KyberSwap - REKT
OG decentralised exchange KyberSwap got rekt across six chains, for a total loss of over $48M. Perhaps there’s some good news in store for KyberSwap and LPs, or is the attacker just toying with us?
HECO Bridge, HTX - REKT
It's been a rough few weeks for Justin Sun. Today, another $99M went missing as HECO Bridge and HTX (again) were hacked in short succession. His Excellency makes sure to never stay out of the spotlight for long…
Kronos Research - REKT
Deja-vu, anyone? Market maker Kronos Research lost $26M over the weekend, leading to liquidity issues on closely-associated CEX Woo X. Where have we heard that before?
dYdX - REKT
Weekend wipeout. dYdX lost 40% of its v3's insurance fund ($9M) in a ‘targeted attack' involving manipulation of Yearn’s YFI token. One exploit, two losers.
Raft - REKT
Raft was raided by on-chain pirates for $3.3M on Friday, but the loot ended up falling overboard. When braving DeFi's stormy seas, we all must choose our vessel. Would you trust a Raft?
Poloniex - REKT
Nothing like a nine-figure exchange hack to cool the pump-induced euphoria. Poloniex had its hot wallets drained of $126M today. How deep do Justin Sun's pockets go?
RIP MEV Bot 2
The sandwicher has become the sandwiched. $2M was lost on Tuesday night as an MEV bot got a taste of its own medicine. Is this a simple case of ‘you win some, you lose some’?
Onyx Protocol - REKT
Compound fork Onyx Protocol lost $2.1M to a high-profile, well-known vulnerability on Tuesday. Many protocols have fallen victim to repeated vulnerabilities so far this year. Are devs paying attention?
LastPass Users - REKT
Your keys, their coins. Since December 2022, a slow-burn wallet draining campaign has been underway, totalling over $37M so far. The thefts appear to be linked to LastPass which suffered two hacks last year. Who do you trust with your seed phrase, anon?
Unibot - REKT
Unibot's brand new router was exploited to drain at least $640k from users who had approved the contract. Sacrificing security for convenience can lead to costly lessons on trust. Will we ever learn?
Nightmare on FTM Street
Halloween came early this year for the Fantom Foundation. $7.5M was drained from multiple associated addresses, though the Foundation states that only $550k of the losses were theirs. When did DeFi become ‘trust, don’t verify’?
Platypus Finance - REKT 2
After three exploits in 8 months, Platypus is beginning to look like an endangered species. A flashloan attack has drained the Avalanche-based protocol of $2.2M. It’s been a rough week for Avalanche.