TechFlow news, on February 26, according to SlowMist's analysis, the Bybit attack incident primarily stemmed from its use of an outdated Safe contract version (v1.1.1), which prevented the utilization of the critical Guard mechanism for protection.
If Bybit had upgraded to version 1.3.0 or higher and implemented proper Guard mechanisms—including specifying whitelisted addresses as the sole fund recipients and enforcing strict contract function ACL validation—the loss might have been avoided.
SlowMist emphasized that while this remains hypothetical, it offers valuable insights for future asset security management.




