Nexo

Start Earning Up to 16% Interest Automatically

Learn More
Home » Technology » Hacker Spends $8.3 Million in Fees to Attack Yearn Finance

Hacker Spends $8.3 Million in Fees to Attack Yearn Finance

by

Yearn Finance is the latest DeFi protocol to suffer an exploit funded by flash loans. YFI token dipped 12% after the attack.

Yearn Finance Loses $11 Million in Flash Loan Exploit
Shutterstock cover by 80's Child

Key Takeaways

  • Yearn Finance suffered an exploit in which $11 million was lost, most of it in fees.
  • The exploit has been mitigated, but YFI token saw a 12% drop.
  • Almost $100 million was lost in DeFi hacks last year.

Share this article

Yearn Finance stated that its yDAI vault was exploited for the loss of $11 million. They added that the vault is no longer vulnerable.

DeFi Hacker Makes Off With $2.7 Million

Though the attacker robbed Yearn of $11 million, exorbitant fees cost them millions to execute the hack.

They reportedly only profited $2.7 million, while liquidity pool fees and staker fees during the attack both came to $3.5 million each. Aave v2 fees amounted to $1.4 million.

The hacker took out a series of flash loans from dYdX and Aave, then used the funds as collateral for another loan on Compound. In doing this, the attacker essentially gamed the exchange rates on Yearn to accumulate CRV tokens to sell for stablecoins.

Yearn Finance stated that the community can expect a full report providing more details on the exploit.

YFI governance token fell from $34,700 to $30,500 before recovering slightly above $31,800.

Another DeFi Hack Shakes Confidence

The DeFi community has seen many hacks and exploits over the last few years, with approximately 100 million dollars lost to bad actors last year. DeFi hacks in 2020 accounted for 20% of all crypto crime.

There were over 19 major DeFi hacks last year, with $25 million lost to a drained dForce smart contract in April and $25 million lost in a flash loan exploit on the Harvest Finance platform in October.

Many of these attacks leveraged flash loans, giving the tool a rather notorious reputation.

The ease of access to flash loans for fast liquidity is a double-edged sword, granting people more financial freedom but also more liquidity to carry out major exploits like the latest yDAI vault hack.

Disclosure: The author held Bitcoin at the time of writing. Andre Cronje is an equity-holder of Crypto Briefing.

Share this article

The information on or accessed through this website is obtained from independent sources we believe to be accurate and reliable, but Decentral Media, Inc. makes no representation or warranty as to the timeliness, completeness, or accuracy of any information on or accessed through this website. Decentral Media, Inc. is not an investment advisor. We do not give personalized investment advice or other financial advice. The information on this website is subject to change without notice. Some or all of the information on this website may become outdated, or it may be or become incomplete or inaccurate. We may, but are not obligated to, update any outdated, incomplete, or inaccurate information.

Crypto Briefing may augment articles with AI-generated content created by Crypto Briefing’s own proprietary AI platform. We use AI as a tool to deliver fast, valuable and actionable information without losing the insight - and oversight - of experienced crypto natives. All AI augmented content is carefully reviewed, including for factural accuracy, by our editors and writers, and always draws from multiple primary and secondary sources when available to create our stories and articles.

You should never make an investment decision on an ICO, IEO, or other investment based on the information on this website, and you should never interpret or otherwise rely on any of the information on this website as investment advice. We strongly recommend that you consult a licensed investment advisor or other qualified financial professional if you are seeking investment advice on an ICO, IEO, or other investment. We do not accept compensation in any form for analyzing or reporting on any ICO, IEO, cryptocurrency, currency, tokenized sales, securities, or commodities.

See full terms and conditions.