Balancer announces $27M may be at risk due to vulnerability in DeFi pools

cyptouser1 years agoDecentralized Exchanges278

Balancer announces $27M may be at risk due to vulnerability in DeFi pools

The DeFi platform Balancer (BAL) disclosed a vulnerability affecting several of its pools in a statement published on Aug. 22.

In that post, Balancer Labs said that the vulnerability in question had not been exploited and said that 80% of the issue had been mitigated. However, the project acknowledged that a small amount of funds — amounting to about 4% of its total value locked (TVL) — are still at risk.

Data from DefiLlama says that Balancer currently has a TVL of $691 million, meaning that roughly $27 million is at risk.

In response to the issue, Balancer’s Emergency SubDAO enabled proportional exit from affected pools and paused certain pools. Balancer urged users to migrate funds to safe pools or withdraw their funds; it also urged liquidity providers to exit at-risk pools.

Balancer has seen significant withdrawals following its announcement. Roughly $149 million has been withdrawn from Balancer’s TVL over the past several hours, though it is unclear whether those funds were removed from the at-risk pools.

The project has not yet published a full post-mortem of the vulnerability, nor has it revealed the source from which the first report originated.

DeFi platforms at risk of exploits

Balancer has been hacked or put at risk in other incidents. One attacker stole more than $500,000 by targeting Balancer in 2021, according to Peckshield.

One Balancer pool was also affected by broader attacks on Euler Finance in March 2023, at which time Balancer paused affected assets and pools; though $11.9 million of funds were affected, it is unclear if this amount was ultimately lost. Balancer also disclosed an exploit and advised certain liquidity providers to exit pools in January 2023.

DeFi platforms overall have seen millions of dollars worth of theft this year. One recent analysis suggests that $77 billion has been stolen in 2023 to date.


Tag: DEFIHACKS
The content on this website comes from the Internet. Due to the inconvenience of proofreading the authenticity and accuracy of the copyright or content of some content, it may be temporarily impossible to confirm the authenticity and accuracy of the copyright or content. For copyright issues or other issues caused by this, please Call or email this site. It will be deleted or changed immediately after verification.

related articles

New Russian malware, dubbed ‘Infamous Chisel,’ identified targeting Binance, Coinbase, and Trust wal

Newly discovered malware dubbed “Infamous Chisel” targets crypto wallets and other Android apps, acc...

$700K in crypto and NFTs lost in phishing attack through Vitalik Buterin’s hacked X account

Ethereum co-founder Vitalik Buterin’s account on X (formerly Twitter) was compromised late...

New Google cloud sync feature implicated in $15M crypto heist at Ripple-owned Fortress Trust

Software development company Retool has blamed the hack of crypto custodian Fortress Trust on a rece...

Web3 casino payment provider hack grows larger with discovery of $37M

It has been reported that an additional $37 million has been discovered in the recent web3 casino pa...

Crypto betting platform Stake silent on reported $41M fund drain

Crypto betting platform Stake silent on reported $41M fund drain

Several blockchain security firms, including Peckshield, have reported the suspicious movements...

FBI identifies North Korea’s Lazarus Group as culprit in $41M Stake exploit

The FBI revealed in a Sept. 6 report that the North Korean hacking entity Lazarus Group wa...