VERDICT —UNRATED
Verdict pending. Auto-ingested incidents are reviewed before a public verdict is rendered.
Root cause
Root-cause analysis not yet published. The incident description below contains all currently available signal — review the attack transaction directly for definitive forensics.
Forensic narrative
MerlinLabs, the DeFi revenue aggregator, was attacked. The attack method was similar to that of PancakeBunny, which was attacked by lightning loan 5 days ago, and lost US$6.8 million. Attack method (per SlowMist): Flash loan attack. Reported loss: $ 6,800,000.
Primary source
https://rekt.news/merlinlabs-rekt/ ↗Sourced from
slowmist
Technical record
- chain
- —
- protocol
- MerlinLabs
- bug_class
- flashloan
- date_occurred
- 2021-05-26
- loss_usd
- $6,800,000
- source_id
- sm:merlinlabs::2021-05-26
Related — same bug class· flashloan