PancakeBunny Suffers Flash Loan Attack

  • The attacker was able to get away with almost 700,000 BUNNY tokens and 114,000 BNB tokens, which at the time were worth around $200 million.
  • PancakeBunny is the third, and largest, BSC-based DeFi project to suffer from an exploit in the last 30 days.
Price chart going down


The attack on Binance Smart Chain (BSC)-based DeFi projects continue, with the latest victim being one of the largest DeFi players on BSC, PancakeBunny.

According to PancakeBunny’s Twitter, an unknown hacker used a flash loan attack to borrow a “huge amount” of BNB tokens from PancakeSwap, which he then used to manipulate the price of USDT/BNB and BUNNY/BNB vaults. After acquiring a large amount of BUNNY tokens, the attacker then dumped them all on the market, and paid his flash loan back. PancakeBunny said on Twitter:

While the project did state that there was no smart contract hack and no vaults were compromised, the unknown attacker was still able to get away with almost 700,000 BUNNY tokens and 114,000 BNB tokens, which at the time were worth around $200 million. Unsurprisingly, the price of BUNNY has suffered tremendously in the last hours, with it trading around the $170 mark at the time of the hack, and now exchanging hands for almost $30.

PancakeBunny is the third BSC-based DeFi project to suffer an exploit in the past 30 days. At the start of May, BSC-based liquidity platform Spartan Protocol lost more than $30 million in an exploit. Similarly to PancakeBunny, the attacker used a flash loan — and a “flawed liquidity share calculation” — to inflate the project’s SPARTA/WBNB pool, and then claimed a large amount of its underlying assets.

A week before that, another attacker exploited a bug in Uranium Finance’s V2.1 migration event, enabling him to steal more than $50 million in crypto. This marked the second attack on Uranium Finance, with the DeFi project loosing around $1.3 million worth of BNB and BUSD just 20 days prior.

Related Coverage
Top DeFi Protocols to Watch in 2023 and More
  • Decentralized finance (DeFi) has become one of the hottest trends in the crypto world as it’s more transparent and decentralized than traditional finance.
  • Here are our top picks of DeFi projects that have a good potential growth, and some of the protocols that did not made the list, such as RING Financial.
May 15, 2023, 2:22 PM
person scanning chart data


Exploiter Returns 90% of “Recoverable Funds” to Euler Finance
  • The remaining $31 million worth of crypto assets were returned late on Monday, marking a successful end to Euler Finance’s recovery efforts.
  • The total value of assets returned is a little over $177 million, which is 90% of the “recoverable funds” after adjusting for the 10% bounty previously offered.
The 7 Biggest Crypto Hacks of 2022 (So Far)
  • 2022 is on the verge of becoming the largest year for crypto crime ever, with close to $3 billion being stolen so far.
  • The majority of the hackers focused on cross-chain bridges and decentralized finance apps.