22 articles tagged with #defi-exploit. AI-curated summaries with sentiment analysis and key takeaways from 50+ sources.
A MEV bot named JaredFromSubway lost $7.5 million in WETH, USDC, and USDT after an attacker exploited token approval vulnerabilities to drain its Ethereum contract. The incident highlights critical smart contract security risks in the MEV bot ecosystem where token approvals can be weaponized to siphon assets.
Raydium, a major Solana-based automated market maker, suffered a $1.3 million exploit targeting legacy liquidity pools and has committed to full reimbursement of affected users. The attack, identified by security firms PeckShield and Specter, exploited outdated infrastructure, raising questions about the security practices surrounding retired smart contracts in the DeFi ecosystem.
Raydium, a major Solana-based automated market maker (AMM), suffered a $1.34M exploit targeting its legacy AMM V3 program. The incident underscores critical vulnerabilities in deprecated blockchain infrastructure and raises concerns about DeFi security standards across the industry.
Token of Power (TOP) experienced a significant exploit on Tuesday that resulted in $1.58 million being drained from its Balancer V1 liquidity pool. Multiple on-chain security firms including Blockaid, PeckShield, and Cyvers identified and reported the attack, highlighting ongoing vulnerabilities in decentralized finance protocols.
Humanity Protocol suffered a $36 million exploit after attackers compromised administrative keys and gained control of bridge infrastructure across Ethereum and BNB Smart Chain. The breach highlights critical vulnerabilities in bridge security and centralized key management practices within DeFi protocols.
Aave founder Stani Kulechov defended the lending protocol at the Proof of Talk conference following an $8.45 billion withdrawal surge triggered by a DeFi exploit. The massive outflow raises questions about protocol resilience and user confidence in decentralized finance despite the founder's reassurances.
Yuga Labs successfully recovered 68 NFTs valued over $500K following a security exploit on the Flooring Protocol in a whitehat rescue operation. The incident highlights ongoing vulnerabilities in DeFi protocols that interact with NFT markets and raises questions about asset custody risks.
Yuga Labs successfully recovered 68 NFTs from multiple high-profile collections including BAYC and CryptoPunks that were at risk due to a bug in the Flooring Protocol. The exploit highlighted vulnerabilities in DeFi protocols handling NFT collateral and underscored the ongoing security challenges in the NFT lending space.
Gnosis Pay experienced a module-based security attack that compromised user funds, though the platform has committed to reimbursing affected victims. The incident raises significant questions about the robustness of the underlying smart contract architecture and module validation mechanisms.
Gravity Bridge, a key Ethereum-Cosmos interoperability protocol, suffered a $5.4 million drain on Saturday due to a suspected signing key compromise. The incident forced the bridge to halt operations and raised critical questions about the security of cross-chain infrastructure connecting major blockchain ecosystems.
Stake DAO suffered a significant exploit on Arbitrum where an attacker minted 5.4 trillion vsdCRV tokens and converted them to ETH, exposing critical vulnerabilities in the protocol's token minting mechanisms. This incident highlights ongoing security risks in DeFi platforms handling derivative assets and staking mechanisms.
Polymarket, a popular prediction market platform, has suffered a security breach resulting in approximately $700K in cryptocurrency theft through a private key compromise. The incident highlights critical security vulnerabilities in decentralized platforms and raises concerns about asset custody practices in crypto applications.
A liquidity provider on 1inch called TrustedVolumes suffered an ongoing exploit draining nearly $6 million, perpetrated by the same attacker who exploited 1inch Fusion V1 in March 2025 for approximately $5 million. The recurring attacks highlight persistent vulnerabilities in 1inch's infrastructure.
Ripple CTO Emeritus David Schwartz has warned the DeFi sector about security vulnerabilities following a $290 million exploit of the Kelp DAO ecosystem. The incident highlights critical risks in bridge protocols and smart contract implementations that continue to plague decentralized finance despite years of development.
AAVE token declined 12% following a $280M exploit on Kelp DAO, a DeFi protocol on Ethereum. The incident underscores persistent security vulnerabilities in decentralized finance systems, raising concerns about trust and stability in Ethereum-based financial applications.
Rhea Finance's post-mortem analysis reveals an exploit that resulted in $18.4 million in losses, significantly exceeding the initial $8 million estimate. The attacker leveraged a deliberately constructed swap route to open leveraged margin positions and extract value from the protocol, highlighting critical vulnerabilities in DeFi margin trading mechanisms.
Solana founder expressed shock at a major DeFi hack involving Drift protocol, describing it as 'terrifying' and representing one of the largest DeFi exploits in history. The incident highlights escalating security vulnerabilities in the DeFi space beyond typical smart contract bugs and phishing attacks.
Moonwell protocol suffered a $1.78 million exploit due to cbETH being mispriced at $1.12 instead of approximately $2,200. The incident has sparked debate about the security risks of AI-co-authored smart contracts in DeFi protocols.
Raydium experienced a $1.34M exploit affecting its deprecated Solana pools, with the platform's treasury committing to full reimbursement of affected users. Security firms have traced the stolen funds to Tornado Cash, a privacy mixer commonly used to obscure transaction origins.
ZachXBT's investigation concludes that Humanity Protocol's $31 million exploit resulted from a genuine private key compromise rather than insider theft. This distinction is significant for understanding the security vulnerabilities that enabled the attack and has implications for how similar breaches are assessed within the crypto ecosystem.
Bitcoin strengthened amid improving risk sentiment while altcoins faced pressure following a weekend DeFi exploit, as markets monitor Middle East geopolitical tensions. The divergence reflects investors' flight to perceived safety in larger-cap assets during periods of uncertainty.
