Share this article

bEarn Fi Loses $11M in Latest Exploit of a Binance Smart Chain DeFi Protocol

The cause of the attack is still under investigation.

Updated Sep 14, 2021, 12:56 p.m. Published May 16, 2021, 3:28 p.m.

A screenshot of bEarn Fi's official website.

bEarn Fi, a cross-chain auto yield farming protocol, was exploited earlier Sunday, resulting in a loss of almost $11 million, according to China-based blockchain analysis firm PeckShield.

STORY CONTINUES BELOW

Don't miss another story.Subscribe to the Crypto Daybook Americas Newsletter today. See all newsletters

By signing up, you will receive emails about CoinDesk products and you agree to our terms of use and privacy policy.

It's the latest attack on a decentralized finance protocol built on Binance Smart Chain, one of the so-called Ethereum killers that's built by centralized crypto exchange giant Binance.
"Dear community, we are aware that users' deposit in BUSD have increased significantly," bEarn Fi's official Twitter account stated at about 9:30 a.m. ET Sunday. "Please be advised that we are currently investigating the Alpaca Vault incident. No other bVault has been affected but we have taken a precautionary measure and temporarily paused withdrawals and deposits for all bVaults."
A spokesperson from PeckShield told CoinDesk in a WeChat message that the firm is still investigating the cause of the attack.
On bEarn Fi's Telegram group, users have been asking bEarn Fi's team members since early Sunday morning about whether something went wrong with the Binance USD (BUSD) vault on bEarn Fi.
"Is there a BUSD vault problem?" one user asked at 7:11 a.m. ET. "It's increasing so much that it's impossible."
"We are working on it," one team member from bEarn Fi wrote in response to users' multiple requests about whether their funds are safe.
Earlier in May, another BSC-based defi protocol, Spartan Protocol, was attacked in a breach that caused more than $30 million in losses.

DeFi Binance Smart Chain Exploit

More For You

Protocol Research: GoPlus Security

By CoinDesk Research

Nov 14, 2025

Commissioned byGoPlus

What to know:

As of October 2025, GoPlus has generated $4.7M in total revenue across its product lines. The GoPlus App is the primary revenue driver, contributing $2.5M (approx. 53%), followed by the SafeToken Protocol at $1.7M.
GoPlus Intelligence's Token Security API averaged 717 million monthly calls year-to-date in 2025 , with a peak of nearly 1 billion calls in February 2025. Total blockchain-level requests, including transaction simulations, averaged an additional 350 million per month.
Since its January 2025 launch , the $GPS token has registered over $5B in total spot volume and $10B in derivatives volume in 2025. Monthly spot volume peaked in March 2025 at over $1.1B , while derivatives volume peaked the same month at over $4B.

View Full Report

More For You

Zcash Floats Dynamic Fee Plan to Ensure Users Won’t Be Priced Out

By Shaurya Malwa

1 hour ago

(Christian Dubovan/Unsplash, modified by CoinDesk)

ZEC zoomed 12% amid the fee discussion, beating gains across all major tokens.

What to know:

A new proposal by Shielded Labs suggests a dynamic fee market for Zcash to address rising transaction costs and network congestion.
The proposed system uses a median fee per action observed over the prior 50 blocks, with a priority lane for high-demand periods.
The changes aim to maintain Zcash's privacy features while avoiding complex protocol redesigns.

Read full story

Latest Crypto News