Lending Platform Credix loses $ 4.5 million in exploit

A newcomer in the Defi credit room was targeted and a weakness was exploited, which resulted in the loss of millions.

This is another addition to the already substantial amount of crypto losses for the current year.

Another day, another loss

The company for security and data analysis company Pikshield stated Earlier today on X that the Money Market Aggregator Credix suffered an attack, which resulted in about $ 4.5 million in losses.

The company noted that an Admin portion account ended in “EC662E” with different roles, including Pool_Admin, Bridge, Asset_Listing_admin, Emergency_Admin and Risk_admin, was used in the schedule. These all have different functions that control and manage the funds of the protocol.

The Brugol is the one who led to the draining of funds, including ACUSDC -Tokens, which are a packed version of the USDC Stablecoin. The outflows were carried out by various protocols and bridges, including Debridge Finance, Fly (formerly Magpie), Shadow Exchange and others.

According to their history of reports, Credix went live at the beginning of last month and offered a variety of revenue strategies, credit options, rewards for participation and liquidity. They have recognized the infringement and promised To fully return user funds within 24 to 48 hours.

Sore

We recently entered the second half of 2025, and it would be the light to say that it was a “bumpy” ride. The year so far has lost more than $ 3 billion in hacks and exploits of vulnerabilities, which is $ 1 billion more than for the entire 2024 combined.

Hacking, the report of the blockchain security audit firm, that Cryptopotato Covered, sketches a clear picture:

“In these First Six Months of 2025, Access-Control Exploits Have Dominated, Accounting for about 59% of Total Losses (Roughly $ 1.83 Billion) drained from Both Centralized and Decentralized Platforms. Smart Contracts Vulnerabilitions The First Half, Including the $ 223 Million Cetus Exploit that Marked Defi’s Worst Quarter Since Early 2023 With 300m Drained Across All The Hacks. “

With the rise of Defi -acceptance and the rise of technologies such as AI, it becomes the utmost importance for institutions and companies to protect their assets and customers. Some attacks are linked to politically intended organizations such as the Lazarus group, while others can be attributed to insider information, cyber security vulnerabilities or human errors.

Regardless of where the malignant intention arose, it does not slide, so the necessary diligence will go a long way when reducing or eradicating losses caused by bad actors.