Condividi questo articolo
Sonne Finance Token Drops 60% After $20M Exploit on Optimism
Attackers stole ether, velo and stablecoins before developers mitigated the hack and paused operations. Sonne’s markets on the Base blockchain were not affected.
Make us preferred on Google
- Sonne Finance's SONNE token plummeted 60% to 2.5 cents after a hack drained $20 million from the decentralized lending protocol.
- The exploiters used a "donation" attack to manipulate markets. The incident occurred on the Optimism blockchain version; the Base blockchain version was unaffected.
- The exploit happened after the protocol added token markets for Velodrome Finance's VELO. The attacker took advantage of a two-day timelock to execute four transactions, creating markets and adding collateral factors.
Sonne Finance's SONNE token slumped after the developers acknowledged a hack that drained $20 million from the decentralized lending protocol early Wednesday.
SONNE slid 60% to 2.5 cents, its lowest level in over a year, cutting market cap to $20 million even after the developers said they were able to stop $6.5 million being siphoned off once they realized the attack was happening.
STORY CONTINUES BELOW
The exploiters utilized a “donation” attack to manipulate certain markets offered by the platform, stealing various tokens before being interrupted. The incident occurred on Sonne’s platform on the Optimism blockchain. The Base blockchain version was not affected. (Think of this as a mobile application getting hacked on Apple iOS, but remaining safe on Android.)
How we used $100 to prevent more than $6.5M from being hacked in @SonneFinance incident today 🧵🧵 pic.twitter.com/wAzXciJe0x
— Tony KΞ (@tonyke_bot) May 15, 2024
How the Exploit Happened
The exploit occurred after the protocol added token markets for Velodrome Finance’s VELO following a recent community proposal. The attacker took advantage of a two-day timelock to execute four transactions, which included creating markets and adding collateral factors.
A timelock contract is a smart contract embedded in a blockchain that executes a transaction at a specific time, in this case, two days after it was locked.
The attacker executed transactions by donating large amounts of cryptocurrency to manipulate the exchange rate between two tokens. That effectively tricked the platform into believing it had more collateral than was really available.
Blockchain data shows the attacker managed to transfer millions of VELO, ether, and USD Coin (USDC) following the manipulation. They later converted this to $8 million in bitcoin and ether and transferred the funds to a new wallet address in early European hours.
#PeckShieldAlert @SonneFinance exploiter-labeled address has transferred $7.8M worth of cryptos, including 100 $WBTC & 556.1 $ETH, to a new address 0x6277...4c07 #Optimism pic.twitter.com/g4oiP5akr4
— PeckShieldAlert (@PeckShieldAlert) May 15, 2024
The protocol had previously avoided similar issues by adding markets with zero collateral factors, manually adding collateral, and permanently removing it before anyone was able to manipulate the market.
In a report on the exploit, the developers said they were working on retrieving the stolen funds and floated a bounty for the hacker.
Di più per voi
KuCoin captured a record share of centralised exchange volume in 2025, with more than $1.25tn traded as its volumes grew faster than the wider crypto market.
Cosa sapere:
- KuCoin recorded over $1.25 trillion in total trading volume in 2025, equivalent to an average of roughly $114 billion per month, marking its strongest year on record.
- This performance translated into an all-time high share of centralised exchange volume, as KuCoin’s activity expanded faster than aggregate CEX volumes, which slowed during periods of lower market volatility.
- Spot and derivatives volumes were evenly split, each exceeding $500 billion for the year, signalling broad-based usage rather than reliance on a single product line.
- Altcoins accounted for the majority of trading activity, reinforcing KuCoin’s role as a primary liquidity venue beyond BTC and ETH at a time when majors saw more muted turnover.
- Even as overall crypto volumes softened mid-year, KuCoin maintained elevated baseline activity, indicating structurally higher user engagement rather than short-lived volume spikes.
More For You
Ethereum Foundation makes post quantum security a top priority as new team forms
EF researcher Justin Drake says a new post quantum team will drive wallet safety upgrades, research prizes and test networks as quantum timelines shorten.
What to know:
- The Ethereum Foundation has elevated post-quantum security to a top strategic priority, forming a dedicated Post Quantum team led by Thomas Coratger with support from leanVM cryptographer Emile.
- Researcher Justin Drake said Ethereum is shifting from background research to active engineering, including biweekly developer sessions on post-quantum transactions and multi-client post-quantum consensus test networks.
- The foundation is backing new cryptography with funding and outreach, launching two $1 million prizes, planning post-quantum community events and education, and stressing that blockchains must prepare early for quantum threats despite their long-term nature.
Top Stories
