Bonzo Lend Loses $9M in Oracle Exploit on Hedera

Bonzo Lend lost $9 million after an attacker inflated the value of SAUCE collateral and borrowed against it. The incident stemmed from a flaw in Supra’s on-chain oracle verifier, according to the supplied source material.

Bonzo Lend Loses $9M in Oracle Exploit on Hedera

What happened?

Bonzo Lend lost $9 million after an attacker inflated the value of SAUCE collateral and borrowed against it. The incident stemmed from a flaw in Supra’s on-chain oracle verifier, according to the supplied source material.

Why it matters

The incident matters because lending markets depend on reliable price data to determine how much users can borrow against collateral. When an oracle verifier fails, a protocol can accept distorted valuations, exposing liquidity providers and borrowers to sudden losses.

Bonzo Lend, a lending protocol on Hedera, lost $9 million after an attacker manipulated the value of SAUCE collateral and used it to borrow funds from the platform. The exploit was tied to a flaw in Supra’s on-chain oracle verifier, which allowed the collateral value to be inflated.

The incident matters because lending markets depend on reliable price data to determine how much users can borrow against collateral. When an oracle verifier fails, a protocol can accept distorted valuations, exposing liquidity providers and borrowers to sudden losses.

According to the source material, the attacker’s strategy centered on raising the reported value of SAUCE collateral before borrowing $9 million from Bonzo Lend. The supplied details do not specify the full transaction path, recovery status, or whether affected funds were returned.

Oracle security remains a critical risk area for decentralized finance because lending protocols use external price feeds to make automated decisions. In this case, the weakness was attributed to Supra’s on-chain oracle verifier rather than a conventional private-key compromise or front-end attack.

The Bonzo Lend exploit adds another example of how infrastructure-level weaknesses can create direct financial losses in DeFi. For Hedera users and DeFi builders, the case underscores the importance of oracle validation, collateral controls, and risk monitoring in lending applications.

Source: Cointelegraph

Keep exploring

Related stories

Ethereum Foundation Says AI Helped Find Validator-Crashing Bug

Ethereum Foundation Says AI Helped Find Validator-Crashing Bug

Ethereum Foundation developers used AI agents to uncover a gossipsub vulnerability that could remotely crash validator nodes, with the issue fixed and disclosed as CVE-2026-34219. The exercise also showed that human review remains essential because AI systems produced many convincing but false bug reports.

Read
Ethereum Gains 3% as Tokenization Momentum Builds

Ethereum Gains 3% as Tokenization Momentum Builds

Ethereum rose 3% as tokenization growth and institutional accumulation supported market interest. However, weak onchain and derivatives signals kept the risk of a retest near $1,700 in focus.

Read
Google’s Nano Banana 2 Lite Puts Price and Speed Ahead of Top-Tier Image Quality

Google’s Nano Banana 2 Lite Puts Price and Speed Ahead of Top-Tier Image Quality

Decrypt’s review frames Nano Banana 2 Lite as a low-cost, fast image model that is useful for many tasks but not a full replacement for Nano Banana 2. The key tradeoff is simple: save money when speed and adequacy matter, upgrade when image quality matters most.

Read