Beanstalk Farms (BEAN) plummets after protocol suffered 182M explo…

Key Takeaways:

The hacker obtained a flash loan from Aave to carry out the exploit.
BEAN fell by 85% and is now trading at $0.13.

LAGOS (CoinChapter.com) — Beanstalk Farms, a credit-focused stablecoin protocol built on Ethereum, is the latest DeFi project to fall victim to another brutal cyber attack.

Beanstalk suffered an exploit today.

The Beanstalk Farms team is investigating the attack and will make an announcement to the community as soon as possible.
— Beanstalk Farms (@BeanstalkFarms) April 17, 2022

In detail, the Ethereum-based stablecoin protocol was exploited for $182 million after a hacker successfully infiltrated the project. Blockchain security firm PeckShield, which disclosed the hack, also revealed that the hacker carted away $80 million in ETH and BEAN.

The hacker reportedly exchanged the stolen BEAN for ETH and funneled the exploited funds through Tornado Cash. PeckShield further revealed that the remaining funds were in the form of drained liquidity connected to the protocol’s governance token.

“Our initial analysis shows BeanstalkFarms loss is $182m. Here is the breakdown of stolen assets: 79,238,241 BEAN3CRV-f; 1,637,956 BEANLUSD-f; 36,084,584 BEAN; and 0.54 UNI-V2_WETH_BEAN,” PeckShied revealed.

How Beanstalk Farms Exploit Occurred

The attack took place hours after Beanstalk Farms announced that it had attracted more than $150 million in TVL.

The Beanstalk Farms team is both thrilled and humbled by the crypto community’s recent interest in Beanstalk.

There’s much more work to do to prepare the protocol for the next million users, but we want to take a moment to soak in this milestone.

$150M+ TVL! pic.twitter.com/7TxgsDPhos
— Beanstalk Farms (@BeanstalkFarms) April 16, 2022

The hacker reportedly used an accumulation of governance tokens obtained through a flash loan to carry out the attack. Mainly, the hacker obtained about a $1 billion loan from the Aave protocol in DAI (DAI), USD Coin (USDC), and Tether (USDT) stablecoins.

The loan enabled the hacker to acquire a large amount of Beanstalk’s native governance token, Stalk. With the voting power granted by these Stalk tokens, the hacker quickly passed a malicious governance proposal, moving all of Beanstalk’s funds into a private Ethereum wallet.

Technically, the exploit was not a hack, as the smart contracts and governance protocols worked as intended. Notably, the design flaw of the stablecoin protocol was only exploited.

BEAN Price Drops 85% Following Attack

As a result of the exploit, Beanstalk Farms’ native token BEAN has plummeted by more than 85%, according to data from Coingecko. Meanwhile, the token at the time of publication is trading at $0.13, down from its $1 peg.

4/ The initial funds to launch the hack are withdrawn from @SynapseProtocol and most of the result gains are deposited to @TornadoCash. Currently 15,154 ETH still stays in the hacker’s account. Note the hacker donates 250k USDC to Ukraine Crypto Donation. pic.twitter.com/jBjUJ0JbGj
— PeckShield Inc. (@peckshield) April 17, 2022

Interestingly, following the successful exploit of Beanstalk Farms Protocol, the hacker donated $250,000 of the stolen funds to a Ukrainian relief wallet.