Exploit Targets Legacy Pool: Raydium on Solana Loses $1.35M in Digital Assets

Legacy Pool Exploit Drains Millions

The Solana DeFi landscape faced a security incident as an older, seemingly inactive liquidity pool within the Raydium protocol was targeted by an exploit. Blockchain investigator Specter raised the alarm on June 10th, highlighting a sophisticated attack that bypassed the pool's defenses.

Estimates place the total loss at around $1.34 million. The stolen digital assets comprised a mix of:

• USDC stablecoin
• RAY, the protocol's native token
• Wrapped Solana (wSOL)

Cross-Chain Movement Obscures Trail

Following the successful exploit, the attacker initiated a swift fund-moving operation. The illicit gains were bridged from the Solana blockchain over to the Ethereum network. Once on Ethereum, the funds were directed through a privacy-focused protocol, a common technique used to obscure transaction histories and complicate recovery efforts.

This breach underscores the persistent vulnerabilities associated with legacy smart contracts and liquidity pools in DeFi, even on otherwise robust platforms. It serves as a critical reminder for protocols to continuously audit and secure all deployed contract versions, not just the active ones.