Odaily Planet Daily reports that Curve Finance announced on X platform that it has initiated an investigation into the sDOLA LlamaLend attack, which is suspected to have caused a loss of approximately $240,000. Preliminary findings suggest that the attack was related to the price oracle mechanism used by sDOLA (possibly influenced by a “donation attack”) and the number of sDOLA tokens not used as collateral in the market. Although the attacker’s profit was relatively limited, the incident highlights the need for stricter handling when using vault collateral assets in LlamaLend. The main impact was on users who borrowed against sDOLA collateral, who were liquidated; lenders who provided funds were not affected. The Curve team is further investigating whether other similar markets might be at risk in the future and is working to ensure that LlamaLend V2 remains secure even when facing vault collateral assets vulnerable to donation attacks, across different market sizes. They are currently evaluating detailed solutions and plan to integrate relevant mechanisms into all future markets that use vault collateral.
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
AI Agent Operating System elizaOS releases Eliza 2.0 Alpha version
Gate News Announcement: On March 12, AI Agent Operating System elizaOS announced that Eliza 2.0 has entered the Alpha testing phase. This streamlined version supports three programming languages: TypeScript, Python, and Rust + WASM, and comes with complete applications and an introductory kit.
GateNews4m ago
Pi Network mainnet migration briefly restarted, 85K Pi tokens have been transferred
Pi Network's mainnet migration briefly restarted on March 10, with approximately 85,000 Pi successfully transferred, but was subsequently paused. The circulating supply is 9.66 billion coins, still far from the 100 billion cap. Over 17.7 million users who completed KYC are awaiting token migration. There is a risk of scams during the migration period, and users should be cautious about security. The protocol v20.2 mandatory upgrade deadline is March 12; failure to upgrade will result in network disconnection risks.
MarketWhisper9m ago
Billions AI proxy identity verification skills top the OpenClaw leaderboard, with over 3,600 proxies gaining verifiable identities
Billions announces that its AI agent verification system has become the top in the OpenClaw identity leaderboard, supporting over 3,600 AI agents with verifiable identities. The system achieves agent tracking and accountability through encrypted identities and on-chain notarization, enhancing trust foundations and promoting the secure deployment and innovation of AI agents.
GateNews12m ago
Morph launches USDC and Circle CCTP, supporting cross-chain USD settlement
Morph blockchain network launches USDC and Circle Cross-Chain Transfer Protocol (CCTP), enabling cross-chain transfer of USDC while maintaining supply integrity. The protocol supports various payment scenarios and promotes the development of on-chain payment infrastructure.
GateNews24m ago
CoinFello introduces the open-source skill OpenClaw, enabling AI agents to perform on-chain transactions without accessing private keys.
CoinFello released the open-source skill OpenClaw on March 12, allowing AI agents to securely connect to MetaMask and execute on-chain transactions without accessing user private keys. The skill is built on ERC-4337 and ERC-7710, enabling users to grant minimal permissions to avoid prompt injection attack risks and supporting various on-chain functionalities.
GateNews26m ago
