Balancer’s decentralized finance protocol suffered a $116 million exploit in what security experts are calling one of the most sophisticated attacks of 2025. The hack specifically targeted Balancer’s v2 Stable Pools and Composable Stable v5 pools through a complex combination of transaction techniques. Blockchain security firm Cyvers confirmed the advanced nature of the attack that shook DeFi markets this week.
about Balancer DeFi Protocol Loses $116M in Sophisticated HackCyvers
0 in Finance and 0 in Crypto last weekStream Finance Loses $93M, Stablecoin Crashes 77%
Stream Finance has plunged into crisis after disclosing that an external fund manager lost approximately $93 million in user assets, triggering an immediate suspension of all withdrawals and deposits. The incident caused the protocol’s flagship stablecoin, Staked Stream USD (xUSD), to depeg dramatically, plummeting 77% to just $0.26 and exposing nearly $285 million in direct debt exposure across multiple lending protocols, revealing critical vulnerabilities in DeFi’s interconnected ecosystem.
about Stream Finance Loses $93M, Stablecoin Crashes 77%Balancer Exploit: $128M Loss, Berachain Hard Fork
The decentralized finance ecosystem is reeling from a massive $128 million exploit targeting Balancer, a leading automated market maker protocol, with the fallout forcing emerging blockchain Berachain to halt its network and prepare for a controversial hard fork. The security breach, which exploited a critical vulnerability in Balancer V2’s liquidity pools, has triggered significant token price declines and reignited debates about blockchain immutability versus user protection in the crypto space.
about Balancer Exploit: $128M Loss, Berachain Hard Fork$21M Hyperliquid Hack: Private Key Leak Blamed
A Hyperliquid user suffered a devastating $21 million cryptocurrency theft after their private keys were compromised, highlighting critical vulnerabilities in personal crypto security practices. Blockchain security firm PeckShield confirmed the attacker gained full wallet control and bridged the stolen funds to Ethereum, with $17.75 million worth of DAI stablecoin among the assets moved to the Ethereum network.
about $21M Hyperliquid Hack: Private Key Leak BlamedNorth Korean Hackers Steal $21M from SBI Crypto Mining Pool
Japanese financial giant SBI Holdings has suffered a devastating security breach as North Korean-linked hackers stole $21 million from its cryptocurrency mining subsidiary, SBI Crypto. Blockchain investigator ZachXBT and security firm Cyvers detected suspicious outflows of Bitcoin, Ethereum, Dogecoin, Litecoin, and Bitcoin Cash on September 24, 2025, with the stolen funds rapidly funneled through instant exchanges and deposited into the sanctioned privacy mixer Tornado Cash. The attack exhibits multiple technical similarities to previous operations by the notorious North Korean Lazarus Group, highlighting critical security vulnerabilities as traditional financial institutions expand into cryptocurrency services.
about North Korean Hackers Steal $21M from SBI Crypto Mining PoolCrypto Hacker Loses $50M to Phishing After UXLINK Exploit
In a dramatic twist of crypto justice, the hacker who successfully exploited Web3 social platform UXLINK for millions has become the victim of an even larger theft. Just days after compromising UXLINK’s smart contract, the attacker lost approximately 542 million UXLINK tokens—valued at over $50 million—to a sophisticated phishing scheme that security experts attribute to notorious draining-as-a-service provider Inferno Drainer. The incident highlights both the sophistication of modern crypto threats and the ironic vulnerability of even successful hackers to basic security traps.
about Crypto Hacker Loses $50M to Phishing After UXLINK ExploitVenus Protocol Paused After $27M Phishing Attack
On September 2, Venus Protocol paused operations after a targeted phishing attack resulted in the loss of nearly $27 million from a single user’s wallet. Security firm Cyvers identified the suspicious transaction involving multiple assets including vUSDT, vUSDC, and BTCB. Experts confirmed the Venus protocol itself remained uncompromised, with the attack instead exploiting malicious transaction approvals granted by the victim. The attacker used sophisticated methods including potential computer poisoning and complex funding routes through Monero exchanges. While initial reports indicated $27 million in losses, subsequent investigations suggest the actual figure may be closer to $20 million as coordination continues with the affected large holder.
about Venus Protocol Paused After $27M Phishing AttackCrediX Recovers $4.5M Stolen Crypto in Exploiter Deal
CrediX, a money market abstraction infrastructure protocol, has recovered $4.5 million in stolen crypto following a security breach earlier this week. The exploit involved assets bridged to Ethereum via a Tornado Cash-funded wallet, as identified by blockchain security firm Cyvers. In an unexpected resolution, CrediX reached a private settlement with the attacker, who agreed to return the funds in exchange for an undisclosed payment from the protocol’s treasury. The team confirmed refunds for affected users within 48 hours, showcasing a rare case of successful asset recovery in decentralized finance.
about CrediX Recovers $4.5M Stolen Crypto in Exploiter DealSuperRare Staking Bug Leads to $731K RARE Token Theft
SuperRare, an NFT trading platform, suffered a $731,000 exploit due to a basic smart contract bug in its staking system. The flaw, detected by Cyvers, allowed any address to modify the Merkle root—a critical data structure for staking balances—instead of restricting access to authorized addresses. Experts emphasize that standard testing practices, such as unit tests or even AI tools like ChatGPT, could have identified the vulnerability before exploitation. The incident underscores the persistent security challenges in decentralized finance (DeFi) and NFT platforms.
about SuperRare Staking Bug Leads to $731K RARE Token TheftCoinDCX Denies Coinbase Buyout Rumors After Cyber Heist
Indian crypto exchange CoinDCX has dismissed reports of acquisition talks with US-based Coinbase, with CEO Sumit Gupta calling the claims ‘false rumors.’ The speculation followed a $44 million security breach allegedly orchestrated by North Korea’s Lazarus Group, which exploited API keys or backend misconfigurations. Despite the attack, CoinDCX remains a major player in India’s crypto market, managing over $161 million in assets. The exchange has launched an $11 million bounty program to recover stolen funds. Meanwhile, Coinbase, which re-entered India in March 2024, has not commented on expansion plans.
about CoinDCX Denies Coinbase Buyout Rumors After Cyber HeistCoinDCX Offers $11M Bounty After $44M Hack
CoinDCX disclosed a $44 million breach on July 19, targeting an operational liquidity account but sparing customer wallets. The exchange launched a 25% bounty (up to $11M) for recovery assistance, with blockchain analysts tracing funds to Ethereum and Solana addresses. The attack, potentially linked to North Korea’s Lazarus Group via Tornado Cash, mirrors past exploits like WazirX’s $235M hack in 2022. CoinDCX has engaged cybersecurity firms and regulators, emphasizing the need for stronger safeguards in centralized exchanges. Industry experts call for decentralized custody solutions and regulatory collaboration to mitigate future risks.
about CoinDCX Offers $11M Bounty After $44M HackCoinDCX Offers $11M Bounty After $44M Lazarus Hack
CoinDCX, an Indian crypto exchange, was exploited for $44 million in an attack attributed to North Korea’s Lazarus Group. Blockchain security firm Cyvers identified the hackers’ use of cross-chain bridges and Tornado Cash to obscure transactions, a signature tactic of the group. The breach involved unauthorized access to internal liquidity accounts, likely via exposed API keys or misconfigurations. Despite segregated user funds, the attackers leveraged operational privileges to move assets between Solana and Ethereum. In response, CoinDCX launched a 25% bounty (up to $11M) for recovery assistance, while assuring users their assets remain safe. Lazarus Group has stolen over $1.6B in 2023 alone, including the Bybit hack.
about CoinDCX Offers $11M Bounty After $44M Lazarus Hack