DeFi Hacks News

Up-to-date DeFi Hacks News.

Pseudonymity is a meme

Pseudonymity is a meme

Alright ya beautiful lovelies, CryptoFirstNewsBadger here filling in for yer regular old presenter. And I know you’re thinking you look just like him. You sound just like him and you probably saw me getting me groceries at t’same superstore in t’same town at t’same time. But I assure you I am someone completely different and …

Pseudonymity is a meme Read More »

2020 DeFi Recap so far

2020 DeFi Recap (So Far)

This is The Defiant x Harmony, a weekly series brought to you by Harmony Protocol’s Creative Director, Robin Schmidt, and Camila Russo, the founder of The Defiant, to explore DeFi’s most important stories and demystify this exciting emerging financial space.

unknown 17

Inside the Hunt for the Jay Pegs Auto Mart Thief and 865 ETH

It took the team at Jay Pegs Auto Mart basically zero time to identify and find the hacker responsible for stealing the proceeds from their auction of DONA tokens on SushiSwap’s MISO platform Thursday night. “It only took us five minutes to figure out who he was,” BasedMoneyGod, a salesman at Jay Pegs told The …

Inside the Hunt for the Jay Pegs Auto Mart Thief and 865 ETH Read More »

cream

CREAM Finance Attack Leads to $23 Million Loss in AMP and ETH

New token standards introduce complexity that DeFi applications are still learning how to grapple with. Prime example: Money market CREAM Finance was hit with a reentrancy attack on Aug. 30 that allowed attackers to drain $22.8 million in Flexa’s AMP token and $4.2 million worth of ETH (based on market prices in mid-morning trading Monday). …

CREAM Finance Attack Leads to $23 Million Loss in AMP and ETH Read More »

unknown 9

Hackers Wanted: $1M Bounties Entice White Hats to Hunt for DeFi Bugs

Should I just steal the money? There’s a vulnerability in the code… Of a DeFi protocol with $3B in TVL. I was just looking at the open-source code for fun. But now, it’s serious. There’s a bug bounty, a reward that pays out $10K to anyone who finds a major weakness. But exploiting this vulnerability …

Hackers Wanted: $1M Bounties Entice White Hats to Hunt for DeFi Bugs Read More »

poly network

Poly Network Hacked For Over $600M In Biggest DeFi Exploit Ever

At 6am ET on August 10, over half a billion dollars worth of crypto assets were stolen from Poly Network, a cross-chain protocol that facilitates token swaps across multiple blockchains including Ethereum, Binance Smart Chain and Polygon. With the total drained at $600M, this is the biggest DeFi hack in history, dwarfing the $59M EasyFi …

Poly Network Hacked For Over $600M In Biggest DeFi Exploit Ever Read More »

YFI at One. Remembering One Hell of a Year.

$YFI at One. Remembering One Hell of a Year.

YFI launched in 2020 as one of the most memorable DeFi protocols ever with its fair launch, tiny token supply and reluctant anti-hero Andre Cronje as a pivotal figure in just doing things differently. Since then $YFI has suffered hacks, merged, purged, grown, shrunk but above all endured as a genuinely decentralized home for those …

$YFI at One. Remembering One Hell of a Year. Read More »

DeFi Traders Lost More Than $11M Across Two Weekend Hacks

Over the weekend, DeFi traders lost more than $11M across two hacks on Binance Smart Chain (BSC).  On July 10, Anyswap, a decentralized cross-chain protocol, suffered a hack worth nearly $8M of USDC and MIM (Magic Internet Money), a lesser known stablecoin. The exploit happened in the protocol’s new V3 cross-chain liquidity pools. According to …

DeFi Traders Lost More Than $11M Across Two Weekend Hacks Read More »

xToken DeFi Project Hacked For Over $25M

xToken, a project which automates staking and liquidity strategies and wraps them into ERC-20 tokens, has been hacked to the tune of ~$25M. The attack resulted in xToken’s TVL dropping by roughly 30% to $63M, according to DeFi Llama. The xSNXa and xBNTa token contracts, for which xToken automates the staking strategies as well as …

xToken DeFi Project Hacked For Over $25M Read More »

Red Flag Alert: A Framework for Vetting Crypto Projects Part II

With hacks and exploits breaking every week in DeFi, participants are undoubtedly asking where to look for red flags, how to protect their investments and how to vet projects. In this three-part series, we provide a framework to help with just this. Part I analyzed Tokenomics, Part III will analyze mental frameworks, and Part II …

Red Flag Alert: A Framework for Vetting Crypto Projects Part II Read More »

$22 Million Was Stolen From Three Defi Platforms Last Weekend

While most of the DeFi community had their eyes glued to the ETH rally over the weekend, hackers took the opportunity to steal mooning assets through several protocol exploits. From Wednesday through Saturday, exploits occurred across three different protocols—Rari Capital, Value DeFi, and within Larva Labs’ Meebits NFT project—resulting in over $22M worth of stolen …

$22 Million Was Stolen From Three Defi Platforms Last Weekend Read More »

pirate flag

Upstart AMM Uranium Finance Suffers $50M Hack, Second Attack in a Month

Uranium Finance, an automated market maker on Binance Smart Chain, suffered its second hack this month, this time to the tune of $50M. The hack is due to a misstep in code modification which allowed the hacker to exchange one unit of an input token for 98% of the value as output according to Kyle …

Upstart AMM Uranium Finance Suffers $50M Hack, Second Attack in a Month Read More »

pirate flag

Compound Finance Fork EasyFi Loses Over $60M in Admin Key Hack

EasyFi, a Compound Finance fork launched directly on the Polygon Layer 2 Network, suffered a major hack on Monday, losing over $60M of the project’s EASY tokens and also $6M of users’ provided liquidity. The hacker gained access to the project’s admin key, which allows developers to make changes to their protocol. The attack is …

Compound Finance Fork EasyFi Loses Over $60M in Admin Key Hack Read More »

Screen Shot 2021 03 16 at 2.29.29 PM

Pancakeswap, Cream Finance, Suffer DNS Attacks

Hackers compromised PancakeSwap’s and Cream Finance’s websites yesterday.  The Domain Name Service (DNS) attack modified the affected protocols’ website to display a request for the user’s seed phrase, which, if submitted, would compromise their entire account. PancakeSwap and Cream urged their users to stay away from their URLs as they scrambled to regain control of …

Pancakeswap, Cream Finance, Suffer DNS Attacks Read More »

Social Tokens Get Rolled On

Social money issuer Roll was hacked for nearly $5.7M of creator tokens held in hot wallets on the platform over the weekend. Using Roll’s private keys, the hacker made off with tokens from 400+ creators on the platform. They immediately sold into Uniswap pools created around the vulnerable social tokens and transferred the ETH via …

Social Tokens Get Rolled On Read More »

Furucumbo Commits to Compensating Hack Victims

An anonymous hacker has exploited transaction batching  protocol Furucombo and walked away with $15M in stolen crypto over the weekend. The team is pledging to compensate victims. The attacker used a contract which tricked Furuсombo into thinking that their contract was a new version of Aave, and was able to transfer funds of every user …

Furucumbo Commits to Compensating Hack Victims Read More »