Balancer Protocol Exploited for Over $900k

Balancer Protocol has lost over $900,000 worth of crypto assets following an attack on its V2 liquidity pools.

A spooky looking skeleton in a hoogie staring at the camera with glowing eyes resembling the Balancer logo.
Created by Gabor Kovacs from DailyCoin
  • Balancer Protocol has suffered an exploit.
  • This follows a critical vulnerability warning on August 22.
  • The hacker is still active, transferring funds.

DeFi protocol and Ethereum automated market maker (AMM) Balancer was exploited, leading to a loss of over $900,000 worth of crypto. The protocol confirmed the exploit via Twitter on August 27 and encouraged users to withdraw their funds from the affected liquidity pools.

Sponsored

The development comes a few days after Balancer reported a critical vulnerability in its V2 pools.

The Hacker Used an Ethereum Address

Cyvers founder and CTO Meir Dolev was among the first blockchain security experts to comment on the matter, noting that the hacker used an Ethereum address to transfer the stolen funds in DAI stablecoin.

While primary sources indicate that the hacker conducted two transactions totaling $893,978 in DAI, the associated wallet address had received another 85,080 DAI at the time of press. Cumulatively, the address now holds $978,947 worth of DAI.

Mitigation procedures have drastically reduced risks but are unable to pause affected pools. To prevent further exploits, users must withdraw from affected LPs,” read Balancer’s tweet.

Alert on Critical Vulnerability

The Balancer Protocol team issued a vulnerability warning on August 22, noting that its boosted liquidity pools were susceptible to an attack.

Sponsored

Over $5 million of assets were exposed to risks during the vulnerability discovery, representing about 1.4% of the protocol’s total assets deployed on Ethereum, Optimism, Polygon, Avalanche, Gnosis, Arbitrum, zkEVM, and Fantom.

On August 25, the protocol released an update stating that 99.7% of the liquidity deemed vulnerable was safe, with only $565,199 of the total value locked remaining at risk.

Despite the previous mitigation measures aimed at lowering the vulnerability risks, the hacker still managed to steal more than what was deemed vulnerable, with recent wallet activity showing that the amount is almost a million.

Read how the FBI tracked down stolen crypto assets worth millions of dollars:

FBI Tracks Down 1,580 Bitcoin Stolen by North Korean Hackers

Here is how another DeFi Protocol was hacked:

Zunami Protocol Hacked, Stablecoin Pools Manipulated

This article is for information purposes only and should not be considered trading or investment advice. Nothing herein shall be construed as financial, legal, or tax advice. Trading forex, cryptocurrencies, and CFDs pose a considerable risk of loss.

Author
Brian Danga

Brian Danga, a Kenyan crypto reporter, is dedicated to delivering breaking news and updates from the cryptocurrency world. With a background as a Web3 writer and project manager, he recognizes the importance of unbiased reporting. Holding an LLB degree from the University of Nairobi, Brian's analytical skills contribute to his accurate news reporting. His personal interests include cooking, watching documentaries, reading, and engaging in intellectual discussions.