Balancer website hijack puts users at risk

Balancer’s user interface woes follow an exploit last month targeting its liquidity pools

article-image

Vladimir Kazakov/Shutterstock, modified by Blockworks

share

DeFi liquidity protocol Balancer is staring down yet another security vulnerability, this time targeting its user interface. 

The platform issued a notice on social media Tuesday evening, urging users not to interact with the main Balancer UI until further notice as they investigate. Investors and users of Balancer are advised to remain vigilant and await further updates.

Crypto sleuth ZachXBT, revealed on X, formerly Twitter, that the stolen funds are being funneled into a specific Ethereum address. Approximately $238,000 has reportedly been pilfered so far. 

Analysis of the address shows it currently holds 68 ether (ETH) valued at more than $111,000, based on the current ETH price of $1,636.

In the last eight hours, a series of ERC-20 token transfers involving the address labeled “Balancer Attacker” can be viewed from Etherscan, a popular analytics tool. 

Tokens, including Balancer’s native BAL token, liquid staked ether, Aave’s wrapped tokens, and several others, have so far been transferred in and out of the address.

The developments Wednesday follow a series of assaults against the protocol in recent weeks including an exploit of a critical vulnerability in its v2 pools late last month.

Built on the Ethereum blockchain, Balancer functions as both an automated market maker and a liquidity protocol, allowing users to trade tokens directly from its liquidity pools, without the need for a traditional order book.

In recent hours, Balancer’s native token (BAL) has experienced some volatility, though the full extent of the financial fallout remains to be seen. BAL is down 3.2% on the day from a top of $3.44 to $3.27, exchange data shows.

Balancer is not the first DeFi platform to fall victim to a cyber-attack this year. There has been a noticeable uptick in security breaches targeting DeFi projects in recent months, leading to a broader conversation in the industry about the need for enhanced security measures.

The Balancer team said it is currently investigating the issue, and it’s yet unclear how the attackers managed to exploit the system. Blockworks has reached out to learn more.


Get the news in your inbox. Explore Blockworks newsletters:

  • Blockworks Daily: The newsletter that helps thousands of investors understand crypto and the markets, by Byron Gilliam.
  • Empire: Start your morning with the top news and analysis to inform your day in crypto.
  • Forward Guidance: Reporting and analysis on the growing intersection of crypto and macroeconomics, policy and finance.
  • 0xResearch: Alpha directly in your inbox. Market highlights, data, degen trade ideas, governance updates, token performance and more.
  • Lightspeed: Built for Solana investors, developers and community members. The latest from one of crypto’s hottest networks.
  • The Drop: For crypto collectors and traders, covering apps, games, memes and more.
Tags

Upcoming Events

Javits Center North | 445 11th Ave

Tues - Thurs, March 18 - 20, 2025

Blockworks’ Digital Asset Summit (DAS) will feature conversations between the builders, allocators, and legislators who will shape the trajectory of the digital asset ecosystem in the US and abroad.

Industry City | Brooklyn, NY

TUES - THURS, JUNE 24 - 26, 2025

Permissionless IV serves as the definitive gathering for crypto’s technical founders, developers, and builders to come together and create the future.If you’re ready to shape the future of crypto, Permissionless IV is where it happens.

Old Billingsgate

Mon - Wed, October 13 - 15, 2025

Blockworks’ Digital Asset Summit (DAS) will feature conversations between the builders, allocators, and legislators who will shape the trajectory of the digital asset ecosystem in the US and abroad.

recent research

Unlocked by Template (4).png

Research

Wormhole Settlement allows for a highly scalable liquidity venue to fill user intents into a multichain, multi-VM future. By concentrating solvers’ balance sheets on Solana, transaction costs associated with solvers rebalancing inventory across destinations are eliminated. With the ability to settle bridging, swapping, and arbitrary interactions, without the costs and frictions of fragmenting solver liquidity, Wormhole Settlement has the opportunity to settle a large share of volumes in the crosschain interoperability market with a beneficial framework for both users and solvers. 

article-image

“Micro-advancements” take center stage in plans by Anza

article-image

The vote is in addition to the spending stopgap bill, proposed by House Republicans over the weekend

article-image

Strobe will finish deploying its initial $150M by end of year while raising a second fund

article-image

The hearing comes as the industry continues to quarrel over what stablecoin regulation should look like in the US

article-image

Wyoming Senator Cynthia Lummis re-introduced the bitcoin reserve proposal that stalled last year

article-image

The market selloff is heavily tied to the increased correlation between equities and crypto, as crypto-friendly institutions are going more risk-off