7 articles tagged with #defi-vulnerability. AI-curated summaries with sentiment analysis and key takeaways from 50+ sources.
A Polkadot bridge exploit allowed an attacker to gain administrative control and mint approximately 1 billion DOT tokens, subsequently dumping them on the market. The incident exposes critical vulnerabilities in cross-chain bridge infrastructure, threatening the integrity and user confidence in decentralized finance ecosystems.
DxSale's legacy liquidity locker on BNB Chain was exploited for $7.3 million, affecting over 1,400 liquidity pools. Attackers successfully drained funds after the locker ownership transferred through approximately 89 wallets, highlighting persistent security vulnerabilities in older DeFi infrastructure.
Kelp DAO attributes a $290 million exploit to LayerZero's default infrastructure settings rather than its own protocol failure. The liquid restaking platform claims the compromised verifier was LayerZero's own system running the platform's standard onboarding configuration, shifting responsibility for the security breach.
CoW Swap, a decentralized exchange protocol previously used by Vitalik Buterin for major ETH sales, has fallen victim to a DNS hijack attack. The platform has issued warnings urging users to avoid accessing the site until the security breach is resolved.
Hyperbridge suffered a significant security breach less than two weeks after an April Fools' day prank, where attackers forged cryptographic proofs to gain control of the DOT token contract and dumped approximately one billion tokens for $237K in available liquidity.
A 2.85% pricing error in wstETH collateral on Aave triggered $27 million in liquidations, demonstrating the vulnerabilities of DeFi protocols to oracle pricing inaccuracies. The incident highlights critical risks in automated liquidation systems and the importance of robust price feed mechanisms in decentralized finance.
Huma Finance suffered a $101K exploit targeting deprecated V1 contracts on Polygon, underscoring a widespread vulnerability in DeFi protocols that fail to properly secure legacy smart contracts. The incident highlights the importance of comprehensive contract lifecycle management and security protocols for abandoned protocol versions.
