Ribbon Finance, previously known as Aevo, suffers $2.7 million loss in DeFi hack

Written by Ohris M. Greyoon, Blockchain & Crypto Expert

DEFI-1.54%

Source: Coinmarketcap

Updated: Dec 13 2025

Attack Overview: A sophisticated attack on Ribbon Finance drained $2.7 million from its old contract, exploiting vulnerabilities in the oracle infrastructure just six days after an upgrade, using a malicious contract to manipulate price feeds and execute fraudulent transactions.
Oracle Vulnerability: The attack was facilitated by discrepancies in decimal precision between newly updated assets and older ones, allowing the attacker to exploit the system by creating poorly structured option products and manipulating expiry prices.
Hacker's Strategy: The attacker created multiple subaccounts to mint options with minimal collateral, taking advantage of the lack of payout limits, which enabled the extraction of significant assets without triggering restrictions.
Clarification on Opyn: Contrary to rumors, the decentralized application Opyn was not compromised; the hack was primarily due to the upgraded oracle code in Ribbon Finance that allowed users to set prices for new assets, leading to the exploit.

About the author

Ohris M. Greyoon

Ohris M. Greyoon holds a Master’s in Computer Science from MIT and has 10 years of experience in blockchain technology and cryptocurrency markets. A pioneer in decentralized finance (DeFi) analysis, he leads Intellectia’s Crypto News, offering cutting-edge insights into digital assets.

Ribbon Finance, previously known as Aevo, suffers $2.7 million loss in DeFi hack

About the author

Top News

Oil Firms Cautious on Venezuela Investment Push

GM Reports $7.1 Billion Charge Amid EV Shift

Stock Market Wraps 2025 with Double-Digit Gains

Novo Nordisk's Weight-Loss Pill Approval: Key Impacts

Related Articles

Meta Stock Rises Nearly 7% on AI Strategy and Strong Earnings Report

Rare Earth Stocks Surge Due to Government Funding Support

People Also Watch