Wasabi Protocol, which allows users to trade cryptocurrencies using leverage, has recently become the victim of a major hack, reminding people just how vulnerable DeFi continues to be. PeckShield, a blockchain security firm, announced on April 30 that Wasabi protocol had lost well over $5 million worth of assets on multiple blockchain platforms due to hacks/exploits.
The Scope of the Multi-Chain Attack
The attack exploited multiple networks, demonstrating the complex nature of risk with cross-chain operations within DeFi. Using security data, the attacker was able to drain funds from the various deployments of the Wasabi Protocol on four different networks: Ethereum, Base, Berachain and Blast.
Initial investigations reveal that among stolen assets are numerous kinds of tokens including Wrapped Ether (WETH) and USDC, both of which went to the hacker’s wallet. There has been an increasing trend for hackers to exploit liquidity from protocols that consist of multiple chains within their ecosystems.
Understanding Wasabi Protocol’s Role
Wasabi Protocol was rapidly developing into a niche leader in leverage trading with respect to memecoins and NFT before they experienced this breach. Moreover, Wasabi offers traders the opportunity to trade perpetual futures contracts that are linked to actual underlying assets rather than synthetic ones as with the majority of exchanges operating in this market. It allows traders to use up to 10x leverage with long or short positions on highly volatile long tail assets.
Recently, the protocol had experienced a successful seed fundraising round of $3 million that was led by Electric Capital and included notable investors like Luca Netz (the CEO of Pudgy Penguins) and Santiago Santos. Earlier this year, the protocol had reported $500 million in trading volume; therefore, this exploit marks a significant setback for a project that was quickly becoming a mainstay for aggressive DeFi traders.
Lessons from a Fragmented Security Landscape
This breach highlights a key obstacle for today’s Decentralized Finance. Although Protocols are expanding into multiple block chains to take advantage of liquidity, they are also expanding their potential exposed area exponentially. Many experts note that even if a protocol has strong core logic, implementing smart contracts across multiple blockchains such as Berachain and Blast introduces additional risk. These setups can increase the potential for vulnerabilities because the interactions between different chains are still relatively untested.
Additionally, the problems created with this incident highlight the active concerns expressed by major institutions such as JPMorgan, which has stated that overall DeFi exploits are still limiting their institutional interest in future investments into the DeFi space.
Conclusion
The Wasabi Protocol development team has released an official communication expressing their intention to complete a post-mortem for the specifics of the smart contract bug. This incident is another stark example of “alpha” risk in DeFi, where high-leverage opportunities often come with elevated security risks. It serves as a reminder to the broader community to move beyond one-time audits and adopt continuous, cross-chain security monitoring.
