Approval Hacks & Exploits

Over $494M stolen since 2020.

This page contains a list of known crypto hacks and exploits in which approved user funds are at risk. Many other crypto hacks only affect the funds kept in the exploited smart contract. But the exploits listed on this page abuse unlimited token approvals to steal approved funds. By using Revoke to manage your approvals, you can keep your funds safe from these exploits.

Bitmor Hack

Discovered On
2026-05-26
Stolen Amount
$6k

About $6k stolen from users of Bitmor, a Bitcoin-focused DeFi platform on Base, via a bug in the DCA contract that drained wallets with active approvals.

Ekubo Hack

Discovered On
2026-05-06
Stolen Amount
$1.4M

Close to $1.4M stolen from users of Ekubo, a DEX on Ethereum and Arbitrum. Users with active approvals to Ekubo are advised to revoke.

CoW Swap DNS Hijack

Discovered On
2026-04-14
Stolen Amount
Unknown

The DNS records of the popular DEX CoW Swap were compromised, redirecting users to a malicious site that stole funds. Check approvals made on the 14th of April.

GONDI Hack

Discovered On
2026-03-09
Stolen Amount
$230k

NFT lending protocol GONDI disclosed a security incident tied to an approval vulnerability in its Purchase Bundler contract. Around $230k in NFTs were stolen.

Aperture Finance Hack

Discovered On
2026-01-26
Stolen Amount
$3.2M

Aperture Finance, an AI-powered intents platform, was exploited, allowing malicious actors to steal approved user funds from certain parts of the platform.

SwapNet Hack

Discovered On
2026-01-26
Stolen Amount
$13.4M

DEX Aggregator SwapNet was exploited, letting attackers steal over $13m. Matcha Meta users may also be at risk since SwapNet is integrated into their platform.

Thirdweb Bridge Hack

Discovered On
2025-12-10
Stolen Amount
$30k

An older legacy version of thirdweb's bridge contract remained vulnerable and was eventually exploited to steal approved user funds. The contract has been disabled.

402bridge Hack / Rug Pull

Discovered On
2025-10-28
Stolen Amount
$20k

402bridge reported their admin private keys were leaked, allowing malicious actors to steal any approved user funds. Speculated to be a rug pull.

dTRINITY dLEND Hack

Discovered On
2025-09-28
Stolen Amount
$56k

The dLEND product by dTRINITY was exploited to drain approved user funds. The team reported $56k stolen, all belonging to dTRINITY team members.

Kame Aggregator Hack

Discovered On
2025-09-12
Stolen Amount
$360k

A vulnerability in Kame Aggregator's smart contracts was exploited. About $360k ended up stolen by secondary exploiters. The Kame team released a compensation plan.

Arcadia Finance Hack

Discovered On
2025-07-15
Stolen Amount
$3.6M

DeFi protocol Arcadia Finance's automation services were hacked. Users should revoke any active approvals to their contracts and disable active automations.

Bankroll Network Hack

Discovered On
2025-06-19
Stolen Amount
$20k

Old, abandoned Bankroll Network contracts were exploited. Anyone with lingering approvals to the old contracts was still vulnerable.

Moby Trade Hack

Discovered On
2025-01-10
Stolen Amount
$1M

Attackers gained access to Moby Trade's admin keys and pushed malicious upgrades, draining wallets with active approvals. $1.5m was recovered by the team and SEAL911.

Orange Finance Hack

Discovered On
2025-01-08
Stolen Amount
$800k

Attackers gained access to Orange Finance's admin keys and executed malicious upgrades, draining wallets with active approvals to the protocol.

Fisclend Rug Pull

Discovered On
2025-01-03
Stolen Amount
$300k

Fisclend was a DeFi protocol on ApeChain, World Chain and Sonic. Live for only a few months, they rugpulled in early January, stealing deposited and approved tokens.

Radiant Capital Hack

Discovered On
2024-10-16
Stolen Amount
$53M

Attackers compromised devices of core team signers, transferred multisig ownership, then pushed a malicious upgrade to Lending Pool contracts, draining approved wallets.

2024 LI.FI Hack

Discovered On
2024-07-16
Stolen Amount
$11.6M

Attackers used a vulnerability in a smart contract facet to gain unauthorized access to user wallets that had infinite approvals to the LI.FI contract.

Magpie Hack

Discovered On
2024-04-23
Stolen Amount
$130k

About $130k stolen from users of crosschain DEX Magpie. The attacker exploited a bug where the position of an approved selector wasn't checked.

Merkle Trade Hack

Discovered On
2024-04-18
Stolen Amount
$20k

Vulnerability discovered in Merkle Trade's newer EVM Swap & Deposit smart contract. Merkle rolled back to an older contract. About $20k stolen.

Dolomite Hack

Discovered On
2024-03-20
Stolen Amount
$1.8M

Over $1.8m stolen from users of an old, discontinued Dolomite contract from 2019. Users with lingering approvals to the old contract were drained.

ParaSwap Whitehat Hack

Discovered On
2024-03-20
Stolen Amount
$24k

ParaSwap discovered a vulnerability and executed a whitehat rescue. A few addresses were missed, resulting in about $24k stolen. ParaSwap is refunding users.

Unizen Hack

Discovered On
2024-03-08
Stolen Amount
$2.1M

$2.1m stolen from users of Unizen. Attackers took advantage of an unverified external call after the DEX aggregation contract was upgraded.

Seneca Hack

Discovered On
2024-02-28
Stolen Amount
$6.4M

Over $6m stolen from Seneca via arbitrary calldata parameters used to call transfers for approved tokens. 80% was returned after an onchain message.

Concentric Hack

Discovered On
2024-01-22
Stolen Amount
$1.7M

Attackers gained access to Concentric's admin keys and executed malicious upgrades, draining wallets with active approvals to the protocol.

Socket Hack

Discovered On
2024-01-16
Stolen Amount
$3.3M

Over $3M stolen from users with active approvals to Socket, the underlying tech for bridges like Bungee Exchange and Rainbow Wallet's bridge.

Floor Protocol Hack

Discovered On
2023-12-17
Stolen Amount
$1.8M

Close to $2M in NFTs stolen from users of Floor Protocol, mostly Bored Apes and Pudgy Penguins. The vulnerability was patched by the team.

NFT Trader Hack

Discovered On
2023-12-16
Stolen Amount
$400k

A reentrancy bug in old NFT Trader contracts was exploited. Yuga Labs and Boring Security DAO negotiated recovery from the main exploiter in exchange for a 10% bounty.

Ledger Connect Kit Hack

Discovered On
2023-12-14
Stolen Amount
$610k

A malicious script was injected via the Ledger Connect Kit library used by many crypto websites. Check if you used any crypto sites on the 14th of December 2023.

Unibot Hack

Discovered On
2023-10-31
Stolen Amount
$600k

Over $600k stolen from users of Unibot, an automated Telegram trading bot. The team refunded all affected users after the exploit.

Maestro Hack

Discovered On
2023-10-25
Stolen Amount
$500k

Over $500k stolen from Maestro, an automated Telegram trading bot, via misconfigured permissions on router contract functionality. Users were reimbursed.

Galxe Frontend Hack

Discovered On
2023-10-06
Stolen Amount
$270k

DNS settings were compromised via social engineering and pointed to a malicious website. Users who interacted with Galxe on the 6th of October may be at risk.

CivTrade Hack

Discovered On
2023-07-08
Stolen Amount
$180k

Over $180k stolen from CivTrade, a DEX aggregator by CivFund. Privileged functions were not properly restricted. Contracts have been paused.