In a sophisticated attack from August 26-27, 2025, BetterBank, the DeFi protocol on PulseChain, experienced a critical exploit that drained roughly $5 million in assets. The incident was triggered by a fundamental flaw in the bonus reward system, leading to a net loss of about $1.4 million despite the return of approximately $2.7 million from the attacker.
The vulnerability was previously flagged in a security audit conducted by Zokyo but was downgraded in severity, leading to organizational inaction. The attackers exploited the logic flaws in the protocol’s smart contracts and executed a reward minting loop, which facilitated the draining of liquidity pools through a combination of flash loans and the creation of fake trading pairs. Ultimately, this incident underscores the necessity of stringent security measures and proactive communication within decentralized finance projects to mitigate potential vulnerabilities and their catastrophic implications.
👉 Pročitaj original: Kaspersky Securelist
