defi project beanstalk loses flash loan

In each attack, a penniless attacker instantaneously borrowed hundreds of thousands of dollars of (5)…

A flash loan attack occurs when the borrower manipulates the markets as the loan is taking place, driving the value of the borrowed token (6)…

3. Flash Loan Attack – CYBAVO

Flash loan attacks refer to a smart contract exploit where an attacker takes out a flash loan from a DeFi protocol, uses the capital that they’ve borrowed, (7)…

In a flash loan attack, a hacker borrows a large amount of money from a protocol and then uses that money to destabilize the protocol.

Defi project beanstalk loses $182 million in flash loan attack

As smart-contract auditor BlockSec explained, the proposal contained a malicious smart contract to be executed when the proposal passed, which would transfer the funds from the protocol into the thief’s control. The thief waited a day until they could deposit the flash-loaned tokens to gain the necessary voting power to execute the contract, obtained the funds, and repaid the loan.

Beanstalk did not immediately respond to The Register‘s inquiries.
It’s feared the project is now dead because without any other financial backing, nor bailout on the horizon, and with all of its collateral gone, it’s game over, with Bean holders left out of pocket to the tune of thousands of dollars.

Defi project beanstalk loses flash loan

Flash-Loan Attacks: (36)…

PancakeHunny Suffers Flash Loan Attack and Cataclysmic …

PancakeHunny Suffers Flash Loan Attack and Cataclysmic Price Drop Latest victim of an attack on Binance Smart Chain sent a shock through the (37)…

Using ThunderStorm, the authors find 22244 flash loan … can analyze internal transactions and functions of existing flash loan attacks.(38)…

(1). What Is a Flash Loan Attack? – Halborn (2). What Are Flash Loan Attacks — The Phenomenon Behind The … (3).
Beanstalk DeFi project robbed of $182 million in flash loan … (4). Flash loan attack on One Ring protocol nets crypto-thief $1.4 … (5).
The DeFi ‘Flash Loan’ Attack That Changed Everything (6). Flash Loan Exploit Whips Cream Finance For $130 Million (7).
Flash Loan Attack – CYBAVO (8). What Is Flash Loan Attack and How to Prevent It? – Coinspeaker (9).

Defi project beanstalk loses flash loana

On April 17th, the decentralized finance (DeFi) project Beanstalk Farms was exploited for $182 million after an attacker mounted a lightning-fast hostile takeover, buying a controlling stake of tokens and immediately voting to send themself all of the funds.

The incident sparked discussion around “governance attacks,” a way of manipulating blockchain projects that use decentralized governance structures by gaining enough voting rights to reshape the rules.

In the wake of the attack, chat logs and video evidence show that the founders were warned about the risk of exactly this kind of attack, but they dismissed community members’ concerns.

The Beanstalk exploit was made possible by another DeFi mechanism known as a “flash loan,” which allows users to borrow large amounts of cryptocurrency for very short periods of time.

Defi project beanstalk loses flash loans

Like all other investors in Beanstalk, we lost all of our deposited assets in the Silo, which was substantial,” the founders wrote.

It is not yet clear whether investors who lost funds will be reimbursed – or if so, how and to what extent. Beanstalk did not reply to an e-mail from Bloomberg seeking comment.

Unlike traditional lending, which requires a loan to be secured with a collateral or credit checks, DeFi smart contracts allow users to borrow huge sums of stablecoins in what are known as flash loans, without any form of security.

Flash loans, where the entire process of borrowing and returning the loan happens in a single transaction on the blockchain, are fairly popular among arbitrage traders.

Flash loans have also turned out to be a soft target for exploits, as any lapse in a smart contract code lets an attacker manipulate the protocol and drain millions.

Defi project beanstalk loses flash loaner

Uniswap and the open-source liquidity protocol Aave. According to PeckShield, the hacker used Tornado Cash, which enables privacy in cryptocurrency transactions by concealing the link between a crypto address and destination.

Beanstalk said it temporarily disabled its protocol governance and paused Beanstalk while it worked on addressing the DeFi exploit.

“Approximately $76 million was stolen from the protocol’s liquidity pools.
The team has since burned the remaining Beans in the exploiter contract,” said Beanstalk about the actions it took following the attack.

The company says it is working on a safer version of Beanstalk, and on Sunday asked users to help: “As a decentralized project, we are asking the DeFi community and experts in chain analytics to help us limit the exploiter’s ability to withdraw funds via [centralized exchanges].

  • Cyber-attackers stole $80 million (R1.2 billion) from stablecoin protocol Beanstalk in a massive flash-loan swindle Sunday.
  • As a result, the credit-focused decentralised finance protocol lost its $182 million in total value locked.
  • “We lost all of our deposited assets in the Silo, which was substantial,” the founders said.
  • For more stories, go to
  • Cyber-attackers targeted ethereum-based stablecoin project Beanstalk Farms and made away with roughly $80 million (around R1.2 billion) in tokens in one of the largest flash-loan exploits ever.

    As a result, the credit-focused decentralised finance protocol lost its $182 million in total value locked, meaning the overall value of crypto assets deposited.

    Beanstalk Farms, a decentralized finance (DeFi) platform, said it lost all of its $180 million collateral over the weekend.

    Someone managed to game Beanstalk by investing enough funds to gain control of the system and promptly drained its holdings.

    Beanstalk works by letting people buy beans, which are pegged at about $1 each, and earn interest. Crucially, the system was designed so that its participants can vote on changes to the platform, with the strength of their vote determined by how invested they are in the platform.

    Over the weekend, someone took out a brief but massive loan to acquire enough voting rights to make the necessary governance changes to siphon off all of Beanstalk’s reserves.

    Attacking the DeFi Ecosystem with Flash Loans for Fun and … (23). Flash Loan Attack Costs Ethereum-based Saddle Finance $10 … (24).

    This Billion-Dollar Crypto Loan Is Easy to Get, but Gone in a … (25). What Are Flash Loans in DeFi? – Binance Academy (26).

    Etherum-Based Saddle Finance Loses $10 Mln In Flash Loan … (27). Beanstalk loses $182m in huge flash-loan crypto heist – The … (28).

    What are Flash Loans in Decentralized Finance? – Analytics … (29). Beanstalk Faces a Flash Loan Attack that Sees About $180M … (30).

    DeFi Hack: Cream Finance Lost $130M in a Flash Loan Attack (31). Deus DAO suffers another flash loan exploit, loses over $16M (32).

    Flashot: A Snapshot of Flash Loan Attack on DeFi Ecosystem (33). Deus Finance Exploited for $13.4M in Flash Loan Attack – The … (34).

    Beanstalk cryptocurrency project robbed after hacker votes to … (35).

    This case was not a technical hack, per se, but an exploitation of a design flaw in the governance procedure, which a project spokesperson addressed on Monday, CoinTelegraph reported.

    “It’s unfortunate that the same governance procedure that put beanstalk in a position to succeed was ultimately its undoing,” the spokesperson said.

    In decentralised finance, so-called flash loans are made when users borrow massive sums of stablecoins without any collateral — something that isn’t possible in traditional lending.

    The lending and borrowing process is meant to happen within a single transaction on the blockchain instantaneously and is not uncommon among arbitrage traders.

    In the case of the Beanstalk hack, the Publius team admitted that they had not included any provision to mitigate the possibility of a flash loan attack, although presumably this was not apparent until the situation occurred.

    A request for comment (sent to the Publius team through Discord) has not yet received a response as of press time.

    Brian Pasfield, CTO at cryptocurrency lending platform Fringe Finance, said that decentralized governance structures (known as DAOs) could also create problems.

    “DAO governance is currently trending in DeFi,” Pasfield said. “While it is a necessary step in the decentralization process, it should be done gradually and with all the possible risks carefully weighted.

    Similar Posts:

    Leave a comment