- According to DeFi Pulse, there is around $100 billion locked up in DeFi.
- In 2020, around $120 million was lost to DeFi hacks
Decentralized Finance deals with a decentralized ledger and lacks intermediaries, making it quite favorable but also risky. According to DeFi Pulse, there is around $100 billion locked up in DeFi. As the total value increases, so does the crime rate around it. Hackers have taken up the opportunity to loot investors as the business is booming.
Nevertheless, more measures have been taken to ensure the safety of investors’ assets. In 2020, around $120 million was lost to hackers. This year, the number is probably going to be much smaller, taking the current statistics.
Funds are swindled from the system by use of hacks, rug pulls, and system failure. However, these are vital areas that the platforms have decided to put significant concerns on to curb the crime. These are some of the biggest hacks that have taken place this year.
Significant DeFi hacks in 2021
Yearn finance flash loan attack
The attack on the platform happened in February this year. The hackers siphoned $11 million and managed to get away with $2.7 million as profit. They used $8.5 million as fees. The hackers used flash loans which they used to make a collateralized loan. The hacker then made a deposit in Yearns pool, which led to an inflation of DAI.
Monday 19th of April this year, a cyptojacking happened to EasiFi. The platform sits atop of the Polygon Network. A loss of $80 million worth of assets was lost to a strategic hack. The hackers took 75 million USD as assets and siphoned 6 million USD from liquidity pools. To recover the loss and prevent future similar attacks, the managing team altered the blockchain network protocol.
PAID Network major loss
The PAID network suffered a significant loss of around 180 million USD. Hackers managed impunity of 3 million USD. As if that’s not enough, the hackers minted PAID tokens worth above 180 million USD. It caused inflation in the supply of the tokens, which led to a drop in their value by about 85%. While some argue that the attack might have been a rug pull and not a hack, there are no facts attached to the claim.
Uranium Finance Token migration hack
An attack on the Binance Smart Chain network-based platform, Uranium Finance, happened during a token migration event earlier in the year. It was focused on BSC’s automated market protocol. The hacker managed to get away with 50 million USD after taking advantage of a coding error. He liquefied the process without revealing his identity.
Spartan Flash Loans hack
The Spartan protocol is also a BSC-based platform that suffered a hack in May this year. The project lost 30 million USD taken out by flash loans from PanCake. He altered the balance of assets that were locked in the liquidity pool. He withdrew the stolen funds by use of DEXs 1inch and Nerve Finance.
DeFi platforms should heighten their security measures since DeFi hacks perpetrators are busy developing better ways to manipulate loopholes in finance to their favor.
What is Decentralized Finance (DeFi)?
Bitcoin (a payment system where anyone in the world can send money to anyone else) was just the beginning of the crypto revolution. People who develop decentralized applications (or dapps for short) seek to take accessibility one step further.
Decentralized Finance (or DeFi) was pointed out as a possible solution to lower the entry barrier for those who have difficulty gaining access to bank accounts.
More recently, DeFi are being used by cryptocurrency owners for other purposes: to make more money.
What are DeFi?
As a whole, DeFi applications are financial products that operate on a public blockchain such as Ethereum.
These products are enabled, that is, they do not need third parties. Instead of financial intermediaries such as brokers and banks, everything is automated in the protocol through standalone contracts.
Do you want to take out a loan? You don’t need the bank to lend you the money. You can get a loan directly from your peers.
Ready to bet on bitcoin futures and other derivatives? Give up finding a bettor. You can let the protocol do it all.
Want to convert one asset to another? Decentralized brokers (or DEXs) can facilitate a transaction without taking a large commission.
Who invented DeFi?
There isn’t a single creator of DeFi, but dapps appeared in Ethereum, invented by Vitalik Buterin. They have since expanded to other networks that use autonomous contracts to automate transactions, including Solana, Binance Smart Chain and Avalanche.
Andreessen-Horowitz (a16z), the major venture capital firm, has led multi-million investment rounds in both the Compound and MakerDAO, protocols that are the cornerstones of the current DeFi system.
What is so special about DeFi?
DeFi have several fundamental features.
First, they are “open”, meaning you can use the applications when creating a wallet (usually without showing any identifying information such as name and address). This is theoretically (if not technologically) simpler than having a bank account.
Second, you can move funds almost instantly via a blockchain, so you don’t have to wait for the bank transfer to take place.
Third, the fees (at least for now) are much better than in traditional banks, although transaction costs vary depending on the blockchain network.
Finally, dapps work together as “Legos of money”. This “composability” allows anyone to create, modify, mix and match, link or build on any existing DeFi product without permission.
Unfortunately, this feature can be one of DeFi’s biggest weaknesses, as if a fundamental element, such as the stablecoin DAI, becomes vulnerable or becomes corrupted, the entire ecosystem built around the DAI can collapse.
What can be done with DeFi?
Borrowing and lending
If you have cryptocurrencies, you can lend them to a protocol, such as Aave and Compound, in exchange for interest and/or rewards. It is also possible to borrow cryptoactives from a protocol, which can be very useful if you want to make a trade.
But be careful! Most DeFi protocols use over-guarantees, where more money is allocated than the amount you want to borrow; if the asset’s value drops too low, the protocol can take its warrant to avoid losses.
Many DeFi users use loans as a way to earn assets through “yield farming,” in which they lock funds in an asset pool to gain rewards.
Since rates vary depending on protocol and asset, experienced yield farmers move their assets and capitalize at the best rates.
At centralized brokers such as Coinbase and Binance, you are dependent on the broker to take custody of your assets on every trade. Decentralized brokers remove the middleman so that people can trade directly with each other.
Also, DEXs such as Uniswap and PancakeSwap allow people to list new tokens for trading. Lack of verification increases risk, but it also allows people to “get early” on new assets before they hit the markets.
Sometimes you don’t need to be limited to trading specific currencies or tokens. Derivatives platforms like dYdX and Synthetix allow people to do more than spot trading.
For example, users can engage in leveraged trades, where they bet more than they have or create “synthetic assets” that mimic traditional stocks and commodities.
How are dapps developed?
Anyone capable of writing standalone contract code is capable of creating dapps. There are several tools to test and/or implement standalone contracts, including Truffe and Ganache (on Ethereum).
After downloading the framework for creating autonomous contracts, you can create a token that allows a protocol to use the blockchain network. On Ethereum, the token default is ERC-20; at Solana, SLP; and in Binance Smart Chain, BEP20.
Having a token allows the protocol to interact directly with the currency of the first-tier blockchain. But projects also promote their tokens to drive decentralization.
The Compound Loans protocol, for example, uses COMP as its governance token; those who have it make decisions about the protocol’s code and treasury allocations.
How to use DeFi products?
Anyone can use DeFi products by going to a dapp’s website and connecting with a crypto wallet, like MetaMask on Ethereum or Phantom on Solana. Most dapps do not ask users to provide personal information or register.
However, since dapps are built on a blockchain, you must use that blockchain’s currencies to pay for transactions. Ether (ETH) is required to pay transactions on the Ethereum network, just as SOL is required on the Solana blockchain.
The future of DeFi
As of November 2020, less than $20 billion worth of locked-in value on various DeFi products, primarily on Ethereum. As early as November 2021, that number had risen to nearly $98 billion.
If the trend continues and the DeFi maximalists are right, this is just the beginning of a huge DeFi wave. True advocates argue that the advantages of an open and decentralized financial system are irresistible for not capturing trillions of dollars of value.
BadgerDAO: Hackers drain $10 million in latest DeFi breach
- BadgerDAO suffers $10 million hack
- Traders were sent illicit permission notifications
- BADGER loses 15% of its value
The decentralized finance industry of the crypto sector has now become one of the most sought-after industries. This is because it provides users with anonymity, and they can carry out their activities without the prying eyes of financial institutions. Furthermore, traders are open to making huge amounts of profits in the protocols in the sector by staking or farming. However, some illicit actors would rather exploit and steal from people instead of making their profits. In yet another hack case in the DeFi sector, hackers have exploited BadgerDAO, draining $10 million from the decentralized finance protocol.
Traders got illicit permission notifications
BadgerDAO is a protocol in the decentralized finance sector that allows traders access to various lending services and takes collateral in Bitcoin. According to the platform, upon calculating funds missing through the exploits, things are sitting around $10 million. In the reports that made the rounds today, users claimed that the hack was perpetrated through BadgerDAO’s interface and not its smart contracts like most hacks. Users claimed they were sent notifications about allowing new permissions while carrying out activities on the platform. With some users allowing the permissions, the hackers could cart away various amounts of digital assets going to a worth of $10 million.
BadgerDAO’s native token plummets
After the hack, the protocol developers said that users complained that they witnessed the unauthorized drawing of funds from their accounts. However, the protocol has moved into action swiftly, putting everything on the protocol on hold at the moment. The developers have also claimed that engineers are working tirelessly to fix the issue and ascertain the level of damage that the breach may have caused. However, BadgerDAO has refused to comment on the exact amount of missing funds on the platform and the level of damage that needs repair before operations can continue.
Some analysis websites have claimed that the amount exploited from the platform is $100 million. After the hack, the native token of the platform, BADGER, dipped in value, losing about 15% of its value, and is currently trading around $22. Hacks have now become predominant in the DeFi sector as the year draws to a close. Some days ago, MonoX, another DeFi protocol, got hacked with the illicit actors carting away more than $30 million in different digital assets.
Someone Just Lost $50 Million Worth of Bitcoin to DeFi Hacker
A single user of the Badger DAO protocol has lost a whopping $50 million worth of Bitcoin to a hacker
Badger DAO, a Bitcoin-focused decentralized finance project built on the Ethereum blockchain, has been drained of roughly $100 million as a result of a nasty front-end attack.
A single user has lost 896 BTC (roughly $50 million), according to blockchain security company PeckShield.
In a Twitter statement, the team has acknowledged reports of unauthorized withdrawals, adding that its engineers are investigating the issue.
The protocol’s smart contracts have been temporarily halted.
Badger has received reports of unauthorized withdrawals of user funds.
As Badger engineers investigate this, all smart contracts have been paused to prevent further withdrawals.
Our investigation is ongoing and we will release further information as soon as possible.— ₿adgerDAO 🦡 (@BadgerDAO) December 2, 2021
According to data provided by DeFi Pulse, Badger DAO is the 23rd biggest DeFi protocol on Ethereum. Last month, it topped $1 billion in total value locked.
Badger DAO allows users to earn passive income with Bitcoin by converting it to either Wrapped Bitcoin (WBTC) or renBTC and depositing it into Sett vaults that algorithmically allocate and autocompound users’ yields.
The hack happened just days before the yield vault protocol’s one-year anniversary.
BADGER, the native token of the Badger DAO project, is down 15.3% on the news, according to CoinGecko data.