Balancer V2 Suffers $128M Data Breach Due to Smart Contract Flaw

Cyber Security News by CyberSum.net

Published on November 5, 2025 at 06:00 PM

3 sources

Balancer V2, a prominent automated market maker, experienced a significant data breach due to a vulnerability in its smart contract infrastructure. The flaw allowed an attacker to siphon $128 million worth of digital assets. The breach stemmed from a faulty check in the manageUserBalance function, enabling unauthorized fund transfers. Despite multiple audits, the exploit occurred, highlighting the challenges in securing composable DeFi systems. Users are urged to withdraw funds from affected pools and revoke smart contract approvals.

Also Read

Contagious Interview Campaign Uses JSON Services for Malware Delivery

Threat actors behind the Contagious Interview campaign are using JSON storage services to host and deliver malware. The campaign targets software developers through professional networking sites, instructing them to download trojanized code projects. These projects contain Base64-encoded values that lead to obfuscated JavaScript malware, BeaverTail, which harvests sensitive data and drops a Python backdoor called InvisibleFerret. The campaign's sophistication and use of legitimate services highlight the actors' stealthy tactics.

By Cyber Security News by CyberSum.netNovember 15, 2025 at 12:00 AM