AC Graphic File 7 - Delio CEO Sentenced to Prison Over Won Coin Withdrawal Suspension
DeFi platform Wasabi Protocol has been exploited for approximately $4.5 million, after attackers gained control of a critical admin key—once again highlighting how a single point of failure can bring down an entire protocol.
The exploit was not caused by a smart contract bug, but by a compromised deployer admin wallet, which held full control over the protocol. Once attackers gained access, they were able to grant themselves admin privileges and execute malicious upgrades across the system. Using this access, the attacker replaced core contract logic—including vaults and liquidity pools—with malicious code, allowing them to drain user funds directly from the protocol.
The breach leveraged a common DeFi architecture known as UUPS (Upgradeable Proxy Standard), which allows developers to update smart contracts without migrating users.
However, in this case, that flexibility became the vulnerability. With admin control, the attacker was able to:
This shows how upgradeable systems can become dangerous if governance controls are weak.
Security firms like Blockaid identified the root issue as a lack of safeguards around the admin key. The protocol relied on a single externally owned account (EOA) with no multisig protection or time delays—meaning once compromised, attackers had immediate and unrestricted control. This type of setup is increasingly being criticized across DeFi, as it creates a centralized vulnerability within otherwise decentralized systems.
The Wasabi hack is just the latest in a string of high-profile attacks. April alone has seen hundreds of millions of dollars lost across DeFi protocols, reinforcing ongoing concerns around security and infrastructure maturity. Notably, the exploit followed a similar pattern to other recent breaches—where compromised keys, not code flaws, were the primary attack vector.
This incident underscores a critical reality in crypto: decentralization doesn’t eliminate risk if control is still centralized at key points. As DeFi continues to scale, protocols will need to adopt stronger security models—like multisig wallets, timelocks, and decentralized governance—to prevent single-key failures from causing multi-million dollar losses.
SWIFT has launched a new blockchain-based ledger pilot with 17 major banks to test how tokenized deposits can move across…
Sony Bank, the banking arm of Sony Financial Group, has received conditional approval from the Office of the Comptroller…
PayPal has expanded its stablecoin strategy by launching PayPal USD (PYUSD) natively on the Polygon blockchain, giving businesses direct access…
BONK, one of Solana's most recognizable memecoins, is facing a major governance crisis after an…
World, the blockchain ecosystem co-founded by Sam Altman, is shifting its prediction market infrastructure from Solana to the…
BNB Chain has revealed plans to build a brand-new Layer 1 blockchain specifically designed for the next generation…