Balancer Protocol hit by cyberattack
Incident
Summary
Hide ▲
Show ▼
Balancer Protocol confirmed a protocol exploit in its V2 Compostable Stable Pools, with losses reportedly exceeding $128 million. The incident was confirmed at 7:48 AM UTC and was said to affect only the V2 component, not V3 or other Balancer pools. Early analysis points to a possible precision rounding error in Vault swap calculations, while other researchers suspect authorization and callback handling failures. Balancer also warned users about possible scams and phishing attempts in the aftermath.
Related Happenings
Balancer Vault rounding-down precision loss actively exploited security flaw
Vulnerability
First: 04.11.2025 11:45
Last: 04.11.2025 11:45
Sources 1
How related:
“Each calculation rounded down, affecting token prices. The batchSwap function amplified this vulnerability, allowing attackers to manipulate prices through crafted parameters,” explained GoPlus Security.
About this happening:
**Balancer Vault** has a **rounding-down precision loss** that attackers exploited through **batchSwap**, creating **price manipulation** risk in Balancer calculations. The flaw w...
Balancer Vault rounding-down precision loss actively exploited security flaw
VulnerabilityHow related: “Each calculation rounded down, affecting token prices. The batchSwap function amplified this vulnerability, allowing attackers to manipulate prices through crafted parameters,” explained GoPlus Security.
About this happening: **Balancer Vault** has a **rounding-down precision loss** that attackers exploited through **batchSwap**, creating **price manipulation** risk in Balancer calculations. The flaw w...
Venus Protocol user hit by cyberattack
Incident
First: 23.09.2025 20:13
Last: 23.09.2025 20:13
Sources 1
About this happening:
The **Venus Protocol user** suffered a **social engineering attack** on **September 2, 2025**, after attackers used a **compromised Zoom client** to gain access. The malicious tra...
Venus Protocol user hit by cyberattack
IncidentAbout this happening: The **Venus Protocol user** suffered a **social engineering attack** on **September 2, 2025**, after attackers used a **compromised Zoom client** to gain access. The malicious tra...
Timeline
-
03.11.2025 23:53 2 articles · 6mo ago
Balancer confirms exploit against V2 Compostable Stable Pools
Initial DisclosureBalancer Protocol confirmed an exploit against its V2 Compostable Stable Pools at 7:48 AM UTC, said the issue did not affect other Balancer pools including V3, and warned users to stay alert for scams or phishing attempts while the team worked with security researchers and prepared a full post-mortem. Losses were reportedly estimated at more than $128 million.
Show sources
- Hacker steals over $120 million from Balancer DeFi crypto protocol — www.bleepingcomputer.com — 03.11.2025 23:53
- DeFi Protocol Balancer Loses Over $120m in Cyber Heist — www.infosecurity-magazine.com — 04.11.2025 11:45