Hackers Stolen Over $100 Million By Exploiting Balancer DeFi Protocol

Hackers have successfully stolen more than $100 million by exploiting a critical vulnerability in the Balancer protocol.

Balancer, a leading DeFi platform known for its automated market-making pools, confirmed that only its V2 Composable Stable Pools were affected by the exploit. The remainder of its pools, including Balancer V3 and other older pools, remain untouched and fully secure.

The impacted pools had been active on the blockchain for several years and, due to their age, many were outside of Balancer’s “pause window” a built-in feature allowing emergency halts to prevent damage during attacks.

Balancer DeFi Protocol Exploited

The pools that could be paused were quickly taken offline and are currently in recovery mode while the investigation continues.

The Balancer team responded rapidly, working in collaboration with experienced security researchers to analyze the incident. A full post-mortem report with technical details will be provided once the investigation has progressed.

Today, around 7:48 AM UTC, an exploit affected Balancer V2 Composable Stable Pools.

Our team is working with leading security researchers to understand the issue and will share additional findings and a full post-mortem as soon as possible.

Because these pools have been live… pic.twitter.com/LRLNNXogt3

— Balancer (@Balancer) November 3, 2025

Balancer emphasized its longstanding commitment to security, highlighting extensive third-party audits and robust bug bounty programs designed to encourage independent researchers to uncover vulnerabilities before hackers do.

google

Legal and security professionals are now working closely to enhance protection for users and to track down the attackers. In the wake of the incident, the Balancer team issued an urgent warning about fraudulent communications.

Malicious actors are already sending fake messages pretending to represent the Balancer Security Team, seeking to further exploit concerned users. Balancer stressed that official updates will be shared only through its official X (Twitter) account and Discord server.

Users are strongly cautioned not to trust unsolicited messages or click on unknown links, as these could be part of phishing schemes aimed at stealing more funds.

As the investigation proceeds, Balancer has reassured the community that they are devoted to operational security and user protection.

The DeFi community and partners are actively supporting the team. Users are encouraged to stay tuned for further updates as more details surrounding the exploit and future preventive measures are released.

Follow us on Google News, LinkedIn, and X for daily cybersecurity updates. Contact us to feature your stories.

googlenews