All That’s Left of Cork Protocol: A Statement and a $12M Hole
Hackers stole over $12 million in crypto from Cork Protocol, a DeFi platform specializing in trading depeg risks of crypto assets. The attack occurred on the morning of May 28, targeting the wstETH/weETH market, through which the attackers drained 4,530 ETH (worth $12.1M at the time).
What Happened?
- Cork Protocol halted all operations as a security measure.
- All markets except the exploited one were frozen.
- The team has not disclosed the exact attack vector, citing an ongoing investigation.
What is Cork Protocol?
- Registered in Delaware, it offers depeg risk insurance—protecting against scenarios where stablecoins lose their peg (like during the 2023 SVB collapse).
- Marketed as a DeFi alternative to traditional hedging tools (e.g., credit default swaps).
- Backed by Andreessen Horowitz (a16z) and part of its crypto accelerator program.
DeFi Hacks: A Growing Problem
- Just 5 days earlier, Cetus Protocol lost $223M.
- Earlier in 2024, Bybit users lost $1.4B in an exploit.
- PeckShield estimates total 2024 DeFi losses at $3B+ (up 15% from 2023).
Why Are DeFi Attacks Increasing?
- Complex smart contracts with hidden vulnerabilities.
- Slow response times from project teams.
- Sophisticated hackers exploiting niche market mechanics.
Key Takeaways
✔ $12M stolen in a precision strike on Cork Protocol.✔ DeFi hacks are accelerating—$3B+ lost in 2024 already.
✔ Investor warning: Even a16z-backed projects aren’t safe.
The question now: Will Cork recover—or join the graveyard of exploited DeFi protocols?
