$18.4M Rhea Finance Hack Built Over Two Days, Post-Mortem Reveals
Share:
Rhea Finance suffered an $18.4M DeFi exploit executed over April 13–15 after the attacker spent >2 days creating 423 intermediary wallets, deploying fake token contracts and funding a subject wallet via cross-chain transfers. A slippage-protection bug double-counted the same token value across sequential swaps, enabling the drain; Tether froze $3.29M USDT in the attacker’s wallet as recovery efforts begin, highlighting DeFi security and cross-chain risks.
Predictions Markets
See what traders are focused on
- Attacker spent over two days creating 423 wallets and fake token pools before the exploit.
- Slippage protection flaw counted the same token value twice across sequential swap steps.
- Tether froze $3.29 million USDT directly in the attacker’s wallet as recovery efforts began.
Rhea Finance published a detailed post-mortem this week after losing $18.4 million in an exploit that investigators describe as a combination of two known DeFi attack vectors assembled into something new. They revealed that the attack did not happen in minutes. It took two days of preparation.
The Setup
Between April 13 and 15, the attacker quietly built the infrastructure needed for the drain:
- Created a subject wallet funded through cross-chain transfers
- Distributed funds across 423 unique intermediary wallets in rapid automated succession
- Deployed purpose-built fake token contracts…
Read The Full Article $18.4M Rhea Finance Hack Built Over Two Days, Post-Mortem Reveals On Coin Edition.
Read More
South Korea Files First DEX Rug Pull Case Over CATFI
