Avalanche Flash Loan Attack Nets $370K

Flash loan attack on Avalanche detected by cybersecurity firm CertiK

by Sebastian Sinclair /
article-image

Blockworks Exclusive art by axel rangel

share

key takeaways

  • The flash loan is said to have generated hundreds of thousands of dollars worth of USDC for the attacker
  • DEX Trader Joe, staking platform Nereus Finance and AMM Curve Finance are believed to have been affected

A flash loan attack on the Avalanche blockchain has extracted $370,000 in USDC from a smart contract, as well as several liquidity providers, blockchain cybersecurity firm CertiK said Tuesday.

Newsletter

Subscribe to Blockworks Daily

Decentralized exchange Trader Joe, staking platform Nereus Finance and automated market maker Curve Finance are thought to have been impacted, the firm said in a tweet.

A flash loan exploit is an abuse of a smart contracts security whereby a nefarious actor typically borrows uncollateralized funds from a lending protocol and manipulates the price of a given asset, driving up its value. 

Because of the nature of a flash loan, the attacker then sells back the borrowed capital in the same transaction after they’ve managed to arbitrage the asset, pocketing the difference.

The attack, executed around 3:26 pm ET on Tuesday, was picked up by CertiK’s on-chain security software Skynet which actively monitors and displays suspicious smart contract data online.

Blockworks attempted to contact CertiK and Avalanche but did not receive a response by press time. The identity of the attacker, as in the majority of cases involving flash loan exploits, remains unknown.

Avalanche, a layer-1 smart contract platform built by Singapore-based Ava Labs, has risen to prominence in recent years, having grown to become a top 20 crypto in market cap terms.

Compatible with Ethereum, the Avalanche network consists of an ecosystem of decentralized application as well as staking initiatives via its proof-of-stake consensus mechanism.

Flash loans have been involved in several high-profile crypto heists before, including the third-largest of 2022, when DeFi dapp Beanstalk lost $182 million.

Get the news in your inbox. Explore Blockworks newsletters:

Tags

Upcoming Events

Digital Asset Summit 2025

Old Billingsgate

Mon - Wed, October 13 - 15, 2025

Blockworks’ Digital Asset Summit (DAS) will feature conversations between the builders, allocators, and legislators who will shape the trajectory of the digital asset ecosystem in the US and abroad.

buy ticketslearn more

Permissionless IV

Industry City | Brooklyn, NY

TUES - THURS, JUNE 24 - 26, 2025

Permissionless IV serves as the definitive gathering for crypto’s technical founders, developers, and builders to come together and create the future.If you’re ready to shape the future of crypto, Permissionless IV is where it happens.

buy ticketslearn more

Permissionless IV Hackathon

Brooklyn, NY

SUN - MON, JUN. 22 - 23, 2025

Blockworks and Cracked Labs are teaming up for the third installment of the Permissionless Hackathon, happening June 22–23, 2025 in Brooklyn, NY. This is a 36-hour IRL builder sprint where developers, designers, and creatives ship real projects solving real problems across […]

learn more

recent research

Unlocked by Template (7).png

Research

Trust-Minimized Crosschain Interoperability

Union’s improvements upon Tendermint consensus through CometBLS, coupled with ZK proving through Galois, allow for a broadly scalable, cost efficient, and low latency IBC implementation that is feasibly scalable across every existing blockchain, virtual machine and runtime. The implementation offers modular crosschain interoperability without the need for trusted intermediaries.  

by Luke Leasure

/

news

article-image

DeFiEmpire Newsletter

Kraken thwarts hacker’s ill-intentioned job application

Kraken’s chief security officer Nick Percoco said the exchange turned the tables on a North Korean hacker

by Katherine Ross /
article-image

The Breakdown

Thursday Mailbag: Is it cypherpunk to contribute crypto to bitcoin treasury companies?

Or is it approximately the least cypherpunk thing we could do?

by Byron Gilliam /
article-image

BusinessLightspeed Newsletter

Ellipsis Labs claims credit for mysterious top Solana DEX

Over 20% of SOL-USD swap volume goes through SolFi

by Jack Kubinec /
article-image

Forward Guidance NewsletterMarkets

Robinhood eyes crypto diversification as trading strength persists

CEO Vlad Tenev calls expected clarity on listing crypto asset securities “a big opportunity”

by Ben Strack /
article-image

Forward Guidance NewsletterMarkets

Meta, Microsoft earnings beat send stocks higher

Big Tech pulled US indexes back into the green Thursday, as investors waited for two more Mag 7 first-quarter reports after the bell

by Casey Wagner /
article-image

AnalysisForward Guidance Newsletter

Unpacking a big week for US economic data

Charts and takeaways from Tuesday’s jobs report and Wednesday’s GDP print, as the economy digests the tariff war

by Felix Jauvin /