Skip to content
EconomiciumEconomic news, in minutes.
Crypto

Ostium DEX hit with $18M oracle exploit on Arbitrum

By

2 min read4 sources
Likely impact: Bearish
ShareCopied!
Close-up of a golden Bitcoin coin resting on dark soil, symbolizing cryptocurrency growth.
Photo by www.kaboompics.com on Pexels

The tl;dr

Ostium, a decentralized perpetuals exchange on Arbitrum, halted trading after a hacker exploited its price oracle to drain roughly $18 million. The attacker compromised an oracle signer key and submitted falsified price data to generate fake trading profits, then converted the stolen funds to Ethereum and dispersed them across multiple wallets.

Markets in this story

30-day · delayed
Ethereum···
 

Key points

  • An attacker compromised Ostium's oracle signer key, which is a critical component that validates price feeds used for trading decisions
  • The hacker submitted future-dated, falsified oracle data to artificially inflate their trading positions and trigger a fraudulent $18 million payout from the protocol
  • Ostium immediately paused trading and instructed users to revoke contract approvals as a precautionary measure to prevent further exploitation
  • The attacker converted the stolen USDC stablecoin into Ethereum and dispersed it across multiple wallets to obscure the trail
  • The exploit highlights ongoing security risks in decentralized finance, where price oracle manipulation remains a common attack vector

By the numbers

$18 million
Estimated loss from exploit
Arbitrum
Blockchain network affected

Ostium, an Arbitrum-based decentralized exchange for perpetuals trading, ground to a halt after an attacker successfully exploited a vulnerability in its price-reporting system. By compromising an oracle signer key, the hacker was able to submit false price data that manipulated how the protocol valued assets, allowing them to generate fake trading profits and extract roughly $18 million from Ostium’s liquidity vault.

The attack unfolded through a manipulation of Ostium’s oracle infrastructure, which normally serves as the reliable source of truth for market prices across the platform. Instead of reflecting real prices, the attacker fed future-dated price information that made losing positions appear profitable, triggering the protocol to pay out funds that should never have left the system. Once successful, they immediately began converting the proceeds from USDC into Ethereum and moving it across multiple wallets to obscure its origin.

Ostium responded quickly by shutting down all trading and asking users to revoke their contract approvals as a precautionary measure. Security firms are investigating the incident further, though losses are confirmed at approximately $18 million. This marks another chapter in a recurring pattern: DeFi protocols remain vulnerable to attacks that target the oracles they depend on, which makes securing these price-reporting systems a critical but challenging task.

Oracle attacks are a recurring vulnerability in DeFi platforms that can drain millions in minutes, and users of similar protocols need to understand these risks when depositing funds.
Why it matters

What's your take?

Vote how this news hits the market.

0 votes

One vote per visitor · results update live

Read the full story

We summarised these sources. Click through to read them in full.

Well corroborated· 4 outlets, 3 established

Topics

ShareCopied!

This summary is AI-generated from the sources above and may contain errors, so always verify with the original reporting. It's general information only, not financial, investment, or trading advice, and not a recommendation to buy or sell anything. Markets carry risk; do your own research. See our full disclaimer.

Related stories

2 min read3 sourcesBearish

Bonzo Lend loses $9M to oracle manipulation attack on Hedera

Bonzo Lend, a lending protocol on the Hedera blockchain, suffered a $9 million loss when an attacker exploited a flaw in Supra's price oracle to artificially inflate collateral values and borrow funds. A second wallet claiming to be a white hat hacker stole about $1 million more but said it would return the funds.

Be the first to vote0 votes
2 min read3 sources

Robinhood Launches Public Blockchain, Pushes into Crypto Trading

Robinhood Markets has launched its own public blockchain and announced plans to offer crypto trading to UK residents. The move comes as the trading platform continues to expand its cryptocurrency and decentralized finance offerings beyond its traditional stock and options business.

Be the first to vote0 votes
2 min read2 sources

MetaMask Rolls Out Yield-Bearing Stablecoin Wallet for Everyday Spending

MetaMask has launched a new product called Money Account that combines stablecoin holdings with spending features and yield generation. The account offers returns of up to 4% annually on mUSD stablecoin balances while allowing users to make card purchases, marking a shift toward making stablecoins practical for daily use rather than just trading.

Be the first to vote0 votes

Your daily economic brief, over lunch.

One concise email a day with the stories that moved markets, delivered around noon your time, wherever you are. No spam, unsubscribe anytime.

  • Free forever
  • Timezone-aware
  • One-click unsubscribe