Hacker Exploits Smart Contracts Vulnerability, Steals $13 Million in Ethereum

A security flaw in Abracadabra’s smart contracts has led to a major exploit, with a hacker draining around 6,262 ETH—valued at roughly $13 million—from the protocol’s liquidity pools.

The attack, identified as a flash loan exploit, was initially flagged by blockchain security firm PeckShield.

Abracadabra’s lending system, known as “cauldrons,” integrates with GMX liquidity pools to facilitate borrowing and lending. The hacker reportedly manipulated the liquidation process in the GMX V2 integration, exploiting a weakness that allowed them to extract funds from the protocol.

Blockchain researcher Weilin Li analyzed the incident, noting that the attacker used a flash loan to trigger self-liquidation. Flash loans, a DeFi feature allowing users to borrow funds without collateral as long as they are repaid within the same transaction block, played a key role in the exploit.

READ MORE:

U.S. Authorities Retrieve $7M in Crypto Fraud Case, Highlighting Ongoing Scam Issues

The attacker borrowed Abracadabra’s stablecoin, Magic Internet Money (MIM), and executed a multi-step strategy to convert the debt into cash, profiting from liquidation incentives.

Despite the breach, a GMX developer confirmed that the attack did not compromise GMX’s core contracts. The stolen funds were later transferred from Arbitrum to Ethereum.

This isn’t the first security incident for Abracadabra. In January 2024, another exploit targeting its MIM stablecoin led to a $6.5 million loss, raising concerns over the protocol’s ongoing vulnerabilities.

Alexander Stefanov

With over 8 years of experience in the cryptocurrency and blockchain industry, Alexander is a seasoned content creator and market analyst dedicated to making digital assets more accessible and understandable. He specializes in breaking down complex crypto trends, analyzing market movements, and producing insightful content aimed at educating both newcomers and seasoned investors. Alexander has built a reputation for delivering timely and accurate analysis, while keeping a close eye on regulatory developments, emerging technologies, and macroeconomic trends that shape the future of digital finance. His work is rooted in a passion for innovation and a firm belief that widespread education is key to accelerating global crypto adoption.