Denaria Finance, a decentralized perpetual futures trading platform built on the Linea blockchain, disclosed a smart contract exploit on April 6 that resulted in losses of approximately $165k. The project’s official account announced the breach, confirming collaboration with the LineaBuild team and external auditors to determine the root cause. A detailed post-mortem analysis is expected shortly, while all user interfaces remain temporarily suspended to contain the incident.
Smart Contract Breach
The exploit occurred on April 5, draining roughly 165,600 USDC from Denaria’s contracts in a single incident. Denaria’s team immediately initiated an investigation alongside Linea developers and its auditing partners to reconstruct the vulnerability. According to the April 6 statement, the protocol acted swiftly to isolate affected components and prevent any escalation. The announcement emphasized that the platform’s core smart accounts for progressive web app users would regain access once the application reopens, underscoring a measured approach focused on containment and transparency rather than speculation about the attacker’s identity or methods. This coordinated response highlights the project’s commitment to safeguarding remaining user assets during the active inquiry phase.
Platform Impact and Response
The temporary pause of all Denaria user interfaces has disrupted trading activity, though the team has outlined next steps for recovery. Users holding open trades or USDC balances in the Vault at the time of the exploit will be covered by a dedicated refund procedure currently under development. In a direct outreach to the perpetrator, Denaria offered a bounty and urged immediate contact at [email protected] to facilitate fund recovery and avoid legal consequences. The statement explicitly warned that all official updates would appear solely through verified Telegram and X channels, reinforcing that no team member would initiate private contact with users. These measures aim to minimize further exposure while maintaining clear communication with the community.
Key Incident Summary
- Approximately 165,600 USDC drained from Denaria contracts following a smart contract exploit on April 5, 2026
- All user interfaces paused as immediate precaution; PWA smart-account access to resume post-reopening
- 15% bounty (~$25,600) offered to attacker for return of ~85% of funds within 48 hours
- Refund process in development for affected open trades and USDC Vault holdings at time of breach
