The Luna fall-out continues. Venus Protocol on BSC and Blizz Finance on Avalanche have been drained of $13.5 and $8.3M, respectively. With shaky markets, and the first projects falling victim to the failure of LUNA and UST, how far will the damage spread?
Our house of cards is tumbling down. A multi-billion dollar protocol has fallen, crushing the hopes and dreams of thousands of users. The shockwaves have brought attention from far beyond our usual echo chamber. Now the whole world is watching. The death of Anchor Protocol has done an unprecedented amount of damage.
Fortress is in ruins after $3M was stolen by an oracle manipulation and malicious governance act. The UI is paused, but the contracts remain live. Will Fortress's ecosystem bail out users for the lost funds?
Mad Meerkat Finance (not to be confused with normal Meerkat Finance) lost $2M to a DNS exploit. Back-end attacks, front-end attacks, when will we see the end of the attacks?
In just one year, Bored Ape Yacht Club has evolved from a niche NFT, into a whole ecosystem, and a mainstream means of flexing wealth. The rise of BAYC has been unstoppable, but the recent Otherdeeds mint was far from perfect. What's next for BAYC?
Fei Rari - rekt. Seven of Rari’s Fuse pools were drained for a total of ~$80M. This isn’t the first time that Rari's got rekt - lets hope the hackers don’t go for a hat trick.
$11M was stolen from Saddle Finance yesterday, with a further $3.8M taken in a rescue by BlockSec. Despite claiming that “user funds are safe”, Saddle later clarified they were only referring to the amount that was not stolen. rekt.news can clarify that the $11 million that was stolen, is not safe.
Deus DAO double damage. In an unfortunate sequel to last month’s incident, the protocol has now lost a further $13.4M. How did the attacker bypass the new oracle?
The DeFi class of 2022 has introduced some unexpected players. The FBI have announced that a collective of North Korean state-sponsored hackers (The Lazarus Group) are responsible for multiple DeFi hacks, including the largest - the Ronin Network.
$181M jacked from Beanstalk, but the attacker only kept $76M. A malicious governance proposal was pushed through by a flash loan, and the attacker then voted to transfer all the assets to themself, but not before donating $250K to the Ukraine war fund.
An audit couldn’t protect Elephant Money from the on-chain poachers. Solidity Finance failed to notify Elephant about a vulnerability which was later exploited for $22.2M.
Inverse Finance got flipped for ~$15M. A professionally executed hack allowed an anonymous actor to manipulate the price of INV and help themself to an exclusive deal from the ETH based lending protocol.