BarnBridge governance attack allegedly results in approximately $776,000 in losses
2026-07-15 06:28
Odaily Planet Daily News According to BlockSec monitoring, the BarnBridge SMART Yield cUSDC protocol was attacked on Ethereum, resulting in losses of approximately $776,000, suspected to be a governance attack. The attacker first gained DAO governance permissions, then upgraded the SmartYield/controller proxy to a malicious implementation contract, which called the privileged `_takeUnderlying` function of CompoundProvider. Using pre-existing USDC approvals from 50 user accounts, the attacker transferred pooled funds to themselves via `transferFees`.
