CertiK flags $204K lending exploit on Edel Finance after collateral price manipulation

Analyst in newsroom monitors Edel Finance dashboard with red alert and on-chain traces.

Security monitoring firm CertiK identified a $204,000 exploit on Edel Finance’s decentralized lending market, where an attacker manipulated the valuation of wrapped stock collateral to extract funds from borrowing reserves. The incident highlights how pricing dependencies in tokenized equity lending can be disrupted when internal exchange-rate feeds lack hardened safeguards against flash-loan volatility.

According to the monitoring alert and subsequent security breakdowns, the attack targeted the protocol’s lending engine by artificially inflating the price of wGOOGLx, a wrapped representation of the tokenized Google stock token. On-chain analysts noted that the attacker deployed fresh contracts and utilized a flash loan to temporarily distort the exchange rate between wGOOGLx and its underlying asset. The manipulation pushed the collateral valuation roughly 78 times above its actual market price. With the pricing feed compromised, the borrower was able to open loan positions that far exceeded the real value of the deposited collateral, draining reserve liquidity.

Blockaid’s detection system flagged the transaction sequence in real time, identifying the flash-loan routing and the immediate extraction of borrowed assets from Edel’s lending pools. CertiK’s initial tracking placed the drain near $204,000, secondary analytics outlets estimated the total closer to $403,000 as funds moved across wallets. Until the protocol completes a full reconciliation or the assets are recovered, the exact financial impact should be treated as preliminary.

Edel Finance operates as a margin and lending infrastructure for tokenized equities and commodities, sourcing assets from providers such as Ondo Finance and xStocks across Ethereum and the Canton Network. The lending market’s functionality depends on accurate, tamper-resistant collateral pricing to maintain safe loan-to-value thresholds. When price oracles or internal swap rates are manipulated, risk parameters often fail to trigger timely liquidations, enabling rapid reserve extraction before the protocol can intercept the flow.

On-chain tracing indicates that a portion of the drained funds was routed to a mixing service shortly after the exploit execution. The project published an official response:

Standard recovery procedures for this type of incident typically involve pausing affected asset pools, auditing the vulnerable pricing contracts, and updating oracle dependencies before restoring borrowing functionality for users.

The detection illustrates how real-time security monitoring and on-chain alert networks function as early warning layers for decentralized lending platforms. While firms like CertiK and Blockaid can surface pricing anomalies as they occur, practical platform stability depends on how quickly lending protocols adjust valuation dependencies, isolate compromised pools, and communicate restoration timelines to depositors and borrowers.

Related post

Best crypto platforms