The BarnBridge SMART Yield (cUSDC) protocol was attacked on Ethereum, resulting in a loss of approximately $776,000, according to ChainCatcher. The incident is suspected to be a governance attack.
According to ChainCatcher, the attacker first gained DAO governance permissions and then upgraded the SmartYield/controller proxy to a malicious implementation contract. This contract subsequently called the _takeUnderlying privileged function of CompoundProvider, exploiting pre-existing USDC approvals from 50 user accounts to transfer aggregated funds to the attacker via transferFees.
BarnBridge SMART Yield Protocol Hit by $776K Governance Attack on Ethereum
2026-07-15 05:34:55
Disclaimer:
1. The information provided does not constitute investment advice. Investors should make independent decisions and bear all risks themselves.
2. The copyright of this content belongs to the original author. The views expressed herein are solely those of the author and do not represent the stance or position of this website.