Ethereum-based stablecoin protocol Beanstalk loses about $182 million to exploit

Hacks • April 17, 2022, 9:38AM EDT
the block

Beanstalk, a credit-focused stablecoin protocol built on Ethereum, was exploited Sunday morning.

The protocol lost about $182 million in various crypto assets, according to blockchain findings of security firm PeckShield.

Meanwhile, the hacker got away with $80 million that was funneled through Tornado Cash, a cryptocurrency mixer protocol allowing private transactions, PeckShield said.

THE SCOOP

Keep up with the latest news, trends, charts and views on crypto and DeFi with a new biweekly newsletter from The Block's Frank Chaparro

By signing-up you agree to our Terms of Service and Privacy Policy
By signing-up you agree to our Terms of Service and Privacy Policy

The attacker obtained  24,830 ETH -- an amount worth roughly $75.8 million as of press time. The remainder of the exploited funds were in the form of drained liquidity connected to the protocol's governance token.

As for how the exploit was carried out, signs indicate that the exploiter used an accumulation of governance tokens -- obtained through a flash loan --  to create a fake protocol improvement proposal to gift funds held in Beanstalk to an address used to raise donations for the government of Ukraine. 

Update: This article has been amended to clarify that the hack amount was $182 million based on the latest findings.

More by Michael McSweeney