Polylog
The Polylog Crypto Intelligence Brief

Morning Edition · Friday, July 3, 2026

DeFi Lending Losses Mount as Collateral Math Becomes the Target

An attacker inflated the value of a tokenized Google share to steal from Edel Finance, one of several exploits keeping decentralized-finance losses elevated.

DeFi Lending Losses Mount as Collateral Math Becomes the Target

Edel Finance, a decentralized finance (DeFi) lending protocol, halted its first-version contracts after an attacker manufactured roughly $403,000 in bad debt without altering a price feed. As CryptoSlate detailed, the exploit targeted the internal conversion between a tokenized Alphabet share and its wrapped form. By repeatedly redeeming and donating the token back into an ERC-4626 vault, the attacker pushed the vault's assets-per-share ratio from about 6 to nearly 79, then borrowed roughly 384,000 USDC and other wrapped stock tokens against collateral the protocol valued incorrectly. Chainlink's price oracle reported Alphabet's real share price correctly throughout. Edel said it will absorb the losses to fully repay depositors, is building a redesigned version, and has offered the attacker a white-hat settlement, though the funds moved through Tornado Cash.

The pattern of attacking valuation logic rather than external prices extends a broader trend. The security tracker Rekt News has logged recent losses including Secret Network, whose Axelar bridge lost about $4.67 million to an infinite-mint flaw. A modified token contract failed to verify the source of cross-chain messages, which let an attacker running a single-validator chain mint wrapped assets backed by nothing. Smaller incidents at SecondFi and Humanity Protocol complete the week's list.

Physical attacks follow the on-chain ones. French authorities are responding to a rise in kidnappings and coercion aimed at visible crypto holders, which CryptoSlate tied to leaked personal-data trails rather than any wallet vulnerability. The common element is that the weakest layer is rarely the cryptography.

What this means

Losses are shifting from oracle spoofing toward the accounting logic protocols use to value collateral, a subtler failure that audits often miss, and the fact that tokenized stocks were the collateral shows the risk migrating straight into the newest DeFi products.

What to watch

  • Whether ERC-4626 vault donation-and-redeem manipulation appears at other lenders, which would mark it as a repeatable class of bug rather than a one-off.
  • Whether Edel and Secret Network recover funds or attribute the attackers, since successful clawbacks change the economics for future exploiters.

Observations to monitor, not financial advice.

3 sources

Synthesized from: CryptoSlate · Rekt News · CryptoSlate (physical threats)

Part of a tracked trend

Bridge and Mint Exploits Sustain Heavy DeFi Losses

Over 3-6 months, recurring bridge proof-validation and unauthorized-mint exploits keep monthly DeFi losses elevated, including drains of deprecated contracts.