Attack × Chain dossier

Reentrancy attacks on Ethereum

Total losses

$214.8M

13 incidents

№ 001ReentrancySeptember 3, 2024
Penpie Pendle Reentrancy
~$27M drained from Penpie after a reentrancy gap in Pendle's plugin integration let the attacker register a malicious market and pull pegged rewards in one tx.
PenpieEthereumFunds Stolen
Loss
27.0M
USD
№ 002ReentrancyAugust 27, 2023
Balancer Boosted Pool Reentrancy
An attacker exploited rate-provider read-only reentrancy in Balancer boosted pools after a disclosure, draining ~$2.1M before users could fully exit liquidity.
BalancerEthereumPartially Recovered
Loss
2.1M
USD
№ 003ReentrancyJuly 21, 2023
Conic Finance Read-Only Reentrancy
Conic Finance's ETH Omnipool had reentrancy guards but assumed Curve v2 used a specific ETH address. A new CurveLPOracleV2 slipped past it, draining $3.2M.
Conic FinanceEthereumFunds Stolen
Loss
3.2M
USD
№ 004ReentrancyJune 12, 2023
Sturdy Finance Read-Only Reentrancy
$800K drained from Sturdy Finance via a Balancer read-only reentrancy that mispriced B-stETH-STABLE LP collateral. Funds returned after negotiation.
Sturdy FinanceEthereumRecovered
Loss
800.0K
USD
№ 005ReentrancyFebruary 2, 2023
Orion Protocol Swap Reentrancy
$3M drained from Orion on Ethereum and BSC after doSwapThroughOrionPool accepted unvalidated paths with no reentrancy guard; a fake token inflated balances.
Orion ProtocolEthereumBNB ChainFunds Stolen
Loss
3.0M
USD
№ 006ReentrancyApril 30, 2022
Fei / Rari Fuse Reentrancy
Reentrancy on exitMarket() drained $80M from Rari Capital's Fuse lending pools, a function the team forgot to protect when patching reentrancy the prior month.
Rari Capital / Fei ProtocolEthereumFunds Stolen
Loss
80.0M
USD
№ 007ReentrancyMarch 27, 2022
Revest Finance FNFT Reentrancy
$2M drained from Revest Finance via a reentrancy in mintAddressLock/depositAdditionalToFNFT that let the attacker mint over-valued NFTs and redeem them.
Revest FinanceEthereumFunds Stolen
Loss
2.0M
USD
№ 008ReentrancyDecember 21, 2021
Visor Finance Staking Reentrancy
Visor Finance's staking contract lost $8.2M to a reentrancy in the delegateTransferERC20 path. VISR fell 95% same-day; Visor migrated to a new token.
Visor FinanceEthereumPartially Recovered
Loss
8.2M
USD
№ 009ReentrancyAugust 30, 2021
Cream Finance AMP Reentrancy
$18.8M drained from Cream Finance v1 lending markets via a reentrancy bug in the AMP token's ERC-777 transfer hook — the second of Cream's three 2021 exploits.
Cream FinanceEthereumPartially Recovered
Loss
18.8M
USD
№ 010ReentrancyMay 8, 2021
Rari Capital ibETH Reentrancy
2,600 ETH ($10M, 60% of pool) drained from Rari's Ethereum Pool after its Alpha Finance ibETH integration allowed arbitrary external calls enabling reentrancy.
Rari CapitalEthereumPartially Recovered
Loss
10.0M
USD
№ 011ReentrancyNovember 17, 2020
Origin Dollar (OUSD) Reentrancy
$7.7M drained from the OUSD stablecoin vault two months after launch via a fake-stablecoin reentrancy bug introduced when a gas-saving refactor dropped a check.
Origin ProtocolEthereumFunds Stolen
Loss
7.7M
USD
№ 012ReentrancyNovember 12, 2020
Akropolis Savings Pool Reentrancy
A fake ERC-20 with a reentrant transferFrom let an attacker re-enter Akropolis's deposit flow and mint $2M in pool shares without delivering real collateral.
AkropolisEthereumFunds Stolen
Loss
2.0M
USD
№ 013ReentrancyJune 17, 2016
The DAO Reentrancy Hack
The DAO lost 3.6M ETH ($50M) to the textbook reentrancy bug, the heist that split Ethereum into ETH and Ethereum Classic and rewrote smart-contract development.
The DAOEthereumPartially Recovered
Loss
50.0M
USD

Penpie Pendle Reentrancy

Balancer Boosted Pool Reentrancy

Conic Finance Read-Only Reentrancy

Sturdy Finance Read-Only Reentrancy

Orion Protocol Swap Reentrancy

Fei / Rari Fuse Reentrancy

Revest Finance FNFT Reentrancy

Visor Finance Staking Reentrancy

Cream Finance AMP Reentrancy

Rari Capital ibETH Reentrancy

Origin Dollar (OUSD) Reentrancy

Akropolis Savings Pool Reentrancy

The DAO Reentrancy Hack