What happened in the Bunni DeFi exploit?

On September 2, 2025, Bunni, a decentralized exchange on Uniswap v4, suffered an exploit where attackers drained approximately $2.4 million, mainly in stablecoins like USDC and USDT.

How did hackers steal funds from Bunni?

Hackers exploited vulnerabilities in Bunni's smart contracts, allowing unauthorized manipulation that rerouted user funds to the attackers' wallets.

Why was Bunni targeted by hackers?

Bunni was vulnerable due to a combination of smart contract loopholes, simplified user interfaces that can be exploited, and a lack of rigorous security audits.

What types of assets were stolen in the exploit?

The stolen assets were primarily stablecoins, including USDC and USDT, totaling around $2.4 million.

What role do simplified interfaces play in DeFi hacks?

Simplified interfaces attract users but can increase security risks. A 2025 study showed that user-friendly DeFi apps are 30% more prone to interface-related hacks.

Has Bunni taken any action after the hack?

Yes. Bunni is working with blockchain security experts to trace the stolen funds, freeze suspicious addresses, and launch security audits to patch vulnerabilities.

Will affected users be compensated?

So far, Bunni has not released an official compensation plan, but community discussions are ongoing regarding support for affected users.

How common are DeFi exploits like Bunni's?

DeFi exploits are becoming increasingly common. PeckShield data shows many attacks could have been prevented with regular security audits and proactive code reviews.

Which previous attacks are similar to Bunni's exploit?

The attack is similar to the $625 million Ronin Bridge hack in 2022, where hackers exploited system weaknesses in smart contracts to steal high-value funds.

What can DeFi platforms do to prevent such exploits?

Platforms should implement stronger security audits, robust coding practices, and better user education to reduce the risk of future hacks.

Another Crypto Hack News: Bunni Exchange Suffers $2.4M Loss

Sakshi Jain

September 2, 2025

Last Updated: September 2, 2025

Lets Uncover The Drama: $2.4M Lost in Bunni Attack

Crypto Hack News: Bunni Exchange Built on Uniswap v4 Suffer $2.4M Loss

Another hack news has once again rocked the world of decentralized finance (DeFi). On September 2, 2025, blockchain security firm PeckShieldAlert reported that a decentralized exchange (DEX) built on Uniswap v4, Bunni, was compromised to the value of approximately $2.4 million.

What Happened?

As PeckShieldAlert notes, the attackers were able to drain approximately $2,373,569 worth of assets in a wallet belonging to the Bunni exchange. As the snapshot of the wallet available through the security firm shows, the stolen money was mostly in the form of stablecoins like USDC and USDT.

This hack is also a continuation of a disturbing pattern of rising DeFi hacks, and analysts have noted an explosion in liquidity and lending protocol attacks. Not only had the exploit incurred severe financial losses, but it had also eroded trust in the platform that Bunni was developing to offer an easy way to handle liquidity on Uniswap v4.

Bunni Exchange Lost $2.4M

Source: PeckShieldAlert X

Why This Hack Happened: Reasons and Loopholes?

According to cybersecurity experts, the exploit occurred because of both technical vulnerabilities and the ease of use in the current DeFi applications.

Smart contracts contain errors in their code or missed functions that hackers seek. These loopholes enable them to circumvent security checks and get access to funds once identified.

According to a 2025 study by Escape Tech, user-friendly interfaces may bring in more investors, but they also introduce 30% more interface-related hacks. Hackers take advantage of simplified layers of interaction in which users do not realize they are giving consent to malicious transactions.

PeckShield data indicate that almost three-quarters of DeFi exploits in 2024 would have been avoided had protocols been subject to regular and active code reviews.

These combined factors made the Exchange an attractive target for sophisticated attackers.

How This Hack Happened?

Although the technical specifics of the attack remain under research, early reports indicate that attackers exploited unauthorized smart contract manipulation to empty money. They could steal stablecoins out of user wallets and into theirs by taking advantage of weaknesses in the contract structure used by Bunni.

This approach is similar to past mega-breaches, including the $625 million Ronin Bridge hack in 2022, and demonstrates that this type of hacking is emerging as a trend in which hackers find system vulnerabilities to coordinate large-value thefts.

Actions Taken

Once the exploit was revealed, PeckShieldAlert was quick to alert the community and provide information about the stolen wallet. Bunni reportedly collaborates with blockchain security specialists in order to track stolen money and address the vulnerability.

Efforts may include:

Freeze the suspicious addresses associated with the hack.
Involving the police in tracking cross-chain funds.
Introducing security audits to reveal and rectify holes in the protocol.
The official compensation scheme has not been published by Bunni to the affected users, yet the discussions are being held in the community.

Conclusion

This incident highlights ongoing risks in Web3 protocols where users and investors face growing threats from hackers exploiting system vulnerabilities. In August 2025 itsef, 16 crypto hacks exploited around $163M which includes $BTC Hodler ($91.4M), btcturk ($54M), ODIN•FUN ($7M), BetterBank.io ($5M), and CrediX Finance ($4.5M). The Bunni exploit is another reminder of the high-risk environment in decentralized finance.

About the Author Sakshi Jain

English News Writer at coingabbar.com

Sakshi Jain is a crypto news writer focused on delivering fast, data-driven coverage of the digital asset market. Her articles consistently track daily market movements, token launches, airdrops, exchange listings, and institutional signals, helping readers stay ahead of short-term trends. She simplifies complex crypto developments—such as regulatory updates, Bitcoin allocation strategies, and emerging blockchain projects—into clear, actionable insights. Her work reflects a strong emphasis on timeliness, SEO-driven structuring, and trader-focused narratives, often highlighting price momentum, market sentiment, and risk factors. Sakshi primarily writes for active crypto participants seeking concise, reliable, and opportunity-oriented market updates.