Summer.fi Lazy Summer attack is not a contract vulnerability, but rather an exploitation of the NAV mechanism

By: rootdata|2026/07/08 00:42:08
0
Share
copy

Summer.fi released an analysis report on the Lazy Summer Protocol USDC treasury attack incident. The attacker manipulated the prices of two USDC treasury shares in a single atomic transaction, extracting approximately $6.04 million of depositor funds. The core of the attack lies in the calculation method of the treasury's net asset value (NAV).

The attacker donated tokens that still retained the old valuation to a Silo Ark that had been suspended after the incident in November 2025 but had not yet been completely removed, resulting in an inflated total asset value of approximately 9.5%, raising the share price, which was then redeemed at an inflated price and withdrawn from the treasury's actual liquidity. The report emphasizes that this attack was not due to a contract code vulnerability, but rather a missing link in the treasury's offline process—the deposit limit for that Ark had been set to zero, yet it was still counted in the NAV of active assets.

The attacker premeditatedly accumulated the required tokens three months in advance through multiple wallets and transferred part of the profits via Tornado Cash. After the incident, Guardian Multisig has suspended all on-chain treasuries and set the deposit limit to zero. The Lazy Summer DAO will discuss compensation plans for affected users and the treasury restart plan in the coming days.

-- Price

--

You may also like

Collateral USD: How does the "second layer dollar" above stablecoins form?

Under the reference framework of the offshore dollar system, once stablecoins are incorporated into the collateral financing chain, it may give rise to a new type of dollar debt based on them—“collateralized dollars.” Whether this layer of debt can be established and whether it is stable depends on ...

How has the Pacific "fever" turned extreme weather into a cash machine for Wall Street?

The extreme weather caused by El Niño is sweeping through the commodity markets, becoming not only a "weather code" for quantitative funds and traders to frantically profit from, but also quietly driving up global food prices and the cost of living for ordinary people.

Trade Spot Market Orders With More Control: WEEX Adds Slippage Tolerance

WEEX Spot now supports Slippage tolerance for market orders, helping users set a maximum acceptable price deviation before placing a market buy or sell order

Morning Report | One week after the full implementation of the EU MiCA, 21 stablecoin issuers and over 270 crypto service providers have obtained regulatory qualifications; Microsoft lays off 4,800 employees, with Xbox accounting for about 3,200 of the...

July 7 Market Important Events Overview

Morning News | SK Hynix officially launches the marketing promotion process for its U.S. stock listing; the Central Cyberspace Administration announces the results of the first phase of rectifying AI application chaos, with over 14,000 non-compliant pr...

July 6 Market Important Events Overview

How has Binance's stock business performed in the 30 days since its launch?

Emerging market buying supported the first wave of demand.

Contents

Popular coins

Latest Crypto News

Read more
iconiconiconiconiconiconicon
Customer Support:@weikecs
Business Cooperation:@weikecs
Quant Trading & MM:bd@weex.com
VIP Program:support@weex.com