A major security breach has struck the decentralized finance sector after attackers drained approximately $7.3 million from more than 1,400 liquidity pools connected to legacy DxSale contracts on BNB Chain.
Blockchain security researchers believe the incident may be linked to vulnerabilities within an older DxSale locker contract, raising fresh concerns about the risks associated with outdated smart contracts and weak administrative controls.
How the Attack Unfolded
The exploit was first highlighted by blockchain security monitor PeckShieldAlert, citing findings from an on chain investigator known as Tahax. According to their analysis, attackers targeted over 1,400 legacy DxSale liquidity pool contracts and successfully extracted roughly $7.3 million worth of digital assets.
Following the theft, the funds were reportedly routed through AnySwap in an effort to obscure transaction trails and complicate tracking efforts.
PeckShield further revealed that a wallet identified as “0xC457…FA69” transferred 2,958 BNB, valued at approximately $1.87 million, into two primary addresses. The funds were later moved through multiple Binance deposit wallets, suggesting attempts to further disperse the stolen assets.
Questions Surround DxSale’s Locker Contract
DxSale gained popularity several years ago as a token launchpad that allowed blockchain projects to create tokens and liquidity pools without building their own infrastructure. Many projects launching on BNB Chain relied on the platform to lock their liquidity provider tokens.
According to Tahax, numerous liquidity pools remained locked within the platform for years, with project teams and investors assuming the assets were secure.
However, the investigator claims that around nine months ago, ownership of the locker contract was quietly transferred by the DxSale deployer to a new wallet. No public announcement or migration guidance was reportedly issued at the time.
Tahax further alleged that the locker contract was not publicly verified and may have contained a hidden backdoor vulnerability. This weakness could have allowed the attacker to gain unauthorized control over locked assets.
The report states that the wallet linked to the exploit was newly created, funded through Bybit, and potentially connected through AnySwap. Shortly after obtaining control of the locker contract, the attacker allegedly began draining liquidity pools.
At the time of reporting, DxSale had not released an official statement addressing the incident.
DeFi Security Challenges Continue to Escalate
The DxSale breach is the latest in a string of attacks targeting decentralized finance platforms. Industry estimates suggest that crypto projects lost at least $650 million to exploits and security incidents in April alone.
Security concerns have persisted throughout May. Last week, attackers reportedly stole more than $11 million from the Verus Bridge by exploiting flaws in its payment verification mechanism. Researchers explained that the hacker was able to submit a minimal transaction that passed validation checks while unlocking significantly larger withdrawals from the bridge’s reserves.
Earlier in the month, liquidity provider Trusted Volumes suffered losses of approximately $5.9 million after an attacker exploited weaknesses in its custom settlement architecture. Analysts noted that the vulnerability stemmed from inconsistencies between authorization checks and fund withdrawal mechanisms.
Meanwhile, THORChain also faced security issues. Blockchain investigator ZachXBT reported that the protocol may have lost more than $10 million, triggering a rapid 15% decline in the value of its native RUNE token.
Industry Experts Sound the Alarm
The growing frequency of DeFi exploits has intensified concerns among security professionals. Manuel Aráoz, co founder of OpenZeppelin, recently argued that much of the decentralized finance ecosystem remains vulnerable. He warned that attackers equipped with artificial intelligence tools are increasingly capable of identifying and exploiting weaknesses faster than development teams can detect and fix them.
As security threats continue to evolve, the latest incidents highlight the importance of regular contract audits, transparent governance practices, and proactive monitoring of legacy infrastructure across the DeFi landscape.#crypto#cryptonews https://coinsignals.net https://t.me/coinsignalpublic
