Decentralized buying and selling protocol Ostium paused buying and selling Wednesday after blockchain safety companies Blockaid and CertiK reported an obvious exploit of its OLP liquidity vault.
Blockaid estimated the exploit resulted in roughly $18 million in losses, whereas CertiK positioned the determine at about $22 million. Each companies attributed the incident to an obvious compromise of Ostium’s oracle system, which provides exterior worth knowledge to the protocol.

Supply: Ostium
Ostium introduced on X that it paused all buying and selling after figuring out a problem affecting the vault. It subsequently stated: “With person safety being our first concern, we suggest that every one customers briefly revoke approvals for our contracts till we will additional examine the current incident.”
The protocol stated its workforce is investigating and has not but confirmed the reason for the incident or the estimated losses reported by blockchain safety companies.
Constructed on Arbitrum, Ostium is an onchain perpetuals buying and selling platform providing leveraged publicity to 75 buying and selling pairs spanning shares, ETFs, commodities, indices, international trade and cryptocurrencies.

Supply: CertiKAlert
Associated: Crypto hacks fell 47% in H1 however ecosystem isn’t any safer: CertiK
DeFi hacks stay persistent problem
The incident is the most recent in a sequence of high-profile assaults focusing on decentralized finance protocols this 12 months, regardless of broader efforts to strengthen safety throughout the sector.
In response to DeFiLlama, crypto hacks resulted in practically $630 million in losses throughout April, the very best month-to-month whole since February 2025. DeFi protocols accounted for the overwhelming majority of these losses, with exploits at KelpDAO and Drift Protocol making up greater than 80% of the month’s whole.
Safety researchers have stated current DeFi assaults more and more goal offchain infrastructure comparable to oracle programs, privileged entry and key administration quite than exploiting flaws in good contracts alone.
The assaults have additionally fueled issues about DeFi’s readiness for institutional adoption. In an April analysis word, JPMorgan analysts stated bridge safety stays a key problem for the sector, elevating questions on whether or not DeFi can scale to assist broader institutional participation.
Business executives have warned that shrinking DeFi yields are making safety dangers more durable to justify. Talking to Cointelegraph in Could, the CEO of good contract safety agency Statemind and Symbiotic co-founder, Misha Putiatin, stated establishments more and more battle to quantify hack threat, making them much less prepared to simply accept the sector’s returns regardless of rising curiosity in blockchain-based finance.
Journal: Technique turned a logo of the dot-com crash: May historical past repeat?
