In a recent spate of security breaches, the decentralized finance (DeFi) world has again fallen prey to hackers, this time with Exactly and Harbor protocols bearing the brunt of separate attacks. Exactly lost $7.3 million, while Harbor’s losses are still being tallied, according to Crypto Coin News. These incidents serve as a stark reminder of the fragility of the DeFi ecosystem and raise serious questions about its security.
“The issue with many of these recent breaches is they are attacking relatively new and untested protocols,” said James Wester, Director of Cryptocurrency at Javelin Strategy & Research. “Treating finance like technology—and effectively beta testing financial products—is clearly unwise and reflects badly on DeFi even if the hacks net only modest amounts.
“These hacks show how much still needs to be done in decentralized finance to understand the basic threats that traditional finance has been dealing with for decades.”
DeFi protocols face particular security challenges because of their decentralized and open nature, making them attractive to legitimate users and malicious actors alike. Hackers can exploit flaws in code to steal money. Consequently, protocols must continually enhance their security measures to mitigate the inherent risks of operating within a decentralized environment.
PaymentsJournal previously reported on the Crypto Asset National Security Enhancement Act of 2023, legislation proposing to regulate the DeFi industry. The bill aims to combat money laundering and suspicious activities in the cryptocurrency space, particularly within DeFi platforms, by mandating Know Your Customer (KYC) checks on users. If the bill becomes law, operators of DeFi protocols and bitcoin ATMs would have to verify user identities, report suspicious behavior, and block sanctioned individuals from their services. Currently, the industry remains mostly unregulated in the United States.