Summer Finance Exploited for $6 Million via Flash Loan Attack on Monday

According to blockchain security firm Blockaid, DeFi yield-optimization protocol Summer Finance was exploited for $6 million early Monday. Security analysts, including CertiK, determined that the attacker used a $65.4 million flash loan to obtain a $70.9 million redemption by manipulating the Lazy Summer Protocol's vault accounting.

The exploit targeted FleetCommander's calculation of totalAssets() across multiple vaults, allowing the attacker to distort the relationship between deposits, shares, and redemptions. The stolen funds were converted to DAI stablecoins and transferred to an attacker-controlled address. Summer Finance had not confirmed the breach through official channels as of the analyst reports.

Disclaimer: The information on this page may come from third-party sources and is for reference only. It does not represent the views or opinions of Gate and does not constitute any financial, investment, or legal advice. Virtual asset trading involves high risk. Please do not rely solely on the information on this page when making decisions. For details, see the Disclaimer.
Comment
0/400
No comments