Share this article

Meta Pool, a Liquid Staking Protocol, Suffers $27M Exploit

The hacker could only swap $25,000 worth of the token due to low liquidity.

By Oliver Knight|Edited by Parikshit Mishra

Updated Jun 17, 2025, 2:00 p.m. Published Jun 17, 2025, 1:35 p.m.

Make us preferred on Google

Under a low-light red lamp, a pair of hands types on a keyboard. (Wesley Tingey/Unsplash+) — (Wesley Tingey/Unsplash+)

What to know:

Meta Pool lost $27M in a smart contract exploit that allowed unlimited minting of its mpETH token.
The attacker could only convert $25K due to low liquidity on Uniswap.
The exploit adds to a growing trend of DeFi losses, with $302M lost in May alone.

Multi-chain liquid staking protocol Meta Pool suffered a smart contract exploit on Tuesday, resulting in the loss of $27 million.

Blockchain security firm PeckShield reported that a bug in the protocol's staking contract allowed users to freely mint mpETH, the protocol's liquid staking token (LST).

STORY CONTINUES BELOW

Don't miss another story.Subscribe to the Crypto Daybook Americas Newsletter today. See all newsletters

By signing up, you will receive emails about CoinDesk products and you agree to our terms & conditions and privacy policy.

While an attacker managed to mint $27 million worth of the tokens, a lack of liquidity on Uniswap meant that they could only swap 10 ETH worth ($25,000).

An Etherscan transaction before the exploit took place showed that an account labeled as "MEV Frontrunner Yoink" removed 90 ETH worth of liquidity from the pool.

Meta Pool is yet to post any updates about the exploit on social media. Total value locked (TVL) for the project still stands at $75 million, according to DefiLlama, while the protocol's MPDAO governance token trades at $0.02 on minimal volume.

The exploit continues a trend from May that saw investors lose $302 million to hacks, scams and exploits, according to CertiK.

Hack Exploit Liquid staking

More For You

Pudgy Penguins: A New Blueprint for Tokenized Culture

By CoinDesk Research

Dec 30, 2025

Commissioned byPudgy Penguins

Pudgy Penguins is building a multi-vertical consumer IP platform — combining phygital products, games, NFTs and PENGU to monetize culture at scale.

What to know:

Pudgy Penguins is emerging as one of the strongest NFT-native brands of this cycle, shifting from speculative “digital luxury goods” into a multi-vertical consumer IP platform. Its strategy is to acquire users through mainstream channels first; toys, retail partnerships and viral media, then onboard them into Web3 through games, NFTs and the PENGU token.

The ecosystem now spans phygital products (> $13M retail sales and >1M units sold), games and experiences (Pudgy Party surpassed 500k downloads in two weeks), and a widely distributed token (airdropped to 6M+ wallets). While the market is currently pricing Pudgy at a premium relative to traditional IP peers, sustained success depends on execution across retail expansion, gaming adoption and deeper token utility.

View Full Report

More For You

Visa and Mastercard aren’t buying the stablecoin hype for everyday payments

By Helene Braun|Edited by Nikhilesh De

56 minutes ago

Despite crypto’s promise of faster, cheaper transactions, the payments giants aren’t buying the stablecoin pitch, at least not in developed markets.

What to know:

Visa and Mastercard executives told investors they see little current product-market fit for stablecoins in everyday consumer payments, especially in digitally developed markets.
Both card networks are experimenting with blockchain and stablecoin settlement but view most crypto activity today as trading and speculation rather than a near-term threat or opportunity to their core businesses.
Despite their caution, onchain activity is growing rapidly, with bitcoin settling more value than Visa and Mastercard combined, while SoFi is pushing ahead on crypto as part of a broader strategy to pair blockchain innovation with bank-grade stability.

Read full story