Radiant Capital suspends DeFi lending on Arbitrum after $4.5 million ETH exploit Radiant Capital suspends DeFi lending on Arbitrum after $4.5 million ETH exploit
Blockchain security firms, including CertiK, stated that Radiant Capital suffered a flashloan attack.
2 min read
Updated: Jan. 3, 2024 at 9:11 am UTC
Cover art/illustration via CryptoSlate. Image includes combined content which may include AI-generated content.
Decentralized finance (DeFi) lending protocol Radiant Capital temporarily paused its operations on the Ethereum layer2 network Arbitrum after it was exploited for 1,900 ETH, or $4.5 million.
In a Jan. 3 post on social media platform X (formerly Twitter), the cross-chain lending protocol confirmed that it received a report of an issue with its newly created native USDC market on Arbitrum.
“After validation by Radiant developers and the wider Web 3 security community, the Radiant DAO Council paused lending/borrowing markets on Arbitrum temporarily while this is investigated further,” it added.
The platform did not provide additional information about the cause of the issues.
However, several blockchain security firms, including CertiK, stated that the protocol experienced a flash loan attack, allowing the attacker to “inflate the liquidity index and then exploit the rounding issue in `rayDiv()` during deposit() and withdraw() to drain the lending pools.”
Beosin Alert further explained that the Radiant USDC contract has a rounding issue in its calculation, leading to the error. As such, the attacker manipulated the index parameter to a higher volume.
“The attacker manipulated the index parameter (which later served as a denominator) to become extremely large. The contract has a rounding issue in its calculations, which led to a cumulative precision error. Since the index parameter was dramatically inflated, this precision error was also magnified, ultimately allowing the attacker to profit through repeated deposit() and withdraw() operations,” Beosin Alert wrote.
Social media platform X has been inundated with fake Radiant Capital accounts posting phishing links to help users revoke approvals. However, the official account for the protocol already urged the community to verify information from official channels and warned that “many imitation accounts will likely spread misinformation or fake links.”
Meanwhile, the event did not drastically impact the total value of assets locked on the protocol, which currently sits at around $315 million as of press time, according to DeFillama data.
Mentioned in this article
Author 
Oluwapelumi Adejumo
Oluwapelumi values Bitcoin's potential. He imparts insights on a range of topics like DeFi, hacks, mining and culture, underlining transformative power.
Editor Editor 
Liam 'Akiba' Wright
Also known as "Akiba," Liam is a reporter, editor and podcast producer at CryptoSlate. He believes that decentralized technology has the potential to make widespread positive change.
Latest Arbitrum Stories
In this article
Ethereum is a decentralized, open-source blockchain platform that enables the creation of smart contracts and decentralized applications (DApps).
Arbitrum
$1.07809
Arbitrum is a type of technology known as an optimistic rollup.
USD Coin
$1.00017
USD Coin (USDC) is a stablecoin fully backed by the US dollar and developed by the CENTRE consortium.
