Lumi Finance, a decentralized finance protocol, has likely fallen victim to a security exploit, with attackers already withdrawing approximately $270,000 in stolen funds, according to security firm Blockaid.
The breach adds to a growing list of DeFi vulnerabilities this cycle, following a similar incident affecting Bonzo Finance. Blockaid, which specializes in detecting and preventing crypto-based threats, flagged the incident on X (formerly Twitter), indicating the exploit was identified during active fund extraction. The specific vulnerability exploited by attackers has not yet been disclosed by the security team.
The incident underscores persistent smart contract risks in the DeFi ecosystem, where protocol audits and security measures continue to face scrutiny. As DeFi protocols expand in complexity and total value locked, exploits targeting logic flaws in core smart contracts remain a primary vector for large-scale fund theft. Lumi Finance users with exposed liquidity positions are advised to monitor their accounts for unauthorized activity.