Finance
Share this article

BadgerDAO Reveals Details of How It Was Hacked for $120M

The DeFi platform said an application platform that runs on its cloud network was the vector for the attack.

By Nelson Wang
Updated May 11, 2023, 5:47 p.m. Published Dec 10, 2021, 11:25 p.m.
Japanese Exchange Liquid Global Hacked, $90M in Crypto Potentially Stolen
Japanese Exchange Liquid Global Hacked, $90M in Crypto Potentially Stolen

In a blog post this week, decentralized finance platform BadgerDAO provided details of how it was exploited for $120 million earlier this month.

  • BadgerDAO said a phishing incident that occurred on Dec. 2 was caused by “a maliciously injected snippet” from Cloudflare, an application platform that runs on Badger’s cloud network.
  • The hacker used a compromised API key that was created without the knowledge or authorization of Badger engineers to periodically inject the malicious code that affected a subset of its customers.
  • The hacker ultimately stole $130 million in funds, but approximately $9 million of that was recoverable since those funds were transferred by the hacker but not yet withdrawn from Badger’s vaults.
  • Badger has since patched the Cloudflare exploit, updated Cloudfare’s account password and deleted or freshened API keys where possible.
  • Badger hired cybersecurity firm Mandiant and blockchain analysis firm Chainalysis to investigate the exploit, and is working with both companies, as well as authorities in the U.S. and Canada, to recover any funds possible.
ExploitsDeFi

More For You

State of the Blockchain 2025

By CoinDesk Research
Dec 19, 2025
Commissioned byInput Output Group
State of the Blockchain 16:9

L1 tokens broadly underperformed in 2025 despite a backdrop of regulatory and institutional wins. Explore the key trends defining ten major blockchains below.

What to know:

2025 was defined by a stark divergence: structural progress collided with stagnant price action. Institutional milestones were reached and TVL increased across most major ecosystems, yet the majority of large-cap Layer-1 tokens finished the year with negative or flat returns.

This report analyzes the structural decoupling between network usage and token performance. We examine 10 major blockchain ecosystems, exploring protocol versus application revenues, key ecosystem narratives, mechanics driving institutional adoption, and the trends to watch as we head into 2026.

View Full Report

More For You

AI trade isn’t dead: An inside look into Wall Street's lucrative data center deals

By Will Canny|Edited by Aoyon Ashraf
11 minutes ago
Bitcoin miners are attractive partners to build AI data centers: Bernstein. (Shutterstock)

Megawatts are still trading hands, and the AI trade is very much alive, according to investment banker Joe Nardini, as miners pivot to HPC and buyers chase scarce power.

What to know:

  • Bitcoin miners and AI/HPC developers are still bidding aggressively for megawatts, even into late Dec., according to investment banker Joe Nardini.
  • GPU-heavy data center capacity is drawing multiple creditworthy tenants at strong rates.
  • Nardini noted that bitcoin miners that repositioned toward HPC are seeing higher valuations and accessing cheaper capital.
Read full story