Berachain’s Emergency Hard Fork Traps Hacker, Freezing Funds From Balancer V2 Exploit

Berachain has executed an emergency arduous fork to lure a hacker’s funds following a serious breach on decentralized finance (DeFi) protocol Balancer, which noticed over $128 million stolen from its V2 Composable Stable Pools.

This is completed to comprise the fallout from the current Balancer V2 exploit, freezing funds linked to the attacker and coordinating a return of belongings by way of a self-identified white-hat operator.

In an announcement on X, the Bera Foundation confirmed that the arduous fork binary has been distributed and lots of validators have already upgraded.

Bera core replace:

The binary for the arduous fork has been circulated and most of the validators have upgraded. Prior to going reside and producing blocks as soon as once more, we might like to make sure that core infrastructure companions mandatory for chain operations (oracles for liquidations and many others)…

— Berachain Foundation (@berachain) November 4, 2025

The chain’s liveness stays paused whereas the core staff works with infrastructure companions to make sure stability.

“Prior to going reside and producing blocks as soon as once more, we’d like to make sure that core infrastructure companions mandatory for chain operations—oracles for liquidations, and many others.—have up to date their RPCs,” the staff stated.

It added that bridges, centralized exchanges, and custodians will probably be reconnected as soon as the chain resumes exercise.

The emergency measure comes after a extreme breach at DeFi protocol Balancer earlier this week.

Berachain Executes Emergency Measure After $128M Balancer Exploit

The exploit focused Balancer V2 Composable Stable Pools, draining over $128 million throughout a number of chains. Security agency PeckShield was among the many first to flag the incident, calling it one of many largest DeFi exploits of the 12 months.

The assault unfolded over a number of hours because the hacker manipulated Balancer’s good contracts by way of a vulnerability in its authorization logic.

Analysts at Defimon Alerts and Decurity later recognized the problem throughout the manageUserBalance operate, which improperly verified consumer permissions.

Balancer Protocol loses over $116 million in cross-chain exploit, marking one of many largest DeFi safety breaches in 2025.#Balancer #DeFihttps://t.co/7nZYB2xSar

— Cryptonews.com (@cryptonews) November 3, 2025

By exploiting this oversight, the attacker was in a position to impersonate different customers and withdraw inner balances with out authorization.

On-chain information reviewed by Nansen showed suspicious transfers of wrapped Ether (WETH), osETH, and wstETH to a brand new pockets, adopted by large-scale conversions into Ethereum.

Cyvers Alerts reported that the attacker started laundering funds by way of Tornado Cash shortly afterward.

While the breach was nonetheless underneath investigation, on-chain analyst EmberCN reported that liquid staking protocol StakeWise successfully recovered 5,041 osETH, worth roughly $19.3 million, through a contract name.

₿ DeFi protocol Balancer suffered a serious breach and managed to get well a number of the belongings from hackers by way of a contract name.#Balancer #CryptoHack #DeFiProtocolhttps://t.co/VQcuJ4OBVk

— Cryptonews.com (@cryptonews) November 4, 2025

The restoration decreased whole stolen belongings to round $98 million, with greater than half already transformed to ETH.

Berachain’s swift response was intended to prevent additional losses after it turned one of many affected ecosystems.

Balancer Breach Tests DeFi’s Defenses as Berachain Prepares Fund Recovery

According to the inspiration, an MEV bot operator, who has been energetic on the chain for a number of months, presently holds the compromised funds and has agreed to return them.

“He has indicated that he’s a white hat and is prepared to pre-sign a set of transactions to switch the funds again upon the chain going reside,” Berachain acknowledged.

The staff confirmed that the funds will probably be restored to the Berachain deployer handle at 0xD276D…, and on-chain messages have been despatched to confirm the method.

Additionally, the Balancer exploit has intensified scrutiny of DeFi safety. Despite present process greater than ten audits by high corporations, including OpenZeppelin, Trail of Bits, and Certora, Balancer’s V2 contracts had been compromised.

Developer Suhail Kakar commented that repeated audits are not a assure of security, noting that “code is difficult, DeFi is tougher.”

balancer went by way of 10+ audits. the vault was audited 3 separate occasions by completely different corporations

nonetheless acquired hacked for $110M

this area wants to simply accept that ‘audited by X’ means virtually nothing. code is difficult, defi is tougher

it’s unlucky however hope the staff recovers pic.twitter.com/nZzVzCdqDO

— Suhail Kakar (@SuhailKakar) November 3, 2025

The incident provides to Balancer’s troubled safety historical past. Since launching in 2020, the protocol has suffered a number of assaults, together with a $520,000 loss on account of a deflationary token vulnerability in 2020, a $2.1 million rounding error exploit in 2023, and a DNS hijack later that year.

Balancer’s whole worth locked has plunged from $442 million to round $213 million inside a day, in line with DeFiLlama information.

The publish Berachain’s Emergency Hard Fork Traps Hacker, Freezing Funds From Balancer V2 Exploit appeared first on Cryptonews.