Attackers drained nearly $2.1 million from Thetanuts Finance’s neglected vault in the latest decentralized finance (DeFi) exploit. Whitehat’s defenders recovered about $2 million in options tokens.
The hack hit an old vault that the protocol had already migrated from years ago. Thetanuts said the vault has no connection to its active products or existing systems.
Inside Thetanuts Vault DeFi Exploit
Blockchain security companies reported the incident on X (formerly Twitter). Slow fog tracking The root cause of the integer division defect in the contract minting function.
After the vault was drained, the deposit formula evaluated to 0 due to rounding during integer division, allowing the attacker to mint tokens for free. The ultimate drawback Enable unlimited code Creation.
PeckShield revealed that the exploiter exchanged $105,000 USD (USDC) for approximately 60 Ethereum (ETH). The wallet still contains approximately $34,000 worth of options tokens.
Follow us on X To get the latest news as it happens
Thetanuts also addressed the exploitation in a public statement.
“Our initial investigation indicates that this is again a neglected vault that we migrated years ago. It has nothing to do with any of our existing contracts or products. We will issue a post-mortem once we have more details,” the team said. He said.
The attack fits a pattern of vulnerabilities that hit inactive or outdated code. Old contracts often remain live on-chain even after teams stop maintaining them.
BeInCrypto reported that the attackers were exhausted About $2.1 million from Aztec Connect, which was neglected three years ago. A separate hack occurred at Raydium (RAY). Old liquidity pools for About $1.3 million.
Subscribe to our YouTube A channel to watch leaders and journalists provide expert insights
this post A neglected Thetanuts Vault was exploited for $2.1 million in the latest DeFi attack appeared first on BeInCrypto.
