Rhea Finance, the largest decentralized finance (DeFi) protocol built on the NEAR Protocol, was recently hit by an Oracle manipulation attack, The Block reported. A subsequent post-mortem analysis released afterward shows actual losses of $18.4 million, more than twice the initial estimate.
Attack method: Fake token manipulation of Oracle pricing
According to the investigation, the attacker manipulated Rhea Finance’s Oracle price by deploying a fake token contract, causing the protocol to incorrectly assess the collateral value and then drain liquidity. After the incident, the Rhea Finance team immediately notified users and paused the relevant functions to launch an emergency response.
ZachXBT raises the alert; Tether freezes $4.34 million USDT
Blockchain sleuth ZachXBT quickly issued an alert after the incident, tracking the flow of attack funds and prompting Tether to take action. Tether CEO Paolo Ardoino publicly thanked ZachXBT for the timely report, confirming that it has frozen roughly $4.34 million in USDT (another figure is $3.29 million) and funds related to the attacker, preventing the stolen funds from being transferred any further.
The attacker returns part of the funds
Notably, the attacker has proactively returned about $3.36 million worth of USDC and $1.56 million worth of NEAR (totaling about $3.5 million) to the protocol. Combined with the frozen USDT, the total funds that have been recovered or frozen now exceed $7.8 million, accounting for about 42% of the total loss.
NEAR DeFi ecosystem’s biggest security incident
Rhea Finance is the largest DeFi protocol on the NEAR Protocol. This incident is one of the most severe security incidents to date in the NEAR ecosystem, and it once again highlights the core importance of Oracle security to DeFi protocols. The event also sparked widespread discussion in the market about potential design flaws in DeFi protocol Oracles; the price of the RHEA token fell by more than 8% at one point after the incident.
This article, Rhea Finance suffers $18.4 million loss from an Oracle attack: ZachXBT raises an alert, Tether freezes $4.34 million USDT; the attacker returns part of the funds, first appeared on Chain News ABMedia.
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
Tether Mints 1 Billion USDT, USDT Market Cap Surges Over $2 Billion in a Week
Tether minted one billion USDT, boosting its market cap by over two billion dollars in a week, reflecting rising demand for stablecoins.
GateNews8h ago
Tether Freezes $3.29M USDT Linked to Rhea Finance Exploit
Tether froze $3.29 million in USDT linked to Rhea Finance exploit, ensuring user protection and ecosystem trust. Blockchain tracking enabled this action against suspicious wallets after attackers moved funds to evade detection.
GateNews04-17 10:11
Tether 挹注 150M美元救援 Drift Protocol,反觀 Circle 因疏失遭集體訴訟
Drift Protocol faced a $280 million loss due to a hack, prompting Tether to launch a $150 million recovery plan, switching settlement assets to USDT. Meanwhile, Circle faces a lawsuit for failing to freeze stolen funds, highlighting regulatory ambiguities in the crypto industry.
ChainNewsAbmedia04-17 06:14
Former Treasury Secretary Paulson: Contingency plan for a U.S. debt crisis must be prepared in advance; consequences will be very severe
Former U.S. Treasury Secretary Henry Paulson urged U.S. authorities to draw up contingency plans to address a potential collapse in demand for U.S. national debt when he was interviewed by Bloomberg on April 17, 2026 (Thursday). He said that once a crisis erupts, the consequences would be extremely severe. On the same day, the U.S. Department of the Treasury completed the largest debt buyback in a single transaction in history, accepting approximately $15 billion in old bonds maturing from 2026 to 2028.
MarketWhisper04-17 05:08
