Share this article
Blockchain Security Firm Quantstamp Hopes to Battle Flash Loan Attacks With New Service
The service has been released in collaboration with researchers from the University of Toronto.
Updated Aug 23, 2023, 1:00 p.m. Published Aug 23, 2023, 1:00 p.m.
Blockchain security platform Quantstamp is hoping to quell the increasing threats of flash loan attacks with a new service that claims to catch exploits before they go off, the company told CoinDesk.
The Economic Exploit Analysis service detects common attack pathways used by exploiters through automated tooling before protocols get hacked. The service has been released in collaboration with researchers from the University of Toronto.
STORY CONTINUES BELOW
In the first half of 2023 alone, an estimated $207 million worth of tokens were stolen through flash loan attacks.
A flash loan is an uncollateralized loan provided by a smart contract that can be taken out for as short as a single transaction. In these attacks, hackers leverage flash loans to borrow substantial funds and manipulate DeFi protocols into unexpected states that developers may not have anticipated.
Flash loan attacks can drain the entire total value locked (TVL) of a DeFi protocol, and their complicated nature combined with DeFi’s composability means these attacks often evade conventional audits.
“DeFi has the potential to change the global financial infrastructure for the better, but its success requires preempting threats like flash loan attacks. We developed this tool to provide DeFi protocols an extra layer of security on top of audits,” said Martin Derka, head of new initiatives at Quantstamp, in a note to CoinDesk. “As DeFi evolves, security measures need to evolve with it. Services like Economic Exploit Analysis give us an edge against hackers.”
The Quantstamp service is available for both deployed and undeployed protocols. However, while the search process of the tool is automated, some manual guidance and protocol-specific adaptations are required.
More For You
What to know:
- As of October 2025, GoPlus has generated $4.7M in total revenue across its product lines. The GoPlus App is the primary revenue driver, contributing $2.5M (approx. 53%), followed by the SafeToken Protocol at $1.7M.
- GoPlus Intelligence's Token Security API averaged 717 million monthly calls year-to-date in 2025 , with a peak of nearly 1 billion calls in February 2025. Total blockchain-level requests, including transaction simulations, averaged an additional 350 million per month.
- Since its January 2025 launch , the $GPS token has registered over $5B in total spot volume and $10B in derivatives volume in 2025. Monthly spot volume peaked in March 2025 at over $1.1B , while derivatives volume peaked the same month at over $4B.
More For You
ZKsync Lite to Shut Down in 2026 as Matter Labs Moves On
The company framed the move, happening in early 2026, as a planned sunset.
What to know:
- Matter Labs plans to deprecate ZKsync Lite, the first iteration of its Ethereum layer-2 network, the team said in a post on X over the weekend.
- The company framed the move, happening in early 2026, as a planned sunset for an early proof-of-concept that helped validate their zero-knowledge rollup design choices before newer systems went live.
Top Stories
