Old DeFi contracts: dem drain of $1.34M from Raydium AMM V3

Published: 2026-06-11 19:29:52 |

Raydium suffer $1.34M exploit wey connect to legacy DeFi contracts — old AMM V3 pools wey don old but still fit call on-chain even after dem migrate protocol. Attacker commot funds from five pools wey no dey inside Raydium current UI/SDK path, use legacy program wey skip important mint and proportion checks. Reported balances include ~150,177 RAY, ~5,603 SOL, and ~893,700 USDC. Big lesson for traders na say “legacy DeFi contracts” fit behave like persistent attack surface. CryptoSlate talk say at least eight similar legacy-contract incidents don happen since March 2025, totalling about $10.8M loss; if you expand definition estimate fit reach about $22.5M across around ten incidents. Examples include: - 1inch (Fusion v1 resolver, ~Mar 2025): ~$5.0M - Abracadabra (Cauldron V4, ~Oct 2025): ~$1.8M - Yearn (legacy iEarn TUSD vault, ~Dec 2025): ~$0.3M - Transit Finance (deprecated TRON contract, ~May 2026): ~$1.88M - Huma Finance (deprecated V1 BaseCreditPool on Polygon, ~May 2026): ~$0.101M - Renegade (legacy V1 Arbitrum deployment, ~May 2026): ~$0.209M - Scallop (deprecated rewards contract): ~$0.14M CryptoSlate argue say most exploit databases dey miss this “lifecycle” failure mode, wey retired-by-product code no dey decommission technically. Dem recommend decommissioning controls: drain idle legacy assets, pause callable functions, verify old LP mints/permissions, monitor legacy deployments, and clarify treasury liability.

Bearish

Dis news dey shine light on wan recurring DeFi failure mode: old DeFi contracts wey dem don "retire" for product terms but dem still fit call am on-chain. Historically, tins like dis dey make risk premiums for DeFi go up, especially for liquidity providers and integrators wey still fit dey interact with old pools, approvals, or reward/vault logic. Raydium ~ $1.34M drain no be one-off — CryptoSlate link pattern of plenty legacy-contract exploits since 2025 wey cause multimillion-dollar losses. Short-term, traders fit price higher tail-risk for DeFi tokens and protocols wey get old code paths (even if current UI/SDK dey "safe"), causing weaker sentiment and more conservative liquidity behavior (wider spreads, lower risk-taking). Long-term, market fit slowly re-rate protocols wey show strong decommissioning controls (draining, pausing, monitoring, and clear treasury liability), while protocols wey no clear about retirement process fit dey see persistent valuation discounts. Overall, because dis issue na structural (lifecycle governance and decommissioning), e likely say e go pressure sentiment rather than be one-off event — hence bearish bias.