App Store
Wallet

Ethereum DeFi Platform Loses $4.1M In Flash Loan Attack

profile-kostiantyn-tsentsura
Kostiantyn Tsentsura1 hour ago
#Hackers#Ethereum
Ethereum DeFi Platform Loses $4.1M In Flash Loan Attack

Ethereum DeFi platform Makina Finance lost 1,299 ETH worth approximately $4.1 million on January 20 after hackers manipulated price oracles on its DUSD-USDC liquidity pool hosted on Curve Finance.

An MEV builder frontran the attack and captured the majority of stolen funds, complicating recovery efforts for the yield management protocol that launched in February 2025.

Blockchain security firm PeckShield first detected the exploit at 03:40:35 UTC, with the attacker converting stolen tokens into ETH across two wallets that currently hold the assets.

What Happened

The attacker borrowed a flash loan of 280 million USDC, using 170 million to manipulate the MachineShareOracle that determines prices for the Dialectic USD and Dialectic USDC stablecoin pool.

After artificially inflating pool prices, the attacker traded 110 million USDC against the manipulated pool to drain 1,299 ETH before repaying the flash loan.

PeckShield confirmed the attack exploited a price manipulation vulnerability, with the perpetrator adding liquidity immediately before inflating prices and withdrawing with profits.

However, an MEV builder address starting with 0xa6c2 frontran the transaction that drained the pool, capturing approximately $4.14 million of the stolen funds.

Read also: Japan Bond Yields Hit Multi-Decade Highs, Threatening Global Crypto Liquidity

Current Status

The stolen ETH currently sits in two Ethereum addresses: wallet 0xbed2...dE25 holding $3.3 million and wallet 0x573d...910e containing $880,000.

Makina activated security mode on all its smart vaults and advised DUSD Curve pool liquidity providers to withdraw remaining funds.

The platform confirmed the exploit affected only DUSD liquidity provider positions on Curve, with other assets and deployments remaining unaffected.

Security firms including PeckShield, ExVul, and TenArmor urged users to revoke smart contract permissions and avoid interacting with Makina contracts pending investigation.

DeFi Security Context

Flash loan exploits remain common despite improved security, with decentralized exchange Bunni losing $8.4 million in October 2025 and Shibarium suffering a $2.4 million attack in September.

However, Chainalysis data show DeFi hack losses remained suppressed throughout 2025 even as total value locked reached $119 billion, representing a departure from historical patterns where capital influxes correlated with increased attacks.

Total cryptocurrency theft reached $3.4 billion in 2025, but the attack focus shifted toward centralized exchanges and personal wallets rather than DeFi protocols.

Read next: Russian Lawmakers Propose Harsh Mining Penalties: Individuals Face $1,500 Fines, Companies $100K+

Disclaimer and Risk Warning: The information provided in this article is for educational and informational purposes only and is based on the author's opinion. It does not constitute financial, investment, legal, or tax advice. Cryptocurrency assets are highly volatile and subject to high risk, including the risk of losing all or a substantial amount of your investment. Trading or holding crypto assets may not be suitable for all investors. The views expressed in this article are solely those of the author(s) and do not represent the official policy or position of Yellow, its founders, or its executives. Always conduct your own thorough research (D.Y.O.R.) and consult a licensed financial professional before making any investment decision.
Latest News
Show All News
The Economist Who Sounded The Alarm Before 2008 Now Warns Of A Far Bigger Crisis
17 minutes ago
Economist Peter Schiff said a financial crisis more severe than the 2008 collapse is approaching this year, arguing that U.S. economic policy has fundamentally misread global capital dynamics and risk
Dogecoin Foundation Unveils Gig Economy Payment App With "Hustles" Marketplace
19 minutes ago
House of Doge, the corporate arm of the Dogecoin Foundation, announced a mobile payment application targeting gig workers and side businesses with a "Hustles" marketplace where artists, lawn care oper
Treasury Secretary Confirms U.S. Will Add All Seized Bitcoin to Digital Asset Reserve
2 hours ago
Treasury Secretary Scott Bessent confirmed on January 20 that the U.S. government will add all seized Bitcoin to its digital asset reserve, marking a fundamental policy shift from the historical pract
Related News
Attacker Drains $4.2M From Makina DUSD Pool Using 280M USDC Flash Loan
10 hours ago
Makina Finance, a decentralized finance protocol on Ethereum, lost approximately $4.2 million after an attacker exploited a vulnerable oracle mechanis
April 2025 Crypto Hacks Hit $92.5M: Ethereum, BNB Chain, and Base Targeted
May 05, 2025
Decentralized finance (DeFi) protocols lost $92.5 million across 15 separate hacking incidents in April 2025. According to the latest monthly report f
$1M Moonwell Exploit Exposes Critical Oracle Vulnerabilities in DeFi Protocols
Nov 04, 2025
Decentralized finance platform Moonwell suffered a $1 million exploit on November 4, 2025, exposing critical vulnerabilities in how DeFi protocols rel
Sui Blockchain DeFi Exploit: $200M Lost in Cetus Oracle Manipulation
May 23, 2025
A major security breach has impacted the Sui blockchain ecosystem, with attackers siphoning off an estimated $200 million from liquidity pools on Cetu
Balancer DeFi Protocol Hit by $70M Exploit as Attackers Drain Ethereum Vaults
Nov 03, 2025
Balancer, one of the largest decentralized finance protocols with over $750 million in total value locked, has become the latest victim of a sophistic
Related Research Articles
Why DEX Exploits Cost $3.1B in 2025: Analysis of 12 Major Hacks
Oct 27, 2025
Lately the cryptocurrency world witnessed another devastating lesson in the fragility of decentralized finance. BunniDEX, a promising decentralized
Binance Under Siege? Theory Behind $1B Crypto Meltdown Explained
Oct 13, 2025
Billions in losses. Three collapsing assets. An eight-day window of vulnerability. Inside the theory that last week's historic crypto meltdown wasn't
The Liquidity Black Box: How Market Makers Shape Prices on CEXs and DEXs
Sep 27, 2025
Professional crypto market-making now represents a sophisticated ecosystem where firms deploy advanced algorithms, massive capital, and cutting-edge t
Trump 100% China Tariff: How One Announcement Liquidated $19 Billion in Crypto
Oct 11, 2025
President Trump's 100% tariff announcement triggered the largest liquidation event in crypto history - and it wasn't even close. It took just eight h
The 10 Defining Battles That Shaped Crypto: How Major Conflicts Built Today's Industry
Sep 23, 2025
The cryptocurrency industry wasn't born in a boardroom or laboratory - it was forged in the fires of ideological warfare, market crashes, and regulato
Related Learn Articles
Beginner's Guide to DeFi Lending: Step-by-Step Tutorial for Earning Passive Income with Crypto
Aug 11, 2025
The decentralized finance revolution has fundamentally transformed how individuals can earn interest on their cryptocurrency holdings. DeFi lending pl
How Mining Firms Are Leveraging MEV for Market Control
Apr 29, 2025
Blockchain networks were originally conceived as trustless systems where miners and validators served as neutral arbiters of transaction ordering, rew
What Is Flash Loan Arbitrage? A Guide to Profiting from DeFi Exploits
Aug 12, 2025
Flash loans represent one of decentralized finance's most innovative and controversial mechanisms, enabling traders to borrow massive amounts without
How Do Synthetic Stablecoins Work? USDe, GHO, and crvUSD Explained
Oct 13, 2025
While fiat-backed tokens like USDC and USDT still dominate with their combined $250 billion market capitalization, a new category of dollar-tracking a
DeFi Portfolio Protection: 10 Tips for Managing Risk in Your DeFi Investments
Apr 27, 2025
The decentralized finance (DeFi) ecosystem has transformed from a niche experiment to a sophisticated financial infrastructure managing hundreds of bi
Ethereum DeFi Platform Loses $4.1M In Flash Loan Attack | Yellow.com