Cyber Incident Victim: Akropolis

On November 11, 2020, cryptocurrency borrowing and lending service Akropolis suffered a security breach in which a hacker executed a flash loan attack against its decentralized finance (DeFi) platform, resulting in the theft of approximately $2 million worth of Dai cryptocurrency. The attack occurred during the afternoon GMT timeframe, prompting Akropolis administrators to suspend all platform transactions immediately to prevent additional losses. Flash loan attacks involve borrowing funds from a DeFi platform while exploiting vulnerabilities in its smart contract code to bypass repayment mechanisms and abscond with the assets. This incident followed a broader trend of similar attacks targeting DeFi platforms throughout 2020, including a $24 million theft from Harvest Finance in October. Akropolis engaged two external firms to investigate the breach, though neither successfully identified the specific technical vectors exploited by the attacker.

Akropolis confirmed the attacker’s Ethereum wallet address, enabling blockchain tracking of the stolen funds. The company notified major cryptocurrency exchanges about the compromised wallet to facilitate freezing attempts and disrupt potential money laundering through cryptocurrency conversions or cash-outs. The platform acknowledged operational disruption from the transaction suspension and committed to exploring user reimbursement options for the stolen assets. No technical specifics regarding the exploited vulnerabilities or platform functionality were disclosed, as investigators failed to determine the precise attack methodology. The incident underscored the persistent security challenges facing DeFi platforms utilizing flash loan mechanisms during this period.