Back

Aftermath Finance Exploit on Sui Network Drains About $1.1 Million in USDC

Aftermath Finance said a fee-logic flaw caused the Sui exploit, while GoPlus described abused admin access and a symbol mismatch bug; the protocol said users will be fully reimbursed with support from Mysten Labs and the Sui Foundation.

USDC
SUI

Fact Check
The exploit itself is reasonably supported: the Panews article says Aftermath Finance disclosed a suspected attack and paused operations, and the Odaily newsflash reports about $1.1 million USDC stolen due to a fee/accounting flaw, citing Blockaid. That makes the first part of the claim plausible. But the stronger second part—that Aftermath Finance said all user losses were fully covered with support from Mysten Labs and the Sui Foundation—is not confirmed by any validated primary or official source fetched in this run. Because the most important restitution detail lacks direct evidence here, the combined claim is best rated insufficient_evidence rather than likely_true.
    Reference
Summary

Aftermath Finance’s April 29 exploit on Sui resulted in losses initially reported at about $1.1 million in USDC, later described by the protocol as roughly $1.14 million and by newer reporting as exceeding $1.14 million. External analysis tied the incident to a fee accounting defect in the platform’s perpetuals system, while GoPlus said the attacker abused ADMIN access in add_integrator_config and exploited a symbol mismatch flaw in calculate_taker_fees to repeatedly extract tokens. Aftermath Finance said all affected users would be fully reimbursed, with support from Mysten Labs and the Sui Foundation, and stated that the issue stemmed from application fee logic rather than a broader problem with the Sui network.

Terms & Concepts
  • Sui: A layer-1 blockchain network developed to support high-throughput decentralized applications and digital asset activity.
  • USDC: A U.S. dollar-pegged stablecoin designed to maintain a stable value of one dollar per token.
  • Perps: Short for perpetual futures, a crypto derivatives product that lets traders speculate on price movements without a contract expiry date.