Nexo

We’re Giving out 10 BTC in Rewards until the Bitcoin Halving

Learn More
Home » Analysis » Pickle Finance Devs Patch Code Following $19.7 Million Hack

Pickle Finance Devs Patch Code Following $19.7 Million Hack

by

DeFi aggregator Pickle Finance was the latest victim of a flash loan hack, costing liquidity providers $19.7 million. 

Pickle Finance Devs Patch Code Following $19.7 Million Hack
Shutterstock by Nalaphotos

Key Takeaways

  • On Nov. 21, hackers drained Pickle Finance’s pDAI Pickle Jar for 19,759,355 DAI. 
  • The sophisticated nature of the attack took hours for developers to identify and patch the code.
  • The price of the protocol’s token PICKLE dropped over 60% after the hack.

Share this article

Popular DeFi yield aggregator Pickle Finance was hacked Saturday for 19.7 million DAI. The unaudited DeFi protocol had gained much popularity among DeFi investors for its innovative earning strategies. 

Pickle Finance Shaken by Exploit   

The DeFi protocol Pickle Finance earns from arbitrage trading stablecoins between various platforms. The design is similar to yEarn’s vaults, which requires liquidity providers (LPs) to deposit their stablecoins in so-called “PickleJars.”  

The hackers attacked the pDAI PickleJar linked to Compound in what has been described as a “complicated attack” by Pickle developers. 

Reportedly, it took the developing team three hours to identify the source of the attack. The disputed part of the code was revoked on Nov. 22, removing the critical piece of future exploits. 

After the hack, the PICKLE token price dropped 62.3%, from $23 to lows of $8.7. It bounced back to $12.5 after implementing a fix but continues to trade below September and October lows of $15.  

PICKLE price chart
PICKLE price chart. Source: Coingecko

The total value locked (TVL) in the protocol at press time is $26.3 million

They have resumed deposits to other jars in the latest update but have implored users to “refrain from depositing in the DAI Jar for now.“ 

The detailed postmortem revealed further vulnerabilities, which the team expects to fix “in the coming days and weeks.”

Share this article

The information on or accessed through this website is obtained from independent sources we believe to be accurate and reliable, but Decentral Media, Inc. makes no representation or warranty as to the timeliness, completeness, or accuracy of any information on or accessed through this website. Decentral Media, Inc. is not an investment advisor. We do not give personalized investment advice or other financial advice. The information on this website is subject to change without notice. Some or all of the information on this website may become outdated, or it may be or become incomplete or inaccurate. We may, but are not obligated to, update any outdated, incomplete, or inaccurate information.

Crypto Briefing may augment articles with AI-generated content created by Crypto Briefing’s own proprietary AI platform. We use AI as a tool to deliver fast, valuable and actionable information without losing the insight - and oversight - of experienced crypto natives. All AI augmented content is carefully reviewed, including for factural accuracy, by our editors and writers, and always draws from multiple primary and secondary sources when available to create our stories and articles.

You should never make an investment decision on an ICO, IEO, or other investment based on the information on this website, and you should never interpret or otherwise rely on any of the information on this website as investment advice. We strongly recommend that you consult a licensed investment advisor or other qualified financial professional if you are seeking investment advice on an ICO, IEO, or other investment. We do not accept compensation in any form for analyzing or reporting on any ICO, IEO, cryptocurrency, currency, tokenized sales, securities, or commodities.

See full terms and conditions.