Edel stated it detected and contained the exploit, then paused all of its version-one contracts, which stay frozen, and warned customers to not work together with them.
The crew added it had traced the attacker’s transactions and is coordinating with exchanges, and that it has supplied the attacker a whitehat settlement, a deal that lets a hacker return many of the funds in change for a payment and no authorized pursuit, inside a set window.
No depositor will take a loss, Edel famous, with the crew absorbing the dangerous debt and restoring balances one for one. It’s deploying a model two with a redesigned pricing setup meant to dam this sort of manipulation, and promised a full technical breakdown to comply with.
Whereas the quantity is small, the strategy sits in considered one of DeFi’s most persistent classes of exploit.
Manipulating the worth a protocol reads, relatively than breaking into it, ranks because the second most typical smart-contract vulnerability within the OWASP Good Contract Prime 10 vulnerabilities for 2025, and safety researchers at CertiK describe oracle worth manipulation as one of many subject’s most typical assault vectors.
Alongside cross-chain bridges, which produced the 12 months’s largest single thefts, together with the $292 million drained from Kelp DAO in April, worth manipulation is the place a lot of the cash retains going, and in most of those, the code works as written.

