Dydx V3 hit by ‘targeted attack,’ linked to YFI price manipulation

User funds are not affected by the attack, but the DEX’s insurance fund lost around $9 million, dYdX founder Antonio Juliano says

article-image

Maurice NORBERT/Shutterstock, modified by Blockworks

share

Around $9 million in dYdX v3’s insurance fund, roughly 40% of its total v3 funds, was used to process liquidations after an organized attack this weekend. 

According to dYdX founder Antonio Juliano, the open interest (OI) for YFI, DeFi protocol Yearn Finance’s native token, had spiked from $0.8 million to roughly $67 million on the decentralized exchange (DEX), trading at a significantly higher price than other perpetual trading platforms. 

OI refers to the amount of all outstanding derivative contracts and keeps track of all unsettled positions. The greater amount of contracts, the higher the OI. 

This was the result of one malicious actor, Juliano wrote on X, pointing at on-chain transactions, noting that it was likely that this same actor had also attempted a similar attack on the SUSHI market on dYdX just two weeks ago.

As an immediate solution, dYdX increased the initial margin ratios for YFI and other less liquid markets. These include EOS, AAVE, 1NCH, SHUHI, and CELO tokens, just to name a few. This move, Juliano noted, was ‘ultimately not sufficient.’

The price of YFI tokens crashed, which had risen over 200% between Oct. 20, 2023 and Nov. 17, plummeted about 35% in the space of one hour, Saturday.

“The actor was able to withdraw a good amount of $USDC from dYdX right before the price crash,” Juliano wrote on X

Additionally, according to on-chain transactions, one whale was able to sell 96 YFI for an estimated $1.23 million in ether before the token tumbled. 

dYdX has not immediately responded to Blockworks’ request for commentary. 

The dYdX team is currently working with centralized exchanges to confirm further details about the incident, and the decentralized exchange posted on X that it has banned trading on “highly profitable strategies,” an ironic reference to the exploits of Avraham Eisenberg, who allegedly pulled off a similar stunt in October 2022 on Solana DeFi platform Mango Markets, and was arrested on fraud charges.   

Additionally, the team has revealed that it will pay bounties to those who are most helpful in aiding the investigation, and has no plans to negotiate with the attacker.

“We and others have made significant progress into identifying the attacker. We are in the process of reporting the information we have to the FBI,” Juliano wrote. 

There is still an additional $13.5 million in funds in dYdX v3’s insurance fund, and no user funds have been affected by the attack, Juliano said.

Although there have been criticisms for a lack of decentralized governance around the latest events, Juliano notes that this particular attack occurred on dYdX v3, where the order book and matching remained centralized.

The process would be different if these events occurred on the newly launched dYdX chain, which has different risk controls.


Get the news in your inbox. Explore Blockworks newsletters:

Tags

Decoding crypto and the markets. Daily, with Byron Gilliam.

Upcoming Events

Old Billingsgate

Mon - Wed, October 13 - 15, 2025

Blockworks’ Digital Asset Summit (DAS) will feature conversations between the builders, allocators, and legislators who will shape the trajectory of the digital asset ecosystem in the US and abroad.

recent research

Unlocked by Template (10).png

Research

Innovations on Aptos’ technical design through Raptr, Shardines, and Zaptos approach near-optimal latency and throughput by unlocking 100% utilization of network resources, with the capacity to settle 260k transactions per second with latencies less than 800ms. The original Move language was revamped with the launch of Move 2, supporting more expressivity in smart contract logic and a scalable ability to interact with high volume datasets. The ecosystem has benefitted from strong asset inflows, now hosting over $1.3B in stablecoins, $450M in bridged BTC, and $530M in RWAs. Activity in the Aptos ecosystem has grown notably over the past year, with monthly application revenue reaching ~$835k and monthly DEX volumes growing to over $5B, both at new all time highs.

article-image

The Stripe-acquired firm has big plans for a streamlined, multi-wallet future

article-image

Both founders of the former crypto lender have now landed in new crypto industry roles

article-image

Bitcoin’s recent peak is a victory lap for curvers left and right

article-image

Securitize CEO Carlos Domingo says institutions are eager to get exposure to tokenization

article-image

Trade isn’t war and prosperity isn’t a contest