Attackers drained approximately $7.3 million from over 1,400 old DxSale liquidity pools on BNB Chain. A security analyst suggested an unverified backdoor in an old locker contract, transferred to a new wallet months ago, enabled the exploit. This incident is part of a broader trend of costly DeFi security breaches in recent weeks.
A major exploit on May 29 targeted more than 1,400 old DxSale liquidity pool contracts on BNB Chain. On-chain security account PeckShieldAlert reported the attackers drained about $7.3 million in crypto from the pools.
The funds were routed through AnySwap in an attempt to obscure their trail. One identified address transferred 2,958 BNB, worth $1.87 million, into two wallets that moved funds through deposit addresses on Binance.
According to an on-chain degen known as Tahax, the DxSale deployer transferred ownership of an old locker contract to a new wallet nine months ago. The analyst suggested the unverified locker contract may have contained a backdoor vulnerability.
The attacker, using a new wallet funded from Bybit, took ownership of the locker two days before the attack and began draining funds. DxSale had not issued a public statement regarding the exploit at the time of reporting.
This breach adds to a series of significant DeFi exploits in May. Last week, an attacker stole over $11 million from the Verus bridge by exploiting a verification flaw.
Earlier in May, liquidity provider TrustedVolumes lost about $5.9 million due to a weakness in its custom settlement system. THORChain also reportedly suffered a loss of more than $10 million, causing its RUNE token to plummet.
The steady stream of exploits has drawn sharp commentary from industry figures. OpenZeppelin co-founder Manuel Aráoz declared “all of DeFi unsafe,” arguing AI-assisted attackers are finding vulnerabilities faster than teams can patch them.
