Web3 Hacks & DeFi Exploit Intelligence
Search the Incident Console
Start with a project name, narrow by chain or exploit class, then open the incident write-up and sources.
| # | Project | Date | Amount Lost | Chain | Technique | Links |
|---|---|---|---|---|---|---|
| 511 | Not Found Rugpull | $200K | — | Rugpull | ||
| 512 | MangoFarmSOL Rugpull | $1.3M | — | Rugpull | ||
| 513 | User Phishing Attacks | $196K | — | Phishing | ||
| 514 | CryptoBottle Other | $527K | — | Other | ||
| 515 | Chris Larsen Access Control Attacks | $112M | — | Access Control | ||
| 516 | Abracadabra Money Other | $6.4M | — | Other | ||
| 517 | Abracadabra Spell Borrow Logic Exploit | $6.5M | ethereum | Borrow Logic Exploit | ||
| 518 | Goledo Finance Flash Loans Attacks | $1.7M | — | Flash Loan Attack | ||
| 519 | Citadel Finance Flash Loans Attacks | $97K | — | Flash Loan Attack | ||
| 520 | Nebula Revelation Reentrancy | $180K | — | Reentrancy | ||
| 521 | Saga DAO Access Control Attacks | $60K | — | Access Control | ||
| 522 | Massive Phishing Phishing Attacks | $12.9M | — | Phishing | ||
| 523 | JohnLennonC0IN Rugpull | $11K | — | Rugpull | ||
| 524 | GAMEE Access Control Attacks | $16.4M | — | Access Control | ||
| 525 | Concentric Access Control Attacks | $1.7M | arbitrum | Private Key Compromised (Social Engineering) / Access Control | ||
| 526 | Unknown User Phishing Attacks | $3.7M | — | Phishing | ||
| 527 | Rose Finance Flash Loans Attacks | $45K | — | Flash Loan Attack | ||
| 528 | LongNoseDog Rugpull | $310K | — | Rugpull | ||
| 529 | DeFi Fake Tokens Other | — | — | Other | ||
| 530 | BasketDAO Other | $107K | — | Other | ||
| 531 | Socket Other | $3.3M | — | Other | ||
| 532 | Bungee Missing Input Validation | $3.3M | ethereum | Missing Input Validation | ||
| 533 | Wise Lending V1 Rounding Donation Attack / Other | $464K | ethereum | Rounding Donation Attack / Other | ||
| 534 | Xai Rugpull | $581K | — | Rugpull | ||
| 535 | MangoFarmSol Frontend Attack | $2.0M | solana | Frontend Attack | ||
| 536 | Aragon DAO Phishing Attacks | $800K | — | Phishing | ||
| 537 | Narwhal Other | $1.6M | — | Other | ||
| 538 | Gamma Strategies Flash Loans Attacks | $6.4M | — | Flash Loan Attack | ||
| 539 | Gamma Oracle Manipulation & Price Manipulation | $4.5M | arbitrum | Price Manipulation Attack | ||
| 540 | Radiant Capital Flash Loans Attacks | $4.3M | — | Flash Loan Attack |
Data sourced from DefiLlama & SunWeb3Sec/DeFiHackLabs . Thank you for keeping Web3 security data open.
Hack Radar
Fresh DeFi incidents the moment they land in our database. Verified by trusted sources; auto-ingested entries are flagged for review.
Explore by Attack Type
Access Control Attacks
Arithmetic Overflows Underflows
Delegatecall & Call Injection Attacks
Flash Loans Attacks
Oracle Manipulation & Price Manipulation
Reentrancy
Dao Governance Attacks
Frontrunning & Sandwich Attacks
Phishing Attacks
Dos Attacks
Replay Attacks
Self Destruct Attacks
Sensitive On Chain Data
Weak Randomness Attacks
Unchecked Return Value Attacks
Understanding Smart Contract Vulnerabilities
Smart contract vulnerabilities remain the leading cause of DeFi protocol losses, with over $10 billion stolen since 2016. Understanding attack vectors like reentrancy, flash loans, and oracle manipulation is essential for every blockchain developer and security researcher.
Each incident in our database is categorized by attack class and linked to our in-depth vulnerability guides, making this the most educational Web3 hacks tracker available. Want a quick ranking? See the most expensive crypto hacks leaderboard.
Learn how these hacks actually worked
Study the exploit patterns behind the incidents in this database, then practice finding them before attackers do.