---
title: "Makina exploit adds to growing list of DeFi attacks in early 2026"
type: "News"
locale: "en"
url: "https://longbridge.com/en/news/273263381.md"
description: "Makina, a DeFi protocol, experienced an exploit on January 20, 2026, leading to losses exceeding $4 million. The attack targeted the USDC side of its DUSD/USDC Curve pool but did not affect other assets. This incident is part of a troubling trend in early 2026, with several DeFi exploits reported, including a $26 million loss at Truebit. The concentration of losses in a few incidents highlights ongoing systemic risks in the DeFi space, emphasizing the need for improved security measures and rapid response strategies."
datetime: "2026-01-21T17:07:05.000Z"
locales:
  - [zh-CN](https://longbridge.com/zh-CN/news/273263381.md)
  - [en](https://longbridge.com/en/news/273263381.md)
  - [zh-HK](https://longbridge.com/zh-HK/news/273263381.md)
---

# Makina exploit adds to growing list of DeFi attacks in early 2026

Makina, a DeFi protocol, suffered an exploit on **20 January**, resulting in the loss of **over $4 million**.

Makina’s recent exploit has added to a growing list of DeFi security incidents recorded in the opening weeks of 2026, reinforcing concerns that familiar attack vectors continue to scale alongside capital inflows.

## **Makina exploit: what happened**

On **20 January**, Makina disclosed an exploit affecting liquidity providers in its **DUSD/USDC Curve pool**, resulting in estimated losses of around **$4.2 millio**n, according to incident summaries and security reports.

The team said the attack was isolated to the USDC side of the Curve pool and did not impact users holding DUSD, Pendle, or Gearbox positions, nor funds held within Makina’s Machines.

Makina and Dialectic were alerted in the early hours of the incident. The protocol’s Security Council activated recovery mode, pausing all Machines in coordination with **SEAL911** and external auditors.

Source: X

Hypernative alerts flagged suspicious activity one block before the exploit, which was ultimately executed by a second address identified as an **MEV bot**.

Makina said it has identified the root cause and taken steps to prevent further losses. Also, it is pursuing recovery efforts, including engagement with addresses linked to the exploit.

Snapshots of the affected pool have been taken, with affected liquidity providers \[LPs\] advised to withdraw single-sided to DUSD while recovery continues.

A full post-mortem is expected once investigations are complete.

## **January 2026: a familiar pattern of DeFi exploits**

Makina’s incident is one of several notable protocol-level exploits recorded so far this year. While the underlying attack methods vary, most losses stem from **logic errors**, **configuration risks**, or **legacy contract assumptions**, rather than novel exploit techniques.

Among the largest incidents reported in January:

-   **Truebit \[8 January\]**: Approximately **$26 million** was lost due to a flaw tied to legacy bytecode and bonding-curve mechanics, making it the largest exploit of 2026 so far.
-   **YO Protocol \[13–14 January\]**: Roughly **$3.7 million** was drained in what was described as a slippage-related exploit or operator-level misconfiguration.
-   **TMXTribe \[early January\]**: About **$1.4 million** was lost due to a logic bug within the protocol.

Smaller incidents were also reported across the sector, though many involved limited losses or user-side wallet compromises rather than core protocol failures.

## **Losses concentrated in a handful of incidents**

While more than half a dozen security events have been reported since the start of the year, total losses remain heavily concentrated in a small number of exploits.

Truebit alone accounts for a significant share of reported losses, with Makina and YO Protocol forming the second tier of impact.

This concentration suggests that, while exploit frequency remains elevated, systemic risk is still driven by a few high-impact failures rather than widespread protocol failures.

* * *

## **Final Thoughts**

-   Early 2026 exploits show that familiar DeFi failure modes are persisting, with losses driven by scale rather than new attack techniques.
-   Makina’s incident underscores the importance of MEV-aware design and rapid-response frameworks as protocol complexity increases.

* * *

### Related Stocks

- [BITO.US](https://longbridge.com/en/quote/BITO.US.md)
- [EETH.US](https://longbridge.com/en/quote/EETH.US.md)
- [RIOX.US](https://longbridge.com/en/quote/RIOX.US.md)
- [ETCO.US](https://longbridge.com/en/quote/ETCO.US.md)
- [BPI.US](https://longbridge.com/en/quote/BPI.US.md)
- [MSTP.US](https://longbridge.com/en/quote/MSTP.US.md)
- [BTF.US](https://longbridge.com/en/quote/BTF.US.md)
- [QETH.US](https://longbridge.com/en/quote/QETH.US.md)
- [ETHE.US](https://longbridge.com/en/quote/ETHE.US.md)
- [MNRS.US](https://longbridge.com/en/quote/MNRS.US.md)
- [COIN.US](https://longbridge.com/en/quote/COIN.US.md)
- [ETH.US](https://longbridge.com/en/quote/ETH.US.md)
- [BTCO.US](https://longbridge.com/en/quote/BTCO.US.md)
- [HODL.US](https://longbridge.com/en/quote/HODL.US.md)
- [COIW.US](https://longbridge.com/en/quote/COIW.US.md)
- [CETH.US](https://longbridge.com/en/quote/CETH.US.md)
- [ARKB.US](https://longbridge.com/en/quote/ARKB.US.md)
- [ETHA.US](https://longbridge.com/en/quote/ETHA.US.md)
- [RIOT.US](https://longbridge.com/en/quote/RIOT.US.md)
- [LMBO.US](https://longbridge.com/en/quote/LMBO.US.md)
- [GLXY.US](https://longbridge.com/en/quote/GLXY.US.md)
- [ETHW.US](https://longbridge.com/en/quote/ETHW.US.md)
- [EZET.US](https://longbridge.com/en/quote/EZET.US.md)
- [CRCL.US](https://longbridge.com/en/quote/CRCL.US.md)
- [ABTC.US](https://longbridge.com/en/quote/ABTC.US.md)
- [MSTX.US](https://longbridge.com/en/quote/MSTX.US.md)
- [FETH.US](https://longbridge.com/en/quote/FETH.US.md)
- [GSOL.US](https://longbridge.com/en/quote/GSOL.US.md)
- [BTCW.US](https://longbridge.com/en/quote/BTCW.US.md)
- [BLOK.US](https://longbridge.com/en/quote/BLOK.US.md)
- [IBIT.US](https://longbridge.com/en/quote/IBIT.US.md)
- [CONY.US](https://longbridge.com/en/quote/CONY.US.md)
- [BITB.US](https://longbridge.com/en/quote/BITB.US.md)
- [HUT.US](https://longbridge.com/en/quote/HUT.US.md)
- [CONL.US](https://longbridge.com/en/quote/CONL.US.md)
- [EZBC.US](https://longbridge.com/en/quote/EZBC.US.md)
- [BSOL.US](https://longbridge.com/en/quote/BSOL.US.md)
- [MSTU.US](https://longbridge.com/en/quote/MSTU.US.md)
- [COIG.US](https://longbridge.com/en/quote/COIG.US.md)
- [MRAL.US](https://longbridge.com/en/quote/MRAL.US.md)

## Related News & Research

- [Here’s why the Internet Computer price just went parabolic](https://longbridge.com/en/news/287752175.md)
- [Billionaire Dan Loeb’s Third Point Just Took a New Position in Hut 8. What This Means for HUT Stock.](https://longbridge.com/en/news/287673076.md)
- [The alienation of a crypto "idealist"](https://longbridge.com/en/news/287887964.md)
- [Introducing Avalanche and Sui Futures](https://longbridge.com/en/news/287375902.md)
- [Why it's worth it for Jack Dorsey to make nice with stablecoins](https://longbridge.com/en/news/287960140.md)