Hackers Drain About $6 Million From Summer.fi in DeFi Exploit
Hackers Drain About $6 Million From Summer.fi – DeFi Vault Exploit Hits Lazy Summer Protocol
Key Takeaways
- Summer.fi has reportedly been exploited, with around $6 million drained so far.
- Security firm Blockaid identified the attacker address, exploit contract, and affected Lazy Summer contracts.
- PeckShield said the main impacted vault was LazyVault_LowerRisk_USDC managed by Block Analitica.
- The SUMR token traded near $0.00193, down 5.3 percent in 24 hours, diverging from a broader market gain of more than 1 percent.
Blockaid Flags Active Exploit Targeting Summer.fi Contracts
Blockaid reported on Monday that Summer.fi had been exploited, with estimated losses of roughly $6 million at the time of detection. The security firm said its monitoring system identified suspicious activity during the morning and published key on chain details linked to the incident.
According to Blockaid, the exploiter address is 0x7BF716167B48CF527725722C6d79494b45B3BDCa. The exploit contract was identified as 0x0514F827C129C16418a0933E03C99A6AF982FC61. The firm also listed three affected Summer.fi or Lazy Summer contracts: 0x98C49e13bf99D7CAd8069faa2A370933EC9EcF17, 0xA9ca4909700505585B1aD2a1579dA3b670FFA9c4, and 0xE9cDA459bED6dcfb8AC61CD8cE08E2D52370cB06.
The incident was described as active at the time of reporting. Summer.fi had not issued a public comment at the time the information was published.
LazyVault_LowerRisk_USDC Identified as Main Affected Vault
Security firm PeckShield stated that the primary impacted product was LazyVault_LowerRisk_USDC, known as LVUSDC. The vault is risk managed by Block Analitica.
PeckShield reported that the displayed annual percentage yield, or APY, for the vault briefly spiked to approximately 2.08 million percent. Such an abnormal increase in displayed yield can signal manipulation or malfunction in vault accounting during an exploit.
According to the same alert, the largest current holder of the vault was the address 0x8741e8f…4130. PeckShield indicated that this address appears to be associated with Torben Jorgensen, identified as UDHC, and had deposited about 8.6 million USDC into the vault.
The mention of a large depositor highlights the potential scale of exposure within the affected vault. However, no breakdown of individual losses was provided in the available information.
Summer.fi and the Role of the Lazy Summer Protocol
Summer.fi, previously known as Oasis.app, operates as the front end for the Lazy Summer Protocol. The protocol functions as an on chain vault system designed to route user deposits automatically across decentralized finance yield sources.
According to the source material, these yield sources include Aave and Morpho. The model allows users to deposit assets into vaults, which are then allocated programmatically across supported lending or yield generating platforms.
For users of decentralized finance services, front end interfaces such as Summer.fi provide access to smart contract based strategies without requiring direct interaction with each underlying protocol. When vulnerabilities arise in vault contracts or routing logic, they can affect deposited funds and displayed performance metrics, as seen in this case with the abnormal APY spike.
SUMR Token Declines as Broader Crypto Market Rises
Following reports of the exploit, the network’s native token SUMR traded near $0.00193. Over a 24 hour period, the token declined by 5.3 percent.
This movement contrasted with the broader crypto market, which rose by more than 1 percent on the same day. The divergence indicates that SUMR underperformed relative to general market conditions during the reporting window.
No additional liquidity data or trading volume figures were included in the source material. The price reference was based on CoinGecko data cited in the report.
Second Recorded Crypto Exploit in July Following June Losses
According to DeFiLlama data referenced in the report, the Summer.fi incident marked the second crypto exploit recorded in July.
The event follows a series of attacks in June, during which crypto platforms reportedly lost $75.87 million across 40 hacks. The largest single loss in that period was attributed to the Humanity Protocol breach.
The July tally remains limited based on the available information, but the continuation of exploits into a new month underscores the ongoing operational and security risks in decentralized finance environments.
For users evaluating DeFi services, including those that integrate with crypto betting or other blockchain based applications, such incidents can affect asset availability, liquidity, and token prices. Exploits targeting vault mechanisms may also influence how risk management frameworks are assessed by depositors.
Our Assessment
Based on the reported information, Summer.fi experienced an active exploit that led to approximately $6 million in drained funds, primarily affecting the LazyVault_LowerRisk_USDC vault. Security firms Blockaid and PeckShield identified specific on chain addresses and contracts linked to the incident. The SUMR token declined 5.3 percent over 24 hours, diverging from a broader market increase. The exploit represents the second recorded crypto security incident in July following significant aggregate losses in June.
