Poland Becomes Sole EU MiCA Holdout After Parliament Fails to Overturn Veto
Crypto21:06
CZ Emphasizes Strict Private Key Isolation for Hardware Wallets
Macro21:06
US Small Business Bankruptcies Surge to Records as Inflation Persists
Alert20:06
Jupiter Team Admits 'Zero Risk' Claim Inaccurate Amid Rehypothecation Scrutiny
Crypto20:06
Binance Futures Adds RWUSD as Reward-Bearing Margin Asset
Crypto20:06
Base Network Payment Protocol Settlements Cross $500k with High Weekly Growth
Crypto20:06
Ethereum Stablecoin Velocity and Lending Liquidity Reach All-Time Highs
Crypto
SlowMist Analysis Reveals Root Cause of Yearn Finance Exploit
12/05/2025, 03:06
AI SUMMARY
●SlowMist identifies logic flaw in '_calc_supply' as exploit cause
●December 1st attack on Yearn Finance resulted in ~$9M loss
●Vulnerability specifically affected the yETH Weighted pool mechanics
Security firm SlowMist has published a post-mortem analysis of the December 1st exploit targeting Yearn Finance, which resulted in losses of approximately $9 million. The investigation pinpointed the vulnerability to the logic within the `_calc_supply` function of the yETH Weighted pool.
According to the report, the flaw allowed attackers to manipulate the supply calculation mechanics. This technical breakdown provides critical insight into the attack vector, highlighting the specific smart contract logic that failed to prevent the unauthorized drainage of funds.