250 pieces of SAUCE leverage 9 million: Bonzo has been breached.

CN
1 hour ago

Around July 11, the seemingly robust lending protocol Bonzo Finance in the Hedera ecosystem was breached by a meticulously designed oracle attack. The attacker first deposited about 250 SAUCE as collateral in Bonzo, which appeared to be an insignificant small position to anyone's eyes, but was subsequently "magnified" into a massive chip during the following price updates—by manipulating the oracle's quoted price for SAUCE and artificially inflating its value. Leveraging this overstated collateral value, the attacker borrowed assets from the protocol far exceeding the actual collateral value, ultimately causing approximately $9 million in economic losses. With less than a hand of SAUCE, the entire lending pool's safety valve was pried open, and this extreme leveraged attack method compelled Bonzo to admit in its preliminary incident report that the issue pointed directly to the oracle price update mechanism and collateral risk control. As the incident continued to be tracked by the media and the community, doubts spread from a single protocol to the entire Hedera ecosystem, extending further into the broader DeFi world: in scenarios with a smaller ecosystem and limited liquidity of single tokens, once an oracle is manipulated, any lending protocol could become an ATM for attackers overnight.

Attack Path of 250 SAUCE Lifting $9 Million

On-chain, this attack began with what seemed like an insignificant action: the attacker deposited about 250 SAUCE into Bonzo as collateral. According to standard procedures, this was just an ordinary opening operation, but the real twist occurred during the subsequent price update phase. Bonzo confirmed in its preliminary incident report that the attacker gained the ability to submit price updates for SAUCE to the oracle and anomalously raised the price of SAUCE at critical points in time. After the oracle recorded this "legitimate" update, the entire protocol subsequently accepted a severely inflated price, divergent from the real market, causing the originally few hundred units of collateral to be instantaneously magnified to a "high net worth position" far exceeding its actual value on paper.

With such false collateral value underpinning it, the attacker began borrowing assets from Bonzo, with limits far exceeding the real market value of 250 SAUCE. According to multiple media reports, this loss totaled about 9 million USD, meaning the attacker leveraged a position worth millions of dollars with an extremely low capital stake, breaking through the safety boundary of the protocol’s original risk model. The entire process did not involve complex multi-step arbitrage or lengthy funding migration routes; the core was merely two steps: first, use a small amount of SAUCE to open a position, and then use a price update recognized by the oracle to magnify this position out of control. For Bonzo, this was not just a $9 million accounting black hole, but a precise strike on the oracle and collateral risk control design, clearly exposing that under a framework of concentrated permissions and insufficient risk assessment of single assets, the so-called "safety boundary" can be easily breached through low-cost price manipulation.

Bonzo's Position in the Hedera Ecosystem

In the Hedera ecosystem, Bonzo Finance plays a typical central role in collateralized lending: users deposit on-chain assets into the protocol, forming measurable collateral positions, and then based on this, borrow other tokens from the protocol, achieving leverage and liquidity conversion of "using assets to leverage assets within Hedera." For Bonzo, the safety of each position is not determined by user subjective judgment, but is almost entirely entrusted to the price oracle—collateral value, borrowable amount, liquidation threshold, all depend on the oracle continuously providing quotes for each asset type; under this pricing framework, the protocol dares to accept tokens like SAUCE as collateral and issue corresponding loans.

Because of this, Bonzo's reliance on the price oracle has been amplified into a system-level single point: as soon as any type of collateral's on-chain price is "misrecognized" by the oracle, the entire pathway from collateral to lending will be distorted. SAUCE, as one of the liquidity tokens in the Hedera ecosystem, was included in Bonzo's list of collateralizable assets, yet became the breakthrough point in this incident. Reports indicated that the price and liquidity conditions of SAUCE made it more susceptible to manipulation in the market environment referenced by the oracle; this characteristic of being "technically collateralizable but easily manipulated in reality" naturally evolved it into the entry point that attackers prioritized testing in Bonzo's collateral list.

How Oracle Single Point Failure Amplifies Risk

In the history of decentralized lending protocols, oracle attacks have become a repeatedly validated old trick: either by accumulating chips in the liquidity pool of a certain DEX to briefly raise or lower the pool's price, or by controlling the price update function to "legally" submit distorted quotes on-chain. What Bonzo fell into was precisely the latter type. The incident report identified the SAUCE price update mechanism as a key entry point in the attack path—attackers only needed to first deposit about 250 SAUCE into Bonzo, and then by submitting an abnormal price update, allow the oracle to quote SAUCE prices that deviate from the real market, thereby magnifying this collateral position on paper far beyond its actual value.

This type of attack is more likely to succeed on smaller chains. In smaller or early ecosystems, the on-chain liquidity and depth of certain tokens are relatively limited, meaning that the cost of "pulling a needle" in a certain quoted market is lower; as long as the price source or update rhythm is controlled, it can lever up protocol assets far greater than one's own chips. The reason why the Bonzo incident sparked widespread discussion is also due to the structural problems it exposed: the centralization of price update permissions of the oracle, the protocol's heavy reliance on a single price source, and the risk control side not setting stricter discounts or limits for easily manipulated assets like SAUCE. Under such a design, a successful attack targeting the oracle could easily magnify the entire protocol's risk exposure from a collateral position of 250 SAUCE to a systemic loss of up to 9 million dollars in an instant.

Community Concerns on Risk Control Vulnerabilities and Lessons

Following the exposure of the incident, Bonzo quickly issued a preliminary incident statement, but this did not quell the doubts; instead, it sharpened the focus on its risk control model. Reports from multiple Chinese crypto media spread widely on social platforms, with concentrated criticisms in the comment sections about the excessive centralization of oracle price update permissions—this incident demonstrated that the attacker was able to directly manipulate SAUCE pricing through submitting price updates, which itself indicated a lack of sufficient checks and balances in the price source and update process. Another recurring concern raised was that the protocol's risk assessment and parameter settings were evidently insufficient in identifying and limiting the risks of such single tokens; community users questioned if Bonzo had set stricter collateral discounts or loan limits on low liquidity assets like SAUCE in advance, the scale of losses from the attack would likely not have been amplified to millions of dollars.

As discussions intensified, this attack was no longer seen merely as Bonzo's incident but was viewed by public opinion as a typical case exposing issues within the risk control models of lending protocols in the Hedera ecosystem. Several developers participating in the discussion redirected focus to more foundational design propositions: how to disperse oracle permissions, how to diversify price sources, and how to dynamically adjust risk parameters targeting single collateral assets in an environment where the ecosystem scale remains small and individual tokens are more easily manipulated. Current publicly available information has not provided details on fund recovery, compensation solutions, or specific repair progress; what is truly worthy of ongoing observation will be whether the Hedera ecosystem and broader DeFi might implement verifiable adjustments in oracle design—such as whether price sources are diversified, whether pricing permissions are further decentralized or brought under stricter governance thresholds, and whether parameters like collateral rates for low liquidity assets, single asset loan limits, and liquidation discounts are systematically reduced. At the same time, the community has become significantly sensitive to the oracle and risk control architecture of other protocols on Hedera; whether proposals for governance surrounding oracle management, collateral whitelisting, and risk parameter restructuring emerge will be a key signal in assessing whether this incident can truly push forward the upgrade of on-chain security practices.

Join our community, let’s discuss together and become stronger!
Exclusive Hyperliquid benefits for AiCoin: https://app.hyperliquid.xyz/join/AICOIN88
Exclusive Aster benefits for AiCoin: https://www.asterdex.com/zh-CN/referral/9C50e2
On-chain Telegram community: https://t.me/AiCoinWhaleData
On-chain community: https://www.aicoin.com/link/chat?cid=N6OVMor5g
AiCoin on-chain Twitter: https://x.com/aicoinwhaledata

免责声明:本文章仅代表作者个人观点,不代表本平台的立场和观点。本文章仅供信息分享,不构成对任何人的任何投资建议。用户与作者之间的任何争议,与本平台无关。如网页中刊载的文章或图片涉及侵权,请提供相关的权利证明和身份证明发送邮件到support@aicoin.com,本平台相关工作人员将会进行核查。

Share To
APP

X

Telegram

Facebook

Reddit

CopyLink