The decentralised finance (DeFi) sector is facing renewed pressure after a series of high-profile cyber attacks triggered a sharp pullback in investor capital and raised fresh questions over the resilience of blockchain-based financial systems, according to a report by the Financial Times.
Data from DefiLlama indicates that nearly $14 billion has exited the DeFi ecosystem in recent weeks, following two major hacking incidents that exposed vulnerabilities across interconnected platforms. The largest breach involved lending protocol Aave, where attackers linked to North Korea reportedly exploited weaknesses in related infrastructure, contributing to losses of roughly $290m. This came shortly after a separate $280m exploit at decentralised exchange Drift.
The incidents have underscored structural risks within DeFi, where automated smart contracts replace traditional intermediaries such as banks and brokers. While this model has been promoted as a more transparent and efficient alternative to conventional finance, the latest events have highlighted the importance of security across complex, interdependent systems.
Market participants say the fallout has dented confidence in the sector’s core proposition. Analysts note that the attacks challenge claims that decentralised platforms inherently offer safer financial infrastructure, particularly as vulnerabilities in one protocol can cascade across others.
DeFi experienced rapid expansion during 2020’s so-called “DeFi summer,” growing from a niche market to a sector valued at around $180bn by 2021. However, the market has since contracted significantly, with total value now estimated at roughly $86bn, close to recent lows.
The Aave-related incident illustrated how interconnected risks can materialise. Attackers reportedly used compromised assets as collateral to access borrowing facilities, leaving the platform exposed to substantial bad debt. A coordinated response from major crypto stakeholders helped stabilise the situation and limit broader contagion across the ecosystem.
However, the intervention has also sparked debate about the sector’s decentralisation claims. Critics argue that the reliance on a small group of influential participants to coordinate recovery efforts runs counter to the principle of decentralised governance that underpins the space.
Token performance across major DeFi platforms has also come under pressure. Several leading projects have recorded significant declines in value over recent months, reflecting weaker investor sentiment and heightened risk perception.
While some platforms have continued to attract activity — particularly those offering niche trading or derivatives exposure — the broader sector has struggled to demonstrate sustainable business models at scale.
Regulatory scrutiny is also intensifying. Policymakers in the US and elsewhere are advancing proposals to establish clearer frameworks for crypto markets, including how decentralised platforms interact with more traditional, centralised entities. Questions around oversight, investor protection and the role of developers remain key points of debate.
Industry participants also warn that evolving technologies such as artificial intelligence could increase the sophistication of cyber attacks, making it easier to identify and exploit vulnerabilities in smart contract code.
