Blockaid linked Ostium’s suspected $18M exploit to manipulated oracle reviews, prompting an energetic investigation.
One other main safety incident has struck the decentralized finance sector, including to a rising wave of high-value crypto exploits. Attackers proceed discovering new methods to control sensible contracts and drain protocol funds regardless of ongoing safety enhancements. Ostium has now joined the checklist of affected platforms after a suspected exploit drained roughly $18 million from considered one of its vaults.
Blockaid Traces Assault to Oracle Report Manipulation
Blockchain safety agency Blockaid has detected a suspected exploit focusing on Ostium’s OLP vault on the Arbitrum community. This resulted in an estimated $18 million USDC loss.
Based on Blockaid, an attacker mixed a registered PriceUpKeep forwarder with future-dated, approved oracle reviews to manufacture buying and selling earnings. That manipulation reportedly triggered a synthetic payout of roughly $18 million USDC from the protocol’s vault.
🚨 Blockaid detected an @Ostium Vault exploit on Arbitrum.
An attacker used a registered PriceUpKeep forwarder and future-dated approved oracle reviews to create synthetic commerce revenue, triggering a ~$18M USDC payout from the vault.
Extra particulars in 🧵— Blockaid (@blockaid_) July 15, 2026
The agency acknowledged that its monitoring system recognized the suspicious transaction shortly after it was executed. On-chain data present the switch was accomplished about one hour earlier than the safety alert was printed. Transaction particulars point out the exploit was efficiently executed in block 484137113 with 410 Layer 1 confirmations.
Reviews additionally point out the attacker relied on an “Execute Batch” perform name throughout the exploit. Safety researchers have more and more related that perform with refined sensible contract assaults focusing on decentralized finance protocols.
Ostium Pauses Buying and selling After Suspected Exploit
Ostium rapidly acknowledged the incident after Blockaid disclosed it. In an X publish, the protocol confirmed it was conscious of points affecting the OLP vault and instantly paused all buying and selling whereas the group investigates the trigger.
Based on the newest replace, all dealer funds and open positions stay preserved and frozen, whereas funds held within the buying and selling storage contract have been paused. Ostium mentioned it’s working with related safety consultants to analyze the incident and can share further updates as extra info turns into accessible.
Replace: All dealer funds and open positions are presently preserved as-is (frozen). Funds within the buying and selling storage contract are paused. The group is actively investigating with related safety consultants. We’ll present updates as they arrive. https://t.co/zDe8gapmS3
— Ostium (@Ostium) July 15, 2026
The protocol additionally warned customers about impersonation makes an attempt, cautioning that faux accounts might seem in reply threads claiming to symbolize Ostium. Customers have been suggested to not click on suspicious hyperlinks whereas the investigation continues.
Current Safety Breaches Mirror Rising Dangers Throughout DeFi
Rising assault numbers proceed to boost issues throughout the crypto trade. Earlier in June, attackers compromised Humanity Protocol in an incident that reportedly resulted in losses of between $32 million and $36 million.
Based on reviews, hackers first focused a Humanity Basis director via a phishing marketing campaign. Distant entry to the sufferer’s laptop computer allegedly offered entry to pockets info and personal keys. Attackers later transferred roughly 141.18 million H tokens.
One other main exploit occurred in Might when Gravity Bridge misplaced roughly $5.4 million in digital property. Blockchain safety agency PeckShield reported that attackers stole roughly $4.3 million in USDC, 274 wrapped Ether valued at about $553,000, USDT price roughly $434,000, and 14.164 PAX Gold tokens valued at practically $64,000.
