A massive exploit on Ethereum-based DeFi protocol Balancer has resulted in over $70 million in losses, making it the platform’s most severe breach to date.
Quick Summary – TLDR:
- Balancer was hacked for over $70 million in a complex smart contract exploit affecting multiple liquidity pools.
- Assets were drained in minutes, with tokens transferred to a single new wallet across multiple chains.
- This marks Balancer’s third major breach since 2020, sparking renewed scrutiny of DeFi security.
- Analysts warn the attack is still ongoing, and users should avoid interacting with Balancer pools.
What Happened?
One of Ethereum’s most established decentralized finance (DeFi) protocols, Balancer, suffered a devastating exploit on November 3. More than $70 million was drained from its liquidity pools in a matter of minutes, with the attacker leveraging a vulnerability in how the platform handles smart contract interactions. As of now, no official response has been issued by Balancer beyond a brief acknowledgment on social media.
We’re aware of a potential exploit impacting Balancer v2 pools.
— Balancer (@Balancer) November 3, 2025
Our engineering and security teams are investigating with high priority.
We’ll share verified updates and next steps as soon as we have more information.
The Anatomy of the Breach
The attack targeted Balancer’s V2 vaults, using a malicious contract that manipulated vault calls during the initialization of liquidity pools. According to blockchain investigators, the exploit worked by bypassing critical safeguards due to improper callback handling and authorization. This allowed the attacker to initiate unauthorized swaps and manipulate balances across interconnected pools.
Assets Stolen:
- 6,850 StakeWise Staked Ether (OSETH)
- 6,590 Wrapped Ether (WETH)
- 4,260 Lido wstETH (wSTETH)
The transactions, first spotted on Ethereum mainnet, funneled tokens into a newly created wallet, which analysts believe is controlled by the hacker. The attacker quickly consolidated assets, likely in preparation to obfuscate them through mixers or cross-chain bridges.
Blockchain security firms like PeckShield, Cyvers, and Nansen are actively investigating the breach, with ongoing analysis suggesting a deep technical understanding of Balancer’s composable design was necessary to pull off the hack.
More Than Just Ethereum
What started on Ethereum quickly spread. Updated figures from blockchain analysts show over $128 million drained across multiple chains, making this not just a protocol-specific issue but a cross-chain catastrophe.
Losses by Chain:
- Ethereum: $99M
- Berachain: $12.8M
- Arbitrum: $6.8M
- Base: $3.9M
- Sonic: $3.4M (2% of its total TVL)
- Optimism: $1.58M
- Polygon: $232K
These numbers highlight a growing concern in the DeFi space, that interconnected protocols and shared liquidity designs can lead to system-wide risk when one component is compromised.
Repeated Failures Raise Alarm
This marks Balancer’s third major security incident in five years, a pattern that is drawing sharp criticism from the DeFi community and institutional observers.
Balancer’s Hack History:
- 2020: Exploited for $500K via deflationary token handling.
- August 2023: $900K drained after a known liquidity pool vulnerability.
- September 2023: $238K lost in a phishing attack via a DNS hijack.
Despite previous audits and mitigations, these incidents highlight that security measures have been inconsistent, leaving the protocol vulnerable to novel and recurring attack vectors.
A DeFi Security Wake-Up Call
The Balancer breach underscores a major paradox in DeFi: while the system thrives on open-source transparency and composability, those same features offer attackers a blueprint. Once an exploit is triggered, there is no central authority to intervene, making all losses effectively permanent.
Some security firms believe this event could drive new momentum for:
- Real-time monitoring tools and threat detection.
- Decentralized insurance pools.
- Stronger inter-protocol security coordination.
But for now, traders have been advised to steer clear of Balancer pools until full clarity emerges.
SQ Magazine Takeaway
This Balancer hack hit differently. As someone who watches the DeFi space daily, it’s frustrating to see the same mistakes play out again and again. We cheer on decentralization, but it’s clear the industry still underestimates just how vulnerable composable protocols really are. I believe this should be a turning point. No more just relying on past audits or hoping the worst won’t happen. Continuous monitoring, smarter defenses, and real accountability are the only way forward. If Balancer can bounce back from this, it must lead by example and push for a security-first approach across all of DeFi.
