Attack × Chain dossier

Smart Contract Bug attacks on BNB Chain

Total losses

$726.0M

13 incidents

№ 001Smart Contract BugJanuary 18, 2026
TMXTribe Reward Exploit
TMXTribe, a staking/rewards protocol, lost ~$1.4M when a distribution accounting flaw let an attacker repeatedly over-claim, draining the reward reserve.
TMXTribeBNB ChainFunds Stolen
Loss
1.4M
USD
№ 002Smart Contract BugAugust 6, 2025
Credix Finance Mint Exploit
A flaw in Credix Finance's credit-token minting logic on BNB Chain let an attacker mint and redeem against fabricated positions, draining $4.5M from the pool.
Credix FinanceBNB ChainFunds Stolen
Loss
4.5M
USD
№ 003Smart Contract BugMay 11, 2025
MobiusDAO Decimal Double-Multiplier
$2.15M drained from MobiusDAO on BNB Chain after a double 10^18 scaling let the attacker mint 9.73 quadrillion MBU from 0.01 BNB; laundered via Tornado Cash.
MobiusDAOBNB ChainFunds Stolen
Loss
2.1M
USD
№ 004Smart Contract BugMay 5, 2023
DEUS DAO DEI Stablecoin Mint
DEUS DAO's third incident drained $6.5M across BNB, Arbitrum and Ethereum via a flaw in DEI's burnFrom/approval logic that let attackers abuse allowances.
DEUS FinanceBNB ChainArbitrumEthereumFunds Stolen
Loss
6.5M
USD
№ 005Smart Contract BugMay 1, 2023
Level Finance Referral Double-Claim
Level Finance on BNB Chain lost $1.1M because LevelReferralControllerV2 paid out referral rewards without marking the epoch claimed, allowing repeated claims.
Level FinanceBNB ChainFunds Stolen
Loss
1.1M
USD
№ 006Smart Contract BugMarch 28, 2023
SafeMoon Public-Burn Drain
SafeMoon lost $8.9M from its WBNB pool after an upgrade left burn() public, letting anyone burn other users' SFM. Burning pool LP pumped SFM, then drained WBNB.
SafeMoonBNB ChainPartially Recovered
Loss
8.9M
USD
№ 007Smart Contract BugOctober 2, 2022
Transit Swap Approval Drain
Transit Swap users with infinite approvals lost $21M when claimTokens failed to validate which token to call transferFrom on. 70% returned after on-chain talks.
Transit SwapBNB ChainEthereumPartially Recovered
Loss
21.0M
USD
№ 008Smart Contract BugJune 8, 2022
Gym Network Missing Signature Check
Gym Network on BNB Chain lost $2.1M after a deposit function accepted a referrer signature without validating it, letting the attacker mint huge GYMNET rewards.
Gym NetworkBNB ChainFunds Stolen
Loss
2.1M
USD
№ 009Smart Contract BugAugust 10, 2021
Poly Network Exploit
Cross-chain manager contract bug allowed an attacker to swap the keeper public key and withdraw $611M from three chains — eventually returned in full.
Poly NetworkEthereumBNB ChainPolygonRecovered
Loss
611.0M
USD
№ 010Smart Contract BugJune 22, 2021
Eleven Finance nerve Vault Bug
Flaw in Eleven Finance's nerveBUSD vault emergencyBurn/withdraw path let funds be withdrawn without burning shares, draining ~$4.5M on BNB Chain.
Eleven FinanceBNB ChainFunds Stolen
Loss
4.5M
USD
№ 011Smart Contract BugJune 21, 2021
Impossible Finance Swap Reentrancy
~$3.7M drained from Impossible Finance on BNB Chain via a swap-router flaw that let an attacker repeatedly swap against stale reserves in one tx.
Impossible FinanceBNB ChainFunds Stolen
Loss
3.7M
USD
№ 012Smart Contract BugApril 28, 2021
Uranium Finance Migration Math Bug
$57.2M extracted from Uranium Finance via a misplaced constant in v2.1 migration contracts (1,000,000 vs 10,000), letting 1 wei swap for 98% of pools.
Uranium FinanceBNB ChainFunds Stolen
Loss
57.2M
USD
№ 013Smart Contract BugMarch 9, 2021
DODO Crowdpool Uninitialized Init
DODO's V2 Crowdpools lost $3.8M after the attacker re-called init() with a fake token; the pools had no re-initialization guard. MEV bots front-ran ~$1.9M.
DODOEthereumBNB ChainPartially Recovered
Loss
2.0M
USD

TMXTribe Reward Exploit

Credix Finance Mint Exploit

MobiusDAO Decimal Double-Multiplier

DEUS DAO DEI Stablecoin Mint

Level Finance Referral Double-Claim

SafeMoon Public-Burn Drain

Transit Swap Approval Drain

Gym Network Missing Signature Check

Poly Network Exploit

Eleven Finance nerve Vault Bug

Impossible Finance Swap Reentrancy

Uranium Finance Migration Math Bug

DODO Crowdpool Uninitialized Init