$128M Exploit Puts Spotlight Back on DeFi Security Flaws

Article Details

Written by

Alexander Zdravkov

Last Updated: Nov 3, 2025

Time to Read: 2 min

The decentralized finance platform Balancer is facing what appears to be one of its largest-ever security incidents, with blockchain analysts estimating that more than $128 million in assets have been siphoned from its vaults.

Blockchain tracking firm PeckShield was among the first to flag suspicious outflows from a Balancer-controlled address on Ethereum, where large transfers of WETH, osETH, and wstETH were observed. Combined, these movements suggest tens of millions of dollars have been withdrawn to external wallets without authorization.

Shortly after the alerts surfaced, Balancer acknowledged the issue on X, stating that its team is investigating “a potential exploit impacting Balancer v2 pools.” The protocol said both engineering and security divisions are working to verify details and promised to release updates as soon as the situation becomes clearer.

Early assessments from Mikko Ohtamaa, CEO of Trading Strategy, point to a flaw in one of Balancer’s smart contract checks as a likely culprit. He warned that similar vulnerabilities might exist in older forks of the protocol, potentially expanding the scope of losses. PeckShield later confirmed that the attack is active across several chains where Balancer is deployed.

The incident has already triggered panic withdrawals. According to Lookonchain, a whale wallet dormant for over three years withdrew approximately $6.5 million in assets within minutes of the exploit being detected.

Balancer, launched in 2020, functions as a decentralized exchange and automated portfolio manager, allowing users to trade and provide liquidity through token pools that rebalance automatically. As of this week, the platform held around $350 million in total value locked on Ethereum,.

News of the exploit sent Balancer’s native token (BAL) sliding more than 4% as investors reacted to the unfolding breach. Analysts are now watching closely to determine the full extent of the losses and whether the protocol can contain the vulnerability before further damage occurs.

Leave Reaction

Alexander Zdravkov

Alexander has been working in the crypto industry for three years, during which time he has established himself through his active participation in monitoring market dynamics and technological innovations. His interest in cryptocurrencies and new technologies is not just a professional commitment, but a deep personal passion. He follows the news in the sector daily, analyzes trends, and is excited about every new step in the development of blockchain solutions. His enthusiasm drives him to continuously learn and share knowledge, as he sees the future in digital finance and its role in global transformation.

About Author

Alexander Zdravkov

1563 articles Since 2024