DeFiTuna, a decentralized finance protocol built on Solana, disclosed that an attacker drained $580,000 from its lending pools on July 16. The exploit left a matching deficit in the platform’s USDC lending pool.
The team says it quickly identified and mitigated the attack vector. Recovery efforts and a deeper investigation into the exploit are underway, though the protocol has not yet detailed how, or whether, affected users will be made whole.
What happened and what we know so far
DeFiTuna operates as an automated market maker with native lending features, concentrated liquidity, and support for leveraged positions. Users deposit assets into pools, other users borrow against them, and everyone earns yield based on how much of the pool is being utilized.
The attacker extracted $580K from those pools, specifically impacting the USDC side of the ledger. That created an immediate deficit, meaning the pool’s liabilities now exceed its assets by that amount.










