Ostium, a decentralized perpetual futures exchange built on Arbitrum, has suffered a major exploit that drained between $18 million and $23 million from its OLP vault. Security firms flagged suspicious outflows before Ostium confirmed the issue on its official X account. The hack is believed to stem from a compromised private key belonging to an oracle signer.
How the Attack Worked
Ostium allows users to trade perpetual futures on stocks, commodities, and forex, with roughly $63 million in total assets prior to the incident, according to DeFiLlama. The OLP vault serves as the settlement layer where users deposit USDC to open positions. Decurity, a blockchain security firm, detailed that the attacker fed self-signed favorable prices to open and immediately close trades at a profit, siphoning about 11.86 million USDC from the vault.
A Pattern of Oracle Exploits
This attack comes just four days after Bonzo Finance on Hedera lost $9 million due to an exposed price oracle. The oracle provider, Supra, had patched vulnerabilities on 11 other chains before that exploit occurred. Last week, Summer Finance was also hacked via a price manipulation attack, losing $6 million, and announced it would wind down operations. In the first half of 2026, DeFi has seen over $900 million lost across 87 incidents, with compromised private keys and bridge hacks accounting for more than 80% of the losses. Two major incidents—Drift Protocol and LayerZero/KelpDAO—made up the bulk, with Arbitrum's Security Council freezing over $70 million in stolen funds after the latter. Whether Ostium's loss will trigger a similar response remains unclear.