Badger DAO Protocol Suffers $120M Exploit

The hacker or hackers may have targeted the platform’s user interface.

AccessTimeIconDec 2, 2021 at 4:51 a.m. UTC
Updated May 11, 2023 at 7:07 p.m. UTC
10 Years of Decentralizing the Future
May 29-31, 2024 - Austin, TexasThe biggest and most established global hub for everything crypto, blockchain and Web3.Register Now

A decentralized finance (DeFi) mainstay is the latest to fall victim to a hack following the loss of $120 million in various cryptocurrencies.

On Wednesday night an attacker drained funds from the wallets of dozens of users of the Badger DAO yield vault protocol using malicious contract permissions. Blockchain data and security analytics company PeckShield has concluded that the total loss amounted to about 2,100 BTC and 151 ETH.

  • How NEAR Enables Multichain Access From One Account
    How NEAR Enables Multichain Access From One Account
  • Over $67M in Crypto Lost to Hacks and Exploits in February: Immunefi Report
    Over $67M in Crypto Lost to Hacks and Exploits in February: Immunefi Report
  • Hacks Involving North Korea Are 'Even Greater Problem': Legal Experts
    Hacks Involving North Korea Are 'Even Greater Problem': Legal Experts
  • Breaking Down the State of Hacking in 2024
    Breaking Down the State of Hacking in 2024
  • Users first reported possible problems in the protocol’s channel on the Discord messaging app at 9 p.m. ET Wednesday. Speculation in online channels is that the hack is the result of an exploit in the user interface, and not in the core protocol contracts. Many affected users report that while claiming yield farming rewards and interacting with Badger vaults, they noticed their wallet providers prompting spurious requests for additional permissions.

    “It looks like a bunch of users had approvals set for the exploit address allowing [the address] to operate on their vault funds and that was exploited,” Badger core contributor Tritium wrote on Discord.

    “Once we noticed we froze all the vaults so nothing can move and are trying to figure out where the approvals came from, how many people have them, and what next steps are,” he added.

    Badger’s official social media channel confirmed the hack on Twitter:

    A Badger representative didn’t respond to a request for comment by the time of publication.

    While the bulk of the funds were drained Wednesday night, the malicious permission requests may have been made weeks prior to the attack. Though the protocol contracts are paused, community members are advising that depositors use tools like Debank and Unrekt to revoke permissions for the malicious contract.

    At the time of writing BadgerDAO’s BADGER token was down 21% to $21.64 over the past 24 hours.

    UPDATE (Dec. 2, 11:10 UTC): Updates estimate of amount stolen, token price.


    Please note that our privacy policy, terms of use, cookies, and do not sell my personal information has been updated.

    CoinDesk is an award-winning media outlet that covers the cryptocurrency industry. Its journalists abide by a strict set of editorial policies. In November 2023, CoinDesk was acquired by the Bullish group, owner of Bullish, a regulated, digital assets exchange. The Bullish group is majority-owned by; both companies have interests in a variety of blockchain and digital asset businesses and significant holdings of digital assets, including bitcoin. CoinDesk operates as an independent subsidiary with an editorial committee to protect journalistic independence. CoinDesk employees, including journalists, may receive options in the Bullish group as part of their compensation.

    Andrew Thurman

    Andrew Thurman was a tech reporter at CoinDesk with a focus on DeFi.

    Learn more about Consensus 2024, CoinDesk's longest-running and most influential event that brings together all sides of crypto, blockchain and Web3. Head to to register and buy your pass now.

    Read more about