Yeah, security should be the first thing that every web3 founder should consider to implement in the project he/she is coming up. Once your system is broken into by these hackers, your audience tend to lose interest in the project forever.