Key Takeaways
- Avalanche-based decentralized lending protocol Vee Finance has suffered a $35 million exploit.
- The attacker reportedly stole 8,804 Ethereum and around 214 Bitcoin from the protocol’s trade contract address.
- To protect users’ funds, Vee Finance has disabled all operating smart contracts on the platform.
Share this article
DeFi money market protocol Vee Finance had been exploited for $35 million worth of Ethereum and Bitcoin.
$35 Million Lost in Vee Finance Attack
Vee Finance has been hit for around $35 million in the second major attack on a DeFi platform on Avalanche.
The project announced the exploit early Tuesday, revealing that the attacker had stolen 8,804 Ethereum and around 214 Bitcoin from its trade contract address. At today’s prices, that amounts to losses of about $35 million. To prevent further losses, Vee Finance has suspended the platform contracts, as well as the deposit and borrow function.
Announcement: Our platform may have been exploited. All services have been paused. We are investigating the cause, please follow our official accounts for latest update.
Thanks!— vee.finance🔺 (@VeeFinance) September 20, 2021
In a follow-up announcement concerning the incident, the team said that no other funds or smart contracts had been affected by the attack and that it had already reached out to the attacker on-chain. The latest statement from Vee Finance reads:
“According to address monitoring, the attacker has not yet transferred or processed the attacked assets any further. We are actively dealing with it and have proactively communicated to the attacker on the chain.”
The team added that it was actively working with smart contract auditors and centralized exchanges in the industry to identify the attacker and assist in recovering the funds. Hours after the attack, Vee Finance posted a tweet addressing the attacker. “We’re willing to launch a bounty program for the bug you identified. Please connect us via email or other contact you prefer,” it read.
Vee Finance is a decentralized lending and borrowing protocol on Avalanche. It launched its mainnet on Sep. 14 and already has a total value locked of around $80 million across its collateralized lending, farming, and leveraged transactions products.
The team hasn’t yet disclosed details of the bug or otherwise elaborated on the specifics of the exploit. According to the latest statement, it plans to release an incident report upon completing a full investigation and work out a comprehensive compensation plan for the affected users.
The latest incident is believed to be the second big exploit on the Avalanche blockchain. Earlier this month, DeFi protocol Zabu Finance suffered a similar exploit whereby an attacker stole crypto assets worth around $3.2 million, causing the price of ZABU tokens to plummet to zero.
This news was brought to you by Phemex, our preferred Derivatives Partner.
Share this article
What Is Avalanche? The Layer 1 Blockchain’s Ecosystem Unpacked
As crypto heads towards a multi-chain future, Avalanche is gaining a significant amount of traction among all Layer 1 chains. Avalanche Layer 1 Explained Avalanche is a fast-growing Layer 1…
Sushi’s Initial Offering Launchpad Suffers $3M Exploit
Sushi’s token launchpad MISO has suffered a supply chain attack. The malicious actor changed a smart contract address to one they control, draining $3 million worth of Ethereum. Sushi Launchpad…
How to Trade Using the Inverse Head and Shoulders Pattern
In stock or cryptocurrency trading, you may have heard of the term “inverse head and shoulders.” Also known as the “head and shoulders bottom” formation, the inverse head and shoulders chart pattern can…
$12.4M Lost as DeFi Platform pNetwork Suffers Exploit
pNetwork is the latest cross-chain interoperability project to suffer a multi-million dollar attack. pNetwork Suffers Hack pNetwork, a cross-chain asset transfer protocol, has suffered an exploit. The DeFi project announced…