Morning Edition · Friday, July 3, 2026
DeFi Lending Losses Mount as Collateral Math Becomes the Target
An attacker inflated the value of a tokenized Google share to steal from Edel Finance, one of several exploits keeping decentralized-finance losses elevated.

Edel Finance, a decentralized finance (DeFi) lending protocol, halted its first-version contracts after an attacker manufactured roughly $403,000 in bad debt without altering a price feed. As CryptoSlate detailed, the exploit targeted the internal conversion between a tokenized Alphabet share and its wrapped form. By repeatedly redeeming and donating the token back into an ERC-4626 vault, the attacker pushed the vault's assets-per-share ratio from about 6 to nearly 79, then borrowed roughly 384,000 USDC and other wrapped stock tokens against collateral the protocol valued incorrectly. Chainlink's price oracle reported Alphabet's real share price correctly throughout. Edel said it will absorb the losses to fully repay depositors, is building a redesigned version, and has offered the attacker a white-hat settlement, though the funds moved through Tornado Cash.
The pattern of attacking valuation logic rather than external prices extends a broader trend. The security tracker Rekt News has logged recent losses including Secret Network, whose Axelar bridge lost about $4.67 million to an infinite-mint flaw. A modified token contract failed to verify the source of cross-chain messages, which let an attacker running a single-validator chain mint wrapped assets backed by nothing. Smaller incidents at SecondFi and Humanity Protocol complete the week's list.
Physical attacks follow the on-chain ones. French authorities are responding to a rise in kidnappings and coercion aimed at visible crypto holders, which CryptoSlate tied to leaked personal-data trails rather than any wallet vulnerability. The common element is that the weakest layer is rarely the cryptography.
What this means
Losses are shifting from oracle spoofing toward the accounting logic protocols use to value collateral, a subtler failure that audits often miss, and the fact that tokenized stocks were the collateral shows the risk migrating straight into the newest DeFi products.
What to watch
- Whether ERC-4626 vault donation-and-redeem manipulation appears at other lenders, which would mark it as a repeatable class of bug rather than a one-off.
- Whether Edel and Secret Network recover funds or attribute the attackers, since successful clawbacks change the economics for future exploiters.
Observations to monitor, not financial advice.
Synthesized from: CryptoSlate · Rekt News · CryptoSlate (physical threats)
Part of a tracked trend
Bridge and Mint Exploits Sustain Heavy DeFi Losses
Over 3-6 months, recurring bridge proof-validation and unauthorized-mint exploits keep monthly DeFi losses elevated, including drains of deprecated contracts.
More from this edition
- Stablecoin Rulebook Comes Due as GENIUS Act Deadline Nears
- Privacy Chains Reframe Confidentiality as an Institutional Requirement
- Ethereum Researchers Target Network Anonymity and Client Blind Spots
- Bitcoin's Contract Language Gets a Post-Quantum Proof of Concept
- Tether Freezes 131 Wallets, Showing Stablecoins as Sanctions Infrastructure
- Binance Exits Greek Licensing as Europe's Crypto Perimeter Firms Up
- India's Central Bank Tells Parliament It Still Rejects Private Crypto
- Securitize Tokenizes Its Own Stock as Brokers Race Onto Public Chains
- Solana Proposal Routes Validator Pay Through On-Chain Contracts
- Bitcoin Recovers Toward $62,000 as ETF Outflow Streak Ends
- Court Fight Over Dormant Satoshi-Era Bitcoin Reaches New York