Peapods Finance’s leveraged yield protocol suffered a $200,000 exploit assault after dangerous actors apparently manipulated its oracle.
Peapods Finance, a DeFi protocol targeted on leveraged yield methods, was seemingly exploited in a wise contract assault on Tuesday, July 8, that led to the unauthorized withdrawal of roughly $200,000 price of ETH. The obvious exploit was flagged in preliminary assessments by on-chain safety corporations CertiK and PeckShield.
Amid the information, the protocol’s native token, PEAS, briefly fell 5% to $3.55 earlier than recovering to $3.74 at press time, up 3% over the previous 24 hours. The token’s market cap at present stands close to $37 million, whereas Peapods’ whole worth locked (TVL) stays round simply $10 million, per knowledge from DefiLlama. The protocol’s TVL peaked close to $34 million in March 2024.
Launched in mid-2023, Peapods Finance’s acknowledged intention is to show market volatility into yield.
The incident seems to contain a value manipulation focusing on the WETH/aspLONGsUSDe oracle, which can have been pushed to an abnormally excessive degree to facilitate the drain, blockchain analysts at TenArmorAlert famous in an X publish yesterday.
On-chain knowledge signifies that over 78 ETH, price over $207,000 at present costs, was transferred to the suspected attacker by a collection of transactions involving Wrapped Ether (WETH) and newly minted tokens.
Blockchain analysis agency BlockSec Phalcon famous in an X publish that the attacker hit a number of contracts: they pulled off the primary exploit efficiently, “however its second try was front-run by Yoink—a well known MEV frontrunner.” The analysis agency recommended that Peapods Finance attempt to get involved with Yoink.
Public Response
Following the exploit, the Peapods crew posted of their permissioned Telegram group that the affected Pod — the title of Peapods’ customized tokens made for producing yield from value swings between uncorrelated property — was podETH on the Ethereum mainnet, emphasizing that the difficulty was not on the contract degree and that remoted Pods and metavaults — specialised vaults managing a number of Pods — stay safe.
“The problem appears to be an underlying dangerous oracle for that particular pod, which is a person configuration concern. The crew is at present working with auditors and discussing the matter internally. Extra info shall be shared as soon as the crew has concluded their investigation. We ask in your endurance within the meantime!” the crew mentioned.
The crew has not posted something in regards to the exploit on their official X account by press time. In response to The Defiant’s request for touch upon the incident and why the crew hadn’t posted on X, a Peapods Finance consultant mentioned that the “crew has been engaged on a report.”
In Could, an attacker exploited prime Sui DEX Cetus Protocol’s sensible contract to empty $223 million price of SUI.
In line with a current SlowMist report, DeFi platforms had been essentially the most frequent targets of safety incidents within the first half of 2025.
