- Aperture Finance suffered a security breach on January 25, resulting in a loss of $3.67 million.
- The hacker’s addresses have deposited 1,242 ETH worth $2.4 million into Tornado Cash.
Aperture Finance suffered a security breach in specific versions of smart contracts, that results in a loss of around $3.67 million. On February 5, the Blockchain security firm PeckShieldAlert showed that the addresses believed to be the hackers had deposited 1,242.7 ETH into Tornado Cash, raising concerns.
Basically, the hack of Aperture Finance happened on January 25, 2026, as its security incident analysis reported that the exploit targeted smart contracts including V3 and V4 Aperture Finance is a DeFi platform that allows users to frequently shift their ERC-20 tokens or liquidity position NFTs, so that trades and strategies can be executed automatically
However, in this case, the exploiter identified a problem in how the contract handled approvals and function calls. By which the hacker took advantage of these and stole the funds from the contracts.
Exploiter Moves $2.4M ETH to Tornado Cash
As this exploit has totaled nearly $3.67 million in value, the latest PeckShieldAlert data showed that the specific exploiter addresses have moved about 1,242 ETH, which is roughly $2.4 million into Tornado Cash, which raises concerns, as this step is likely intended to hide the record of the stolen crypto funds.
Soon after the exploit, Aperture Finance released the security incident analysis and announced that the affected web app functionalities had been stopped, with remediation and recovery messages
Aperture Finance also attached the affected contracts list, as well as urged the users to revoke immediately both ERC-20 token approvals and ERC-721 liquidity position approvals that are connected to the risky addresses.
Highlighted Crypto News Today:
European Central Bank Likely to Keep Interest Rates Unchanged This Week
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
Trump-linked World Liberty faces scrutiny over ties to sanctioned network: The Times
A cryptocurrency venture co-founded by Donald Trump faces scrutiny for partnering with AB DAO, linked to sanctioned individuals involved in a criminal network. Despite claims of thorough due diligence, the partnership raises concerns about governance and conflict-of-interest in the company.
CoinDesk14h ago
Risk management team Chaos Labs left Aave due to budget issues—v4 security is in question?
The risk management team, Chaos Labs, announced it is terminating its partnership with Aave due to long-term losses and irreconcilable differences in risk management. At this time, Aave V4 has just gone live; after upgrading, Chaos needs to rebuild its risk tools, and the budget requirements are higher than what Aave is willing to accept. In addition, Aave is facing the departure of multiple core team members, raising doubts about operational stability.
ChainNewsAbmedia23h ago
Leap Wallet to Shut Down by May 28 as Team Winds Down Apps and Validator
Leap Wallet is shutting down by May 28, ending support for its apps and services. Users are urged to redelegate ATOM and move assets promptly, as the complete closure marks a significant end for this multichain wallet project.
CryptoNewsFlash04-07 07:15
Phantom Wallet crashes! Account shows a zero balance; official confirms funds are safe
Phantom crypto wallet experienced a brief service outage on April 7, preventing users from viewing token prices and account balances normally, and some users saw balances display as zero. The official said this issue was a technical problem with the front-end display layer, and that actual on-chain assets were not affected. On the same day as the outage, Phantom received a no-objection letter from the U.S. CFTC, allowing it to integrate regulated derivatives.
MarketWhisper04-07 02:30
Chaos Labs exits Aave, saying there is a legal gap in DeFi risk management
Risk management firm Chaos Labs announced it is ending its three-year partnership with DeFi lending protocol Aave, citing a fundamental disagreement between the two parties on approaches to risk management. This exit has exposed the legal gray area in the DeFi ecosystem where regulatory safeguards are lacking—especially after a recent oracle incident that led to an erroneous liquidation of about $27 million. The separation between Chaos Labs and Aave leaves Aave facing a governance vacuum during a critical period for the V4 upgrade, further fueling concerns about accountability for decentralized risk systems.
MarketWhisper04-07 02:25
Denaria Suffers a Smart Contract Attack, Losing About $165,000
A decentralized perpetual contract trading platform Denaria announced that its smart contract was attacked, resulting in a loss of about $165k. The team is investigating with the auditors and has suspended the user interface while preparing a refund process. Denaria hopes to avoid legal action by inviting the attacker to contact them through a bounty program.
GateNews04-06 11:42
