DeFiHack
7,385 views
14 Discussing
Hot
Latest
See original
š± Crypto Chaos: Hackers Breached 'PineappleSwap' and Stole $27M!
š Last night, news broke of yet another attack on the decentralized exchange PineappleSwap.
š° The total losses exceed $27 million in stablecoins and ecosystem tokens.
šØāš» Hackers exploited a vulnerability in a new smart contract that was uploaded without a full audit.
š The PineappleSwap team has already reached out to the crypto community for help in blocking fund withdrawals on centralized exchanges.
š The $PINE token plummeted by 64% in one hour.
š Experts warn: always check the audit of DeFi projects before investing.
#CryptoSecurity101 CryptoSecurity101 #DeFiHack # #StaySafe
š Last night, news broke of yet another attack on the decentralized exchange PineappleSwap.
š° The total losses exceed $27 million in stablecoins and ecosystem tokens.
šØāš» Hackers exploited a vulnerability in a new smart contract that was uploaded without a full audit.
š The PineappleSwap team has already reached out to the crypto community for help in blocking fund withdrawals on centralized exchanges.
š The $PINE token plummeted by 64% in one hour.
š Experts warn: always check the audit of DeFi projects before investing.
#CryptoSecurity101 CryptoSecurity101 #DeFiHack # #StaySafe
The $230 Million DeFi Disaster: The Cetus Exchange Hack That No One Saw Coming (Part 7)
1ļøā£ The Silent Threat That Took Down Cetus
It was May 22, 2025, and the SUI ecosystem was thriving. Cetus, a decentralized exchange, had built a reputation for fast transactions, deep liquidity, and cutting-edge smart contracts. Investors were pouring money into the platform, confident in its security.
Then, in a single devastating attack, $230 million vanishedādrained by an exploit so subtle that even the best auditors missed it.
āļø No Warning SignsāUnlike typical hacks, there were no suspicious transactions leading up to the breach.
āļø A Mathematical Overflow VulnerabilityāThe flaw was hidden in the āchecked_shlwā function, allowing an attacker to manipulate parameters and extract billions in liquidity using just one token.
āļø Billions in Fake LiquidityāThe attacker minted liquidity out of thin air, then cashed out, leaving Cetus crippled.
2ļøā£ The Aftermath: Panic and Chaos
āļø Cetus Exchange CollapsesāThe platform halted trading, freezing all withdrawals.
āļø Investors Lose EverythingāUsers who had staked assets on Cetus saw their funds drained overnight.
āļø DeFi Security in QuestionāThe incident shattered trust in smart contract audits, proving that even minor coding errors can lead to catastrophic losses.
3ļøā£ The Hunt for the Hacker
āļø Blockchain Forensics ActivatedāSecurity firms tracked the stolen funds, but the attacker used mixers and privacy tools to cover their tracks.
āļø No One Knows Who Did ItāUnlike previous hacks linked to North Korean Lazarus Group, this attack had no clear fingerprints.
āļø A New Breed of Exploits?āExperts fear that mathematical overflow vulnerabilities could become the next big threat in DeFi.
4ļøā£ Lessons Learned
āļø Smart Contracts Are Never Fully SecureāEven audited contracts can contain hidden flaws.
āļø Liquidity Pools Need Better SafeguardsāPlatforms must implement stricter validation to prevent fake liquidity exploits.
āļø DeFi Needs a Security OverhaulāWithout stronger protections, the next attack could be even bigger.
#DeFiHack #CetusExploit #CryptoSecurity #SUIEcosystem #Write2Earn
It was May 22, 2025, and the SUI ecosystem was thriving. Cetus, a decentralized exchange, had built a reputation for fast transactions, deep liquidity, and cutting-edge smart contracts. Investors were pouring money into the platform, confident in its security.
Then, in a single devastating attack, $230 million vanishedādrained by an exploit so subtle that even the best auditors missed it.
āļø No Warning SignsāUnlike typical hacks, there were no suspicious transactions leading up to the breach.
āļø A Mathematical Overflow VulnerabilityāThe flaw was hidden in the āchecked_shlwā function, allowing an attacker to manipulate parameters and extract billions in liquidity using just one token.
āļø Billions in Fake LiquidityāThe attacker minted liquidity out of thin air, then cashed out, leaving Cetus crippled.
2ļøā£ The Aftermath: Panic and Chaos
āļø Cetus Exchange CollapsesāThe platform halted trading, freezing all withdrawals.
āļø Investors Lose EverythingāUsers who had staked assets on Cetus saw their funds drained overnight.
āļø DeFi Security in QuestionāThe incident shattered trust in smart contract audits, proving that even minor coding errors can lead to catastrophic losses.
3ļøā£ The Hunt for the Hacker
āļø Blockchain Forensics ActivatedāSecurity firms tracked the stolen funds, but the attacker used mixers and privacy tools to cover their tracks.
āļø No One Knows Who Did ItāUnlike previous hacks linked to North Korean Lazarus Group, this attack had no clear fingerprints.
āļø A New Breed of Exploits?āExperts fear that mathematical overflow vulnerabilities could become the next big threat in DeFi.
4ļøā£ Lessons Learned
āļø Smart Contracts Are Never Fully SecureāEven audited contracts can contain hidden flaws.
āļø Liquidity Pools Need Better SafeguardsāPlatforms must implement stricter validation to prevent fake liquidity exploits.
āļø DeFi Needs a Security OverhaulāWithout stronger protections, the next attack could be even bigger.
#DeFiHack #CetusExploit #CryptoSecurity #SUIEcosystem #Write2Earn
See original
šØ Another hack in crypto: Layer-2 is under attack again!
1ļøā£ A vulnerability was discovered in the Alex Protocol, which operates on Layer-2 ā hackers stole $8.3 million.
2ļøā£ The cause was an error in the smart contract that allowed the attackers to manipulate transactions.
3ļøā£ Layer-2 solutions are becoming increasingly popular, but security remains a weak point ā users risk their assets.
ā ļø This incident once again raises questions about trust in DeFi and the rapid integration of Layer-2 into the Web3 ecosystem.
š¬ Do you trust Layer-2 projects? Or do you prefer to hold assets on L1?
ā¤ļø Like, subscribe, and share your opinion in the comments!
---
#Layer2 #DeFiHack #CryptoSecurity #AlexProtocol #SmartContract
$ARB $OP $ETH
1ļøā£ A vulnerability was discovered in the Alex Protocol, which operates on Layer-2 ā hackers stole $8.3 million.
2ļøā£ The cause was an error in the smart contract that allowed the attackers to manipulate transactions.
3ļøā£ Layer-2 solutions are becoming increasingly popular, but security remains a weak point ā users risk their assets.
ā ļø This incident once again raises questions about trust in DeFi and the rapid integration of Layer-2 into the Web3 ecosystem.
š¬ Do you trust Layer-2 projects? Or do you prefer to hold assets on L1?
ā¤ļø Like, subscribe, and share your opinion in the comments!
---
#Layer2 #DeFiHack #CryptoSecurity #AlexProtocol #SmartContract
$ARB $OP $ETH
RyanThomas:
again your head, its 2 days ago news..
Alex Protocol Hack:
āļø$8.3M Gone! Alex Protocol Hacked on Stacks
š¹ 8.4M STX + sBTC + WBTC stolen
š¹ Vulnerability in self-listing logic
š¹ Team promises full reimbursement šø
š Big test for Bitcoin DeFi security!
#DeFiHack #alexprotocol #Stacks #STX #CryptoAlert
āļø$8.3M Gone! Alex Protocol Hacked on Stacks
š¹ 8.4M STX + sBTC + WBTC stolen
š¹ Vulnerability in self-listing logic
š¹ Team promises full reimbursement šø
š Big test for Bitcoin DeFi security!
#DeFiHack #alexprotocol #Stacks #STX #CryptoAlert
See original
Hack of Alex Protocol and theft of $8.37 million due to a security vulnerability
Details:
ā¢ The attacker exploited a vulnerability in the smart contract management.
ā¢ The losses included ALEX tokens, sUSDT, and xBTC.
ā¢ The protocol has frozen activities and is investigating recovery.
Warning:
ā¢ Calls to enhance smart contract auditing before deployment.
#DeFiHack #AlexProtocol #SmartContractFlaw #CryptoSecurity #Exploit
#alexprotocol #exploit
Details:
ā¢ The attacker exploited a vulnerability in the smart contract management.
ā¢ The losses included ALEX tokens, sUSDT, and xBTC.
ā¢ The protocol has frozen activities and is investigating recovery.
Warning:
ā¢ Calls to enhance smart contract auditing before deployment.
#DeFiHack #AlexProtocol #SmartContractFlaw #CryptoSecurity #Exploit
#alexprotocol #exploit
šØćKiloEx to Hacker: Return Funds, Get 10% Bountyć
On April 15, KiloEx said it has traced key clues with help from law enforcement, CEXs & bridges ā and is actively monitoring addresses.
š An offer to the attacker:
ā ļø Return 90% of stolen funds within 72 hours
š° Keep 10% as a white hat bounty
š¢ If agreed, KiloEx will issue a statement of cooperation and drop further action.
The DEX previously lost ~$7.5M in a major exploit.
#KiloEx #DeFiHack #BlockchainSecurity
On April 15, KiloEx said it has traced key clues with help from law enforcement, CEXs & bridges ā and is actively monitoring addresses.
š An offer to the attacker:
ā ļø Return 90% of stolen funds within 72 hours
š° Keep 10% as a white hat bounty
š¢ If agreed, KiloEx will issue a statement of cooperation and drop further action.
The DEX previously lost ~$7.5M in a major exploit.
#KiloEx #DeFiHack #BlockchainSecurity
š The $600 Million Poly Network Hack ā And the Hacker Who Gave It Back
In August 2021, the decentralized finance (DeFi) protocol Poly Network was hacked for over $600 million in crypto assets ā the largest DeFi exploit in history at the time.
š§āš» The hacker exploited a vulnerability in Poly Networkās smart contracts to drain funds from Ethereum, BNB Chain, and Polygon. The crypto world watched in disbelief as massive transactions appeared on-chain.
šŖ But the twist? Within days, the attacker began returning the funds ā bit by bit ā claiming they did it āfor funā and to āexpose vulnerabilities.ā
š The hacker, dubbed āMr. White Hat,ā was even offered a $500,000 bounty and a job by Poly Network (which they refused).
š¬ The event raised serious questions about DeFi security, ethics in hacking, and how the community handles gray-hat attackers.
š·ļø #PolyNetwork
#DeFiHack
#WhiteHatHacker
#CryptoSecurity
#Crypto2025
In August 2021, the decentralized finance (DeFi) protocol Poly Network was hacked for over $600 million in crypto assets ā the largest DeFi exploit in history at the time.
š§āš» The hacker exploited a vulnerability in Poly Networkās smart contracts to drain funds from Ethereum, BNB Chain, and Polygon. The crypto world watched in disbelief as massive transactions appeared on-chain.
šŖ But the twist? Within days, the attacker began returning the funds ā bit by bit ā claiming they did it āfor funā and to āexpose vulnerabilities.ā
š The hacker, dubbed āMr. White Hat,ā was even offered a $500,000 bounty and a job by Poly Network (which they refused).
š¬ The event raised serious questions about DeFi security, ethics in hacking, and how the community handles gray-hat attackers.
š·ļø #PolyNetwork
#DeFiHack
#WhiteHatHacker
#CryptoSecurity
#Crypto2025
See original
DeFi hack drains US$ 1 billion in largest attack in history
A sophisticated attack on an unknown DeFi platform resulted in the loss of US$ 1 billion in assets, exposing persistent vulnerabilities in the sector and generating widespread panic.
#DeFiHack #CryptoSecurity $AVAX
A sophisticated attack on an unknown DeFi platform resulted in the loss of US$ 1 billion in assets, exposing persistent vulnerabilities in the sector and generating widespread panic.
#DeFiHack #CryptoSecurity $AVAX
KiloExās $7.5M Hack: A Wake-Up Call for DeFi Security and Oracle Integrity
How a single vulnerability exposed the critical need for holistic audits and relentless vigilance in decentralized finance.
KiloExās recent $7.5 million hack is a stark wake-up call for the DeFi world, underscoring how even multi-chain, audited projects can fall victim to basic security oversights.
The attacker exploited a glaring vulnerability in KiloExās price oracle access control essentially walking through an unlocked front door manipulating prices across multiple chains to drain funds with surgical precision.
Despite five audits since mid-2023, including one just last March, the critical flaw lay āout of scopeā of those reviews, revealing a troubling gap between audit coverage and real-world security needs.
This exploit highlights that no amount of multi-chain deployment or fancy tech can substitute for rigorous, end-to-end security checks, especially on core components like oracles that feed trading logic.
KiloExās response has been swift and transparent they suspended trading immediately, engaged top security firms like SlowMist for a comprehensive 45-day audit, and are collaborating with law enforcement in Hong Kong to trace and recover funds.
Their plan to compensate users based on pre-attack price snapshots aims to restore trust, but the incident raises broader questions about how DeFi protocols balance innovation with security.
For the crypto community, this serves as a critical lesson: security audits must be holistic, covering every contract and interaction vector, not just the obvious ones. Protocols must prioritize access control and oracle integrity above all else because in DeFiās high-stakes arena, a single weak link can cascade into multi-million dollar losses.
As KiloEx works through its audit and prepares to relaunch, the industry should watch closely. This episode is a vivid reminder that the promise of decentralized finance depends on relentless vigilance, continuous improvement, and the hard-earned wisdom that security is never finishedāitās a journey.
#KiloEx #DeFiHack #OracleExploit
$XRP
$RIF
$SOL
KiloExās recent $7.5 million hack is a stark wake-up call for the DeFi world, underscoring how even multi-chain, audited projects can fall victim to basic security oversights.
The attacker exploited a glaring vulnerability in KiloExās price oracle access control essentially walking through an unlocked front door manipulating prices across multiple chains to drain funds with surgical precision.
Despite five audits since mid-2023, including one just last March, the critical flaw lay āout of scopeā of those reviews, revealing a troubling gap between audit coverage and real-world security needs.
This exploit highlights that no amount of multi-chain deployment or fancy tech can substitute for rigorous, end-to-end security checks, especially on core components like oracles that feed trading logic.
KiloExās response has been swift and transparent they suspended trading immediately, engaged top security firms like SlowMist for a comprehensive 45-day audit, and are collaborating with law enforcement in Hong Kong to trace and recover funds.
Their plan to compensate users based on pre-attack price snapshots aims to restore trust, but the incident raises broader questions about how DeFi protocols balance innovation with security.
For the crypto community, this serves as a critical lesson: security audits must be holistic, covering every contract and interaction vector, not just the obvious ones. Protocols must prioritize access control and oracle integrity above all else because in DeFiās high-stakes arena, a single weak link can cascade into multi-million dollar losses.
As KiloEx works through its audit and prepares to relaunch, the industry should watch closely. This episode is a vivid reminder that the promise of decentralized finance depends on relentless vigilance, continuous improvement, and the hard-earned wisdom that security is never finishedāitās a journey.
#KiloEx #DeFiHack #OracleExploit
$XRP
$RIF
$SOL
KiloEx, a newly launched multi-chain DeFi platform, has been hacked, resulting in a loss of approximately $7 million. The attack began on April 14 and affected BNB Smart Chain, Base, and Taiko. The hacker used Tornado Cash to launder funds and exploited an access control vulnerability in the price oracle system. The KILO token dropped 30%, with market cap falling from $11 million to $7.5 million. KiloEx has suspended operations, is working with investigators, and launched a bounty program to help trace stolen funds and resolve the breach.
#KiloEx #DeFiHack #CrossChainExploit #Web3 #BinanceChain
#KiloEx #DeFiHack #CrossChainExploit #Web3 #BinanceChain
šØ Infini Hack: $49.5M Stolen, Founder Promises Full Compensation! š„
Infiniās founder, Christian, broke the silence on February 24th, addressing the massive $49.5 million hack. š±š° The team is actively investigating, tracking the stolen funds, and has resumed user withdrawals. In the worst-case scenario, they promise full compensation to affected users.
š What This Means for the Market:
ā ļø Security Concerns ā Will this push DeFi platforms to strengthen security? š
š Market Impact ā Could this shake investor confidence in similar platforms?
ā Compensation Plan ā Will Infiniās response restore trust?
With hacks on the rise, should crypto projects prioritize security over growth? Whatās your take? š¬ Share your thoughts below! š
#InfiniHacked #CryptoSecurityAlert #DeFiHack #CryptoNewss #BinanceSquareFamily
Infiniās founder, Christian, broke the silence on February 24th, addressing the massive $49.5 million hack. š±š° The team is actively investigating, tracking the stolen funds, and has resumed user withdrawals. In the worst-case scenario, they promise full compensation to affected users.
š What This Means for the Market:
ā ļø Security Concerns ā Will this push DeFi platforms to strengthen security? š
š Market Impact ā Could this shake investor confidence in similar platforms?
ā Compensation Plan ā Will Infiniās response restore trust?
With hacks on the rise, should crypto projects prioritize security over growth? Whatās your take? š¬ Share your thoughts below! š
#InfiniHacked #CryptoSecurityAlert #DeFiHack #CryptoNewss #BinanceSquareFamily
BREAKING: KiloEx Hit by $7.4M Security Breach! šØšø
Another DeFi Hack Rocks the Space
According to Odaily, smart contract platform KiloEx has suffered a massive $7.4 million exploit, affecting assets on BNB Chain and Base.
What Happened?
Hackers breached KiloExās contracts, draining funds across multiple chains. The attack highlights yet another case of vulnerabilities in DeFi infrastructure.
Chains Affected:
BNB Chain š¶
Base š§
Key Takeaways:
ā ļø $7.4M stolen
š Multi-chain impact
š Ongoing security concerns in DeFi
No official statement from KiloEx yet, but the crypto community is watching closely.
BNB Price Update:
BNB is currently trading around $587.63 with moderate movement. No major shock (yet), but sentiment could shift if more details surface.
Stay Safe, Fam:
If you're holding funds on smart contract platforms, double-check your exposure and stay updated.
---
DeFi is powerful ā but security is everything.
Letās hope KiloEx can recover and reinforce its systems.
#KiloEx #DeFiHack #CryptoSecurity #BNBChain #BaseChain
Another DeFi Hack Rocks the Space
According to Odaily, smart contract platform KiloEx has suffered a massive $7.4 million exploit, affecting assets on BNB Chain and Base.
What Happened?
Hackers breached KiloExās contracts, draining funds across multiple chains. The attack highlights yet another case of vulnerabilities in DeFi infrastructure.
Chains Affected:
BNB Chain š¶
Base š§
Key Takeaways:
ā ļø $7.4M stolen
š Multi-chain impact
š Ongoing security concerns in DeFi
No official statement from KiloEx yet, but the crypto community is watching closely.
BNB Price Update:
BNB is currently trading around $587.63 with moderate movement. No major shock (yet), but sentiment could shift if more details surface.
Stay Safe, Fam:
If you're holding funds on smart contract platforms, double-check your exposure and stay updated.
---
DeFi is powerful ā but security is everything.
Letās hope KiloEx can recover and reinforce its systems.
#KiloEx #DeFiHack #CryptoSecurity #BNBChain #BaseChain
Login to explore more contents