The Bunni DEX shutdown follows a $8.4 million hack in September 2025, where attackers exploited liquidity pools on Unichain and Ethereum. Lacking funds for costly audits and relaunch efforts, founders announced permanent closure to prioritize user fund distribution and ecosystem contributions.
-
Bunni DEX experienced an $8.4 million exploit targeting its Liquidity Density Function in two pools.
-
The shutdown stems from high recovery costs, including six to seven figures for security audits and monitoring.
-
Over $2 billion in crypto assets stolen in 2025 hacks, per Elliptic data, with Bunni distributing remaining treasury to token holders.
Bunni DEX shutdown after $8.4M hack: Explore causes, impacts, and recovery steps in DeFi. Get insights on crypto security—stay informed on vital updates.
What Caused the Bunni DEX Shutdown?
The Bunni DEX shutdown was triggered by a devastating $8.4 million hack in September 2025 that exploited vulnerabilities in its Liquidity Density Function across two pools: weETH/ETH on Unichain and USDC/USDT on Ethereum. The attack involved flash loans, multiple tiny withdrawals, and a sandwich attack, draining funds that were then bridged to Ethereum. Founders cited insurmountable costs for a secure relaunch, estimated at six to seven figures for audits and monitoring alone, leading to the permanent closure announced on October 23, 2025.
How Did the Bunni Hack Exploit Work?
The Bunni hack unfolded in three precise steps, as detailed in the project’s post-mortem report. Attackers first used flash loans to borrow 3 million USDT without collateral, then executed numerous small swaps from USDT to USDC, manipulating the pool’s spot price tick to an artificial 1 USDC = 1.68 USDT ratio. This was followed by a sandwich attack to amplify profits, exploiting the platform’s custom liquidity logic. Kadan Stadelmann, Chief Technology Officer at Komodo Platform, emphasized to COINOTAG that such custom mechanisms demand exhaustive testing due to flash loan vulnerabilities, which allow low-risk exploits within single transactions. Dmitry Machikhin, CEO of BitOK, noted the AML implications, stating flash loans facilitate large-scale liquidity access repayable instantly, often leading to layered proceeds across chains for obfuscation. The incident underscores ongoing DeFi security challenges, contributing to 2025’s record $2 billion in stolen assets, according to blockchain analytics firm Elliptic.
Frequently Asked Questions
What Are the Next Steps After the Bunni DEX Shutdown?
Following the Bunni DEX shutdown, users can withdraw funds via the website during the ongoing legal process. The team plans to distribute remaining treasury assets to BUNNI, LIT, and veBUNNI holders based on a snapshot, excluding team members. Bunni is collaborating with law enforcement for asset recovery and relicensed its v2 smart contracts to MIT, allowing open use of innovations like Liquidity Density Functions.
Why Is the Bunni Hack Significant for DeFi Security?
The Bunni hack highlights critical DeFi risks from custom liquidity tools and flash loans, enabling attackers to manipulate prices without upfront capital. As Dmitry Machikhin from BitOK explained, these mechanics complicate tracing illicit funds across blockchains. It adds to 2025’s crypto security crisis, where North Korea-linked groups stole the majority of over $2 billion, per Elliptic, urging stricter audits in decentralized exchanges.
Key Takeaways
- Exploit Mechanics: The attack combined flash loans, tiny withdrawals, and sandwich tactics to drain $8.4 million from Bunni’s pools, exposing custom logic flaws.
- Financial Barriers: Relaunch costs of six to seven figures in audits halted recovery, demonstrating the high stakes of post-hack security in DeFi.
- Ecosystem Impact: Bunni’s open-sourcing of technologies like surge fees benefits broader DeFi, while treasury distribution supports affected holders—monitor legal updates for claims.
Conclusion
The Bunni DEX shutdown marks a sobering chapter in 2025’s crypto security landscape, driven by a sophisticated $8.4 million hack that exploited liquidity vulnerabilities on Unichain and Ethereum. By prioritizing user payouts and relicensing innovations for community use, Bunni contributes to DeFi’s resilience despite the blow. As hacks surpass $2 billion this year according to Elliptic, projects must invest in rigorous testing to safeguard the ecosystem—stay vigilant and explore secure DeFi alternatives for your assets.
The Bunni team expressed regret in their announcement: “Hello everyone, it is with saddened hearts that we announce the shutdown of Bunni. The recent exploit has forced Bunni’s growth to a halt, and in order to securely relaunch we’d need to pay 6-7 figures in audit & monitoring expenses alone – requiring capital that we simply don’t…”
Bunni is working with authorities to pursue recovery, including an on-chain offer to the attacker for 10% of funds in exchange for the rest, which remains unanswered. This case reinforces expert calls, like those from Komodo Platform’s Kadan Stadelmann, for comprehensive vetting of novel DeFi features to prevent similar breaches.
In the broader context, the incident aligns with Elliptic’s report of escalating threats, including state-sponsored attacks. DeFi participants should evaluate platforms based on audit history and liquidity safeguards to mitigate risks in this evolving space.
