On August 18, separate attacks targeted two decentralized finance (DeFi) protocols, Exactly and Harbor. These incidents were reported by blockchain security companies, DeDotFi and PeckShield.
Detailed blockchain data highlights that a sum of 4323.6 Ether (ETH), equivalent to approximately $7.3 million at the current valuation of $1,669 per ETH, was compromised from Exactly Protocol. Following the breach, the attackers transferred 1490 ETH through the Across Protocol and 2,832.92 ETH to the Ethereum network via the Optimism Bridge.
Exactly operates as one of the crypto lenders functioning within the Optimism network. Initial reports indicated a theft of more than 7160 ETH, valued at nearly $12 million, but these figures were later revised to reflect a smaller sum that had gone missing. The attacker focused on exploiting the DebtManager periphery contract, as reported by Exactly’s team. The protocol has taken legal action by filing a police report and is actively attempting to establish communication with the perpetrators to facilitate the return of the stolen assets, as mentioned on X (previously known as Twitter).
In a separate security breach, the interchain stablecoin protocol Harbor divulged falling victim to an attack that resulted in the loss of funds held in its stable-mint, stOSMO, LUNA, and WMATIC vaults. As of the current moment, the exact quantity of crypto assets stolen remains uncertain. Harbor is in the process of tracking the funds and assessing the overall extent of the losses incurred.
These incidents come on the heels of several security breaches that have affected the DeFi landscape in recent weeks. On July 30, a vulnerability in three iterations of the Vyper programming language led to the theft of over $61 million from stable pools on Curve Finance. Additional protocols that have faced compromises in recent days include Earn.Finance, which lost at least $287,000 worth of ETH, and Zunami Protocol, which experienced a loss of $2.1 million due to another exploit.