Back
Pendle Faces Potential Exploit as Attacker Mints Free Tokens

Pendle Faces Potential Exploit as Attacker Mints Free Tokens

Pendle assures users that no attack occurred on its protocol, with the issue attributed to a hacked wallet responsible for minting and selling unauthorized PT and YT tokens.

PENDLE

Fact Check
The evidence confirms that Pendle's ecosystem faced exploits involving token minting. Specifically, the Penpie exploit, a protocol built on Pendle, saw an attacker mint fake Yield Tokens (YT) and Standardized Yield (SY) tokens. Separately, the Pendle team took preventative action to disable a token due to a 'mint vulnerability' in the Bedrock protocol. While not a direct exploit of Pendle's core contracts, the platform and its ecosystem did face exploits where attackers minted tokens.
    Reference123
Summary

Pendle has confirmed that no attack took place on its protocol and that all funds remain secure. The incident involved a user's wallet being compromised, leading to the unauthorized minting and sale of PT and YT tokens. The suspicious wallet address is 0x3c34abb66270e0287d138c2cbb69da85cdea3a8e.

Terms & Concepts
  • Pendle: A decentralized finance protocol enabling tokenization and trading of future yield on crypto assets.
  • PT (Principal Token): A token representing the principal amount of an asset in Pendle’s yield-tokenization model.
  • YT (Yield Token): A token representing the future yield or interest from an underlying asset in Pendle’s protocol.