre-imminent brand protection provider for leading organizations like Consensys, Arbitrum, ZkSync, Astar Network, Starknet, and Polymarket from online impersonation and phishing attacks on their communities.

ChainPatrol delivers service excellence with a consistent balance of technological innovation and human touch to ensure active threats and false positives are mitigated.

1546×556 178 KB

ChainPatrol Platform

Multi-Faceted Product Suite

Discord, Telegram & Slack bots enable the community to easily report any malicious activity they experience to be dealt with accordingly by ChainPatrol’s 24/7 security support staff.

The ChainPatrol Dashboard provides reports on active threats, metrics, and takedowns, as well as 24/7 automated monitoring for new threats across domains and social platforms.

Crypto Wallet Blocking - the fastest way to block phishing attacks in Web3.

Wallet Network - ChainPatrol demonstrates that the most effective brand protection method is to block domains across crypto wallets, and display a warning to Web3 users before they interact with a malicious website. This coverage is the fastest response to online threats and protects users of all experience levels from attacks being launched on a regular basis.

Tracking Active Threats

ChainPatrol provides a Dashboard for each brand to have a transparent view into the detection and takedown process of active threats.

Cross Platform Takedowns

ChainPatrol’s approval process gathers important evidence to best support the takedown process across hosting providers, social platforms, web browsers, and app stores.

Dedicated Reporting Staff

ChainPatrol’s reporting staff are highly trained security professionals with Web3 specific insights and availability provide 24/7 support and monitoring.

Takedown Service - across Domains, Socials, Google Safe Browsing and App Stores

Social Takedowns including X (formerly Twitter), Discord, Telegram, Reddit, Instagram, Youtube, LinkedIn, TikTok, Facebook and decentralized social platforms.

Employee Protection verifies staff accounts across social platforms to monitor for impersonation and to detect account takeovers.

Legal Representation with Social Platforms

To proceed, ChainPatrol will require a legal agreement stating they are an authorized representative of the Astar brand in order to request action from platforms like X / Twitter.

ChainPatrol’s Threat Engine leverages the power of AI and ML to provide fast and efficient brand protection. The system uses a robust AI engine that is trained on a vast dataset of potential infringements and malicious activities. This dataset is continuously updated to reflect the evolving digital landscape. The ML algorithms continuously learn from each new detection, improving their accuracy and efficiency over time.

Threat Detection Rule System

ChainPatrol actively improves detection rules across image recognition, AI parsing of domain names and content, and integrations with external systems. ChainPatrol’s system continuously tracks updates across Astar Assets to ensure any changes to sites, profile pictures, and other brand traits are instantly reflected in our detection system. ChainPatrol additionally tracks and learns from known templates and scam kits that have been deployed repeatedly to ensure quick review of impersonating domains.

Overview of ChainPatrol’s Brand Protection with Astar Network

Successful Case Study

Since beginning to work together in May 2024, ChainPatrol has been an integral part of Astar Network’s security framework.

Our work began with an extensive onboarding process, where we identified key organizational assets, integrated detection systems, and set up monitoring for potential threats.

ChainPatrol detected thousands of threats and ensured successful takedowns for active threats targeting the Astar Staff and Community.

Astar Network Security Dashboard

ChainPatrol manages detection, review, blocking, takedown, reversal and triaging.

1205×369 21.4 KB
1146×814 29 KB
1204×374 16.3 KB

Highlights of ChainPatrol Security:

  1. Threat Detection and Response:

  • Identified 2087 Online Threats, through automated scanning hundreds of thousands of new domains and socials daily.

  • Identified 1232 Active Threats, including fake profiles and phishing attempts that required immediate attention

  • Delivered swift warnings via our Wallet Network to protect users before full takedowns could be authorized. Our wallet network includes key integrations with Metamask, Coinbase Wallet, Phantom and 20+other wallets

1600×722 127 KB

  1. Proactive Measures:

  • Takedowns were filed for 1189 Online Threats across major platforms like X, Discord, Telegram, and app stores for malicious activity

  • From this, 869 Online Threats were successfully taken down.

  1. Collaboration with Astar Team:

  • Partnered with the Astar team to align our systems with organizational needs and roadmap milestones during trial period

  • Finalized Legal Documentation (Power of Attorney, Letter of Authorization) to enable faster takedowns across all platforms

  • Added ChainPatrol Reporting Bot to internal Slack channel.

Summary

With your approval, ChainPatrol is ready to expand on the progress made thus far. Our immediate focus will include:

  • Align ourselves fully with the Astar timeline over the course of the next 12-month period, preparing for key announcements and milestones and the imminent spike in malicious activity

  • Continuing to monitor and mitigate threats while enhancing our detection systems with Astar specific inputs.

  • Raising awareness to the Astar community about our partnership and the emphasis on Brand and Community protection, through co-marketing initiatives

ChainPatrol’s engagement has already demonstrated its effectiveness in protecting the Astar community. By neutralizing threats quickly, providing transparent reporting, and collaborating closely with the team, we’ve ensured a safer and more secure Web3 ecosystem for Astar.

We now ask the Astar community to support this proposal, enabling us to continue delivering robust brand protection and ensuring your community’s security!

Key Links

ChainPatrol Website - https://chainpatrol.com

ChainPatrol Contact: Davide Scalzo

E-mail - davide@chainpatrol.io

Telegram - @dschainpatrol

2 Likes
2

Thanks for the proposal.
I am having difficulty in making a decision regarding the evaluation of the protection by you guys.

Hi @Gaius_sama , would it be best to have the evaluation about them done by the core team?

2 Likes
3

I think so. It’s also difficult for me to be able to give an evaluation or a fair opinion regarding this. Core team members are certainly better suited to being able to make such decisions. It is nice, however, that all this is transparent and public so that anyone can view it and, if they have the skills, give their own opinion.

2 Likes
4

I don’t know if your product can be beneficial, I can’t find how many users you have protected with your product, could you give some metrics on that? On the other hand, the rules of the game in Astar governance have changed. By the way, it also did not present periodic updates for 6 months.

5

Thank you to improve user security. However, I have a few questions.

  • On which evm wallet are you integrated other than MetaMask? Are you integrated with Rabby?
  • On Metamask, is your solution built-in or an feature/add-on to manually install by the user?
  • Are you asking for a grant from all networks (zkSync, Arbitrum, Starknet, …)?
  • Your previous request was $2000/month. Why did you increase it to $3000? What justifies such an increase?
1 Like
6

Thank you for the feedback, @you425 ! Typically our Core Metrics for performance are Reports Filed, Threats Detected/Blocked, Takedowns Filed and Takedowns Completed.

We also encourage community members to provide input, as diverse perspectives strengthen the evaluation process. Happy to get @Gaius_sama 's thoughts here.

7

Hey @Vangardem, since our launch, a summary of our key statistics include:

  • Detected 2087 Potential Online Threats
  • Blocked 1232 Active Threats across our Wallet Network
  • Filed 1189 Takedowns using supporting evidence
  • Completed Takedowns of 869 Threats Across Domain Providers and Social Platforms

Our Wallet Network includes Metamask, Phantom, Coinbase Wallet and 20+ other integrations, which helps to deliver Real-Time Warning Screens to 30 million+ users daily.

We are more than happy to operate under any new changes to the Astar Governance process. In addition, regular updates were shared with the Core team in our internal TG group, however, we can certainly work with the Astar Marketing team to post regular updates of our Security Efforts periodically on X and other Socials moving forward.

8

Hey @GuiGou , our pleasure and thank you for your questions.

  • We are integrated with Metamask, Coinbase, Phantom and a number of other Wallets (Subwallet, Pontem, Exodus, Zengo, etc.)
  • We have a direct integration with Metamask, so nothing needs to be installed by the user
  • Our process varies with different organizations, based on their own internal Governances and processes
  • The price increase is as a result of expanded coverage across additional wallets and networks, increased resource requirements for maintaining protection and addressing the evolving threat environment (which we anticipate to grow rapidly heading into 2025) and enhancing user support and communication commitments
9

Thank you for the proposal. I am finding it challenging to decide on the evaluation of the protection you have provided. But, let’s see more questions answered!

10

However, I do not think that your project can be useful, thank you very much, there are other more economical ways of detection.

11

Hey @Matt ! Thank you for sharing your thoughts.

The evaluation criteria we shared highlighted our team’s efforts and focus on ensuring that any potential Off-Chain threats to the Astar community were effectively detected, blocked, and taken down before users could engage by sharing sensitive information (e.g., connecting a wallet to a wallet drainer, falling victim to an impersonator, or sharing a private phrase).

Our solution aids in preventing community members from ever engaging on-chain with these threats. The evaluation criteria we provided were designed to reflect the key metrics that measure our success in identifying and removing these threats.

By taking on this responsibility, ChainPatrol alleviated the core team from the burden of addressing these threats directly, allowing them to focus on their primary objectives.

12

Hey @Vangardem , thank you for sharing your perspective!

While other methods of detection existed, our focus was on delivering a comprehensive solution that not only detected threats but also blocked them within minutes through our Wallet Network and proceeded with takedowns before they could impact the broader community. This proactive approach minimized risk and prevented users from engaging with threats—whether Off-Chain or On-Chain.

Major threat vectors such as wallet drainers, staff/brand impersonation, and phishing collectively result in tens of millions of dollars in losses to end users each year. Although detection is essential, it is just one part of a robust, end-to-end protection service that effectively safeguards the Astar community.

13

Thank you for your answers, you have OpenGov submit your request to the community for a vote.