Crypto Prices

Ostium Suffers $18 Million Loss in Oracle-based Attack Amid Rising DeFi Exploits

2 hours ago
1 min read
1 views

Ostium Security Breach

In a significant security breach, Ostium, a decentralized perpetuals exchange built on Arbitrum, experienced a staggering loss of around $18 million. This incident occurred when hackers gained access to an oracle signer key, allowing them to manipulate the platform’s price feed and fabricate trading profits, as reported by blockchain security specialists at Blockaid.

Through the use of a registered PriceUpKeep forwarder and artificially dated oracle reports, the criminals executed a ploy that triggered a massive payout in the form of USDC, a stablecoin issued by Circle, draining a substantial portion of Ostium’s liquidity vault.

Ostium’s Response

In their response, Ostium acknowledged the situation via a post on X, stating:

“We are aware of the issue with the OLP vault. We have paused all trading. The team is investigating.”

At the time of the incident, the exchange had locked around $63 million in total value, meaning that this exploit compromised nearly a third of its available liquidity.

Trends in DeFi Security

The attack is part of a troubling trend, as 2026 has already proven to be one of the most challenging years for decentralized finance (DeFi) security. Defined as financial services operating on blockchain networks without the need for traditional intermediaries, DeFi has seen over $840 million in losses from various hacks in just the year’s initial five months.

High-profile breaches include $292 million stolen from KelpDAO and $285 million from Drift Protocol, while Resolv Labs lost over $25 million in June due to similar tactics employed by cybercriminals.

Concerns Over AI in Cybersecurity

Security analysts have expressed concerns that advancements in artificial intelligence are exacerbating the already rampant issue of exploit discovery. Danny Jenkins, the CEO and co-founder of ThreatLocker, has noted that AI technology possesses a superior ability to scrutinize code and identify vulnerabilities compared to human reviewers.

He pointed to the potential for new AI models, like Mythos, to fundamentally change the landscape of cybersecurity, warning that it may not be long before malicious actors gain access to such technologies.

This sentiment was echoed by researcher Taylor Hornby, who utilized Anthropic’s Claude Opus 4.8 to detect a long-standing vulnerability in Zcash, illustrating the increasing capability of cutting-edge AI in uncovering intricate software flaws.

Popular