TheBlock
Security researchers have flagged an active exploit targeting Stake DAO, in which an attacker minted trillions of vsdCRV tokens — a synthetic vote-locked CRV derivative used within the protocol's governance and yield ecosystem. The scale of the minting event suggests a critical flaw in the contract logic governing vsdCRV issuance, potentially allowing an unauthorized actor to inflate supply far beyond any legitimate parameter.
Stake DAO is a DeFi yield and governance aggregator built on top of Curve Finance's veTokenomics model. A vsdCRV inflation attack of this magnitude could distort governance voting power, destabilize liquidity incentives across Curve gauges, and trigger cascading effects on any protocol relying on Stake DAO's vote-delegation infrastructure.
CryptoSlate
Lookonchain