• Dapps:16.23K
  • Blockchains:78
  • Active users:66.47M
  • 30d volume:$303.26B
  • 30d transactions:$879.24M

Decentralized Finance Protocol Penpie Loses $27 Million in Hack

user avatar

by Giorgi Kostiuk

2 years ago

  1. The Exploit and Its Consequences
  2. Response from Penpie and Pendle
  3. Penpie's Appeal to the Hacker


    4. On September 3, the decentralized finance (DeFi) protocol Penpie, built on Pendle, was hacked, resulting in the loss of $27 million in various cryptocurrencies.

    The Exploit and Its Consequences

    The stolen funds included Ether (ETH) and stablecoins like wrapped USDC and sUSDE, according to EmberCN. The hacker reportedly exploited a vulnerability in Penpie's security, converting most of the stolen assets into ETH and then transferring them to a new Ethereum address, making it difficult to trace. The hack was first brought to light by an X account, Chaofan Shou, affiliated with Fuzzland. The account reported that $17 million had been drained from Penpie, indicating that the protocol was unaware of the breach even after it had begun. This delay in response led to an additional $10 million in losses.

    Response from Penpie and Pendle

    Penpie confirmed the security breach in an X post approximately an hour after the hack began. The protocol immediately paused all deposits and withdrawals to prevent further losses. Pendle, the platform on which Penpie is built, also took action. They paused all contracts on Pendle as a precautionary measure, safeguarding approximately $105 million that could have been at risk. Pendle confirmed that their funds were secure and that the breach was specific to Penpie, not affecting the Pendle protocol itself.

    Alert: Penpie has encountered a security compromise. We have paused all deposits and withdrawals. Our team is working tirelessly to address it. Your patience and support are invaluable during this time. Stay tuned for further updates.Penpie

    Penpie's Appeal to the Hacker

    Penpie reached out to the hacker with an offer to negotiate a bounty for the safe return of the stolen funds. Penpie emphasized that they would not pursue legal action if the funds were returned. They also offered the hacker an opportunity to transition into a white-hat role, where their skills would be recognized and rewarded. The protocol stressed the importance of the stolen funds to their community and expressed a willingness to resolve the issue cooperatively.

    As of the latest updates, Penpie’s stolen funds have been partially transferred to Tornado Cash, making recovery efforts more challenging. Penpie is actively working to ensure that users can securely withdraw their remaining funds.

0

Rewards

chest
chest
chest
chest

More rewards

Discover enhanced rewards on our social media.

chest

Other news

Iran Launches Bitcoin-Backed Insurance Service Amid War

chest

Iran has introduced a Bitcoin-backed insurance service for shipping in the Strait of Hormuz as it seeks to navigate US sanctions.

user avatarDavid Robinson

US Inflation Rises Amid Ongoing US-Iran War

chest

US inflation rates are climbing to multi-year highs, influenced by the ongoing US-Iran conflict.

user avatarJacob Williams

US-Iran War Continues with Threats of New Strikes

chest

US President Donald Trump threatens new military action against Iran as the US-Iran war approaches three months without a peace deal.

user avatarAndrew Smith

Bankr Confirms Breach and Pledges Reimbursement

chest

Bankr has confirmed a security breach affecting 14 wallets, leading to unauthorized access and significant losses for users. The platform pledged to cover all losses and advised affected users to check for malware.

user avatarSon Min-ho

Austen Allred's Wallet Drained in Bankr Breach

chest

Tech entrepreneur Austen Allred was a victim of a crypto hack that drained his wallet linked to the Kelly Claude AI assistant. The hacker extracted Ether while leaving his memecoin holdings untouched. The incident occurred on May 19, 2026, on the Bankr platform, which allows users to send plain-language instructions to an AI for executing trades. The breach is believed to be a social engineering scheme. Bankr has temporarily shut down all transaction activities and pledged to reimburse all lost funds.

user avatarZainab Kamara

Nostr VPN Introduces Peer-to-Peer Architecture for Enhanced Privacy

chest

Nostr VPN introduces a unique peer-to-peer architecture that enhances privacy by eliminating central servers and allowing users to operate their own exit nodes.

user avatarAyman Ben Youssef

Important disclaimer: The information presented on the Dapp.Expert portal is intended solely for informational purposes and does not constitute an investment recommendation or a guide to action in the field of cryptocurrencies. The Dapp.Expert team is not responsible for any potential losses or missed profits associated with the use of materials published on the site. Before making investment decisions in cryptocurrencies, we recommend consulting a qualified financial advisor.