Analysis

In-depth post-mortem analysis of DeFi/Web3 hacks

Critical

Curve Finance Reentrancy Deep Dive

Apr 21, 2026 Ethereum $62M 1 min read

Overview

On July 30, 2023, multiple Curve Finance pools were exploited due to a reentrancy vulnerability in Vyper compiler versions 0.2.15, 0.2.16, and 0.3.0.

Root Cause

The Vyper compiler’s @nonreentrant decorator was malfunctioning in …

reentrancy vyper-compiler curve
Critical

Euler Finance Flash Loan Attack Analysis

Apr 20, 2026 Ethereum $197M 1 min read

Overview

On March 13, 2023, Euler Finance was exploited for approximately $197M through a sophisticated flash loan attack that abused the protocol’s donation mechanism.

Root Cause

Euler’s donateToReserves() function allowed users to …

flash-loan donation-attack euler