Oracle Manipulation

~$1.78M drained from Moonwell on Base after a newly listed market used a price feed with a decimals mismatch, mis-valuing collateral so attackers borrowed out.

YieldBlox's Stellar lending pool lost $10.2M after a single USTRY-for-USDC sell at 501x market rate defined the Reflector oracle price in a quiet 15-min window.

Solana's Loopscale lost $5.8M 16 days post-launch via RateX PT token oracle manipulation enabling undercollateralized loans. All funds returned for 10% bounty.

$7.5M extracted from KiloEX perps on Base, opBNB and BSC after the MinimalForwarder skipped signature checks; positions opened at $100, closed at $10,000.

$8.7M drained from Polter Finance on Fantom after a flash loan inflated the SpookySwap BOO oracle to $1.37 trillion per token. Polter shut down.

UwULend lost $19.4M after an attacker manipulated 5 of 11 sUSDe oracles via Curve swaps, borrowing at $0.99 then liquidating at $1.03. A $3.7M follow-up hit.

WOOFi Swap on Arbitrum lost $8.75M after the attacker realised WOO's Chainlink oracle was never configured and the sPMM accepted any manipulated price.

Levana Protocol on Osmosis lost ~$1.15M after attackers induced chain congestion to lag price feeds, then opened and closed perpetuals at mispriced moments.

Reporting an absurd WALBT price to BonqDAO's Tellor oracle (cost: 10 TRB, under $1K) minted $120M and collapsed protocol TVL by 99.66% in a single transaction.

Lodestar on Arbitrum lost $6.5M after its plvGLP oracle ignored donate() inflating GLP assets, letting the attacker borrow against 83%-inflated collateral.

Lodestar on Arbitrum lost $6.5M after the attacker manipulated the plvGLP oracle, which read GLP pool state directly, to inflate collateral and borrow reserves.

$1.1M drained from Sovryn, a Bitcoin-DeFi protocol on RSK, via AMM/oracle price manipulation that let the attacker borrow against inflated collateral.

$8.4M extracted from Celo's Moola Market: attacker bought MOO with $243K of CELO, pumped it 300x, used as collateral; 93.1% returned for a $500K bounty.

Avraham Eisenberg pumped the MNGO oracle 2,300% in 10 minutes, borrowed $117M against the inflated collateral, and walked — reframing on-chain manipulation law.

A $10M USDC flash loan inflated Nirvana's ANA token 4x against its own oracle; the attacker swapped ANA for $13.49M USDT and the NIRV stablecoin depegged 90%.

Fortress Protocol on BNB Chain lost $3M after the attacker manipulated FTS via a thin oracle and used a governance proposal to set arbitrary collateral factors.

DEUS DAO lost $13.4M after pricing DEI collateral from a Solidly DEI/USDC pool that a flash-loan attacker moved, borrowing out the lending reserves.

$15.6M drained from Inverse Finance by manipulating its Keep3r INV/ETH oracle via a private mempool bundle, bypassing TWAP in a single invisible block.

Vee Finance on Avalanche lost $35M a week after launch when Pangolin price manipulation bypassed a slippage check with a decimals bug SlowMist had pre-flagged.

Compound liquidated $89M in over-collateralised positions after DAI briefly traded at $1.30 on Coinbase Pro, the oracle's sole price source. No hack needed.