keysecurity

DeFi in Trouble – 4 Hacks in 30 Days

Between late June and July 2025, the following DeFi protocols were exploited:

UPCX lost $70M via admin key compromise, used to upgrade contracts and drain liquidity pools

ZKsync experienced an admin mint attack, issuing $5M in unbacked tokens

Zoth lost $8.4M via vault contract desync bugs

Wemix’s NFT platform suffered a $6.1M loss after stolen auth tokens bypassed rate limits

Most of these platforms delayed audits or used unaudited forks from older platforms. Some even reused contract libraries from 2022 with known CVEs.

Lesson: Security is not optional in DeFi. Always verify, never trust.

Cashtags: $ETH , $DAI

Hashtags: #DeFiHack #SmartContractRisk #KeySecurity