Hackers Shake Up the Crypto Market: $9 Billion Attack

The approximately $300 million cyber attack over the weekend in the crypto market has caused a major trust crisis in the decentralized finance (DeFi) ecosystem. Following the attack, investors withdrew billions of dollars from one of the sector’s largest lending platforms, Aave.

According to blockchain data platform DefiLlama, since the attack was revealed on Saturday, there has been a net outflow of about $9 billion from Aave. The total assets locked in the platform (TVL) have decreased by more than one-third, falling to $17.5 billion.

CONCERNS OVER COLLATERAL INCREASE
According to analysis by cybersecurity firm PeckShield, the attackers used approximately $200 million worth of stolen tokens as collateral to borrow different crypto assets. This situation heightened concerns about the value of collateral on Aave, prompting investors to rapidly withdraw from the platform.

Crypto portfolio manager Pratik Kala described the incident as “a classic bank attack in the DeFi world,” stating, “Investors withdraw their funds first, ask questions later.”

NORTH KOREA SUSPICION
The attack once again brought to light structural security issues within the DeFi ecosystem. In this system where users conduct transactions without intermediaries, especially “bridge” protocols that connect different blockchains are identified as the weakest link.

It is reported that the attack was carried out through a bridge software that facilitates data transfer between different blockchains. LayerZero, the developer of the bridge, also announced that North Korean-linked hackers could be behind the attack.

Kelp DAO announced that it has temporarily halted its operations following the attack.

‘BUY-SELL’ REPLACED BY COLLATERAL
Experts say that the attackers used an unconventional method this time. While stolen crypto assets are usually quickly sold to make tracking difficult, in this attack, tokens were used as collateral.

It is estimated that hackers, who used derivatives called “Restaked Ether” (rsETH) as collateral, borrowed a total of $236 million. Most of these transactions are said to have been carried out through Aave.

Aave management announced that it has frozen rsETH markets following the developments. Although the platform claims that these assets are still fully collateralized, the uncertainty has already shaken investor confidence.

SIMILAR ATTACKS ON THE RISE
The recent attack is another example of increasing cyber threats targeting DeFi platforms. Not long ago, another attack occurred through Drift Protocol, where approximately $280 million was stolen.

Experts emphasize that cross-chain bridges play a critical yet fragile role in the crypto ecosystem, warning that similar attacks could continue.