DeFi protocol @makinafi has been exploited, with blockchain security firm @CertiKAlert reporting a ~$5M drain from its DUSD/USDC Curve pool. The attacker used a 280M USDC flash loan, deploying 170M to manipulate the protocol's oracle before draining the pool. Makina, which launched last year and holds $100.49M in TVL, has not formally confirmed the incident. Team statements on Discord cite an ongoing review and advise LPs to withdraw liquidity. Loss estimates vary: @GoPlusSecurity cites $5.1M, @PeckShieldAlert ~$4.13M. Notably, an MEV builder captured $4.14M of the funds. The exploit adds to the $3.41B in crypto theft recorded for 2025, a year dominated by DPRK-linked hacks totaling $2.02B
Share
Source:Show original
Disclaimer: The information on this page may have been obtained from third parties and does not necessarily reflect the views or opinions of KuCoin. This content is provided for general informational purposes only, without any representation or warranty of any kind, nor shall it be construed as financial or investment advice. KuCoin shall not be liable for any errors or omissions, or for any outcomes resulting from the use of this information.
Investments in digital assets can be risky. Please carefully evaluate the risks of a product and your risk tolerance based on your own financial circumstances. For more information, please refer to our Terms of Use and Risk Disclosure.