chaindrainMVP
Preview surface — demo data. Where real data exists today (e.g. RealT, BlackRock BUIDL, Lift Dollar) we render it; everywhere else we render synthetic enrichment generated deterministically from public signal and clearly marked Demo or Inferred. The Phase 3 roadmap replaces every synthetic source with live ingestion — see Methodology → Exposure Graph & Similarity Engine.
← back to incident ledger

access control missingDemo

Feb 21, 2025 · $8M · protocol

Narrative

On 2025-02-21, Beefy Finance suffered a access control missing incident resulting in approximately $7,955,642 in losses. The exploit targeted the protocol layer. Attribution: mev_searcher. This is a demonstration entry — not a real incident.

Victims

Classification

Root cause
access_control_missing
Secondary causes
Attack layer
protocol
Strategy
tech_vuln
Actor role
target
Attribution
mev_searcher
Attacker address
0xef912e196866be1cede3267dfa419b4ffd0c3e2e
Flash loan
no
Audited at time
no
Bounty at time
yes

AADAPT mappings

DEMO:AADAPT.TA0004DEMO:AADAPT.TA0006DEMO:AADAPT.T1078

Evidence

Disclosure date
Feb 24, 2025
Funds recovered
Audit firms at time
Post-mortem URLs (synthetic)
  • https://medium.com/beefy-finance/post-mortem-beefy-finance-2025-02-21
  • https://rekt.news/beefy-finance-rekt
  • https://blog.beefy-finance.xyz/incident-report
tx hashes (4)
  • 0x001bdc7dcdd38f730805714b20121379187758b42cb28ed0e0fd697b63b09274
  • 0xe949b3e57c285a5a9e0e82fbac09d92b9a62c068ef0dd434df92dafb2aeb99be
  • 0x8f8fc71755bdff8180e343f3c581f0292688541b1adb8765af93b8a3ead3f49d
  • 0x6e716d269e8859e21d722f0884de01593c72414042d3d809bc0e352f53fc0a53