Great post—this is an often overlooked vulnerability in Solidity. One quick best practice: always favor the pull over push pattern for payments, using a withdraw() function instead of sending Ether directly in a loop, to avoid gas griefing and out-of-gas reverts. For extra safety, consider implementing a withdrawal cooldown or a Merkle-tree-based claims system for high-volume scenarios.