Balancer Hacked for $128M – What Happened?

Balancer, the favored Automated Market Maker (AMM) and decentralized liquidity protocol, suffered a significant hack early Monday morning round 9:30 a.m. UTC.

Attackers drained about $128 million in crypto throughout a number of chains, because of a bug in Balancer V2’s vault system. 

What Happened To Balancer?

The Balancer V2 vault acts as a central hub for liquidity, holding tokens for all Balancer swimming pools. 

A selected operate – manageUserBalance – didn’t correctly test permissions, permitting attackers to withdraw funds they didn’t personal.

Security groups from PeckShield, Cyvers, and Decurity noticed the problem and traced it to defective entry controls. 

Hi @Balancer, it’s your decision to have a look: pic.twitter.com/1WcAUBrITp

— PeckShield Inc. (@peckshield) November 3, 2025

The attackers began on Ethereum, then moved on to different networks utilizing Balancer’s design or code.

This included outstanding Layer 2 networks comparable to Arbitrum, Base, Polygon, and Optimism, in addition to Berachain and Sonic. 

Assets, together with StakeWise Staked ETH (osETH), Wrapped ETH (WETH), and Wrapped stETH (wstETH), have been transferred into new wallets and commenced consolidating funds – doubtlessly to launder them later.

As extra networks reported losses, the operating complete exceeded $128M.

Why Did It Spread Across Protocols?

Balancer V2’s structure locations most tokens into one central vault to avoid wasting gasoline, in addition to make it simpler to construct new pool varieties. 

This construction improves effectivity and adaptability for builders, nevertheless it additionally introduces a single level of failure. 

When the vault’s entry controls failed, the weak point didn’t stay remoted – each pool related to that vault was out of the blue uncovered.

Several different protocols that reused or constructed on components of Balancer’s open-source code have been additionally uncovered to the exploit.

This resulted within the following actions by tasks primarily based on Balancer’s code:

• Beets Finance reported roughly $3M affected.
• Beefy paused all merchandise tied to Balancer V2.
• Berachain halted its whole chain whereas the core crew ready an emergency exhausting fork to guard round $12M in consumer funds.

Balancer’s Reaction

Balancer posted on X that engineering and safety groups are treating the exploit as a high precedence, nevertheless a autopsy assertion and report are nonetheless pending.

We’re conscious of a possible exploit impacting Balancer v2 swimming pools.

Our engineering and safety groups are investigating with high precedence.

We’ll share verified updates and subsequent steps as quickly as now we have extra info.

— Balancer (@Balancer) November 3, 2025

Market Reaction

Balancer (BAL) has now dropped greater than 10% over the past 24 hours, because the hack coincides with a broader market sell-off.

The token is at the moment buying and selling at $0.884, down from $0.983 on Sunday.

Crypto Hacks In 2025

Despite a quiet yr for DeFi, crypto hacks have surged in 2025.

Chainalysis had already counted over $2.17B stolen by mid-2025 – already worse than everything of 2024. 

This Balancer hit provides to that complete and reveals a pattern: attackers are going after each large protocols and particular person wallets.

What Should Users Do?

It is really useful that customers pause all interactions with Balancer V2 swimming pools (and any associated apps) till the crew publishes confirmed fixes.

Check official undertaking channels — comparable to X accounts, Discord servers, or Websites — for an inventory of affected swimming pools, and keep away from buying and selling affected tokens till a decision has been verified.

The put up Balancer Hacked for $128M – What Happened? appeared first on DeFi Rate.