The decentralized finance sector faced another challenging weekend after a series of security incidents, network disruptions, and emergency warnings highlighted the risks that continue to plague the industry. Across four separate exploits, attackers managed to steal approximately $7 million in crypto assets, while the Sui blockchain suffered three outages within 48 hours and Gnosis Pay users were warned about a potential vulnerability affecting their accounts.
The incidents add to an already troubling year for DeFi security, with dozens of major exploits recorded since January and tens of millions of dollars lost during May alone.
Fluid Criticized for Delayed Disclosure of Exploit
Lending protocol Fluid became the focus of community criticism after revealing a compromise of its rewards distribution infrastructure several days after the incident occurred.
The exploit took place on May 27 and resulted in the loss of approximately 125,000 FLUID tokens and 52,000 GHO stablecoins, worth roughly $250,000 at the time of the attack. However, the breach was not publicly disclosed until May 31, after blockchain observers highlighted suspicious activity and questioned the protocol’s silence.
The delayed announcement sparked concerns among users, particularly because Fluid continued promoting attractive USDC deposit yields shortly after a major lender withdrew around $77 million from the platform.
The incident has reignited discussions about transparency standards within decentralized finance and whether protocols should be required to disclose security breaches more quickly.
Cross-Chain Bridges Remain Prime Targets
Bridge infrastructure once again proved vulnerable as both the Alephium Bridge and Gravity Bridge suffered significant security incidents.
The Alephium Bridge lost approximately $815,000 after attackers exploited a weakness within the system. Security firm Blockaid initially suggested compromised guardian keys may have been responsible, although that assessment was later revised after further investigation and communication with the Alephium team.
The larger incident affected the Gravity Bridge, where blockchain investigator SpecterAnalyst identified the theft of approximately $5.4 million worth of assets, including USDC, WETH, USDT, and PAXG. Shortly after the exploit was detected, validators were instructed to halt operations while developers investigated the breach.
Bridge hacks remain one of the most persistent threats in crypto. According to industry tracking data, at least ten bridge-related exploits have occurred so far in 2026, underscoring the complexity and risks associated with cross-chain infrastructure.
Artificial Financial Intelligence Vault Loses Nearly Half a Million Dollars
Yield vault platform Artificial Financial Intelligence (AFI) also reported a security incident involving its afiUSD Vault.
Although the project’s initial announcement did not specify financial losses, on-chain activity revealed withdrawals totaling roughly $500,000 across various DeFi assets. The team later confirmed that approximately $480,000 had been drained through what it described as a sophisticated exploit.
AFI stated that a complete post-mortem report will be published in the coming days to explain the attack vector and detail the measures being implemented to improve security.
The exploit significantly impacted the vault’s holdings and raised fresh concerns about the security of yield-generation platforms operating across multiple DeFi ecosystems.
Sui Network Suffers Three Outages in 48 Hours
Security breaches were not the only issue affecting the crypto industry over the weekend. The Sui Network experienced three separate disruptions within a two-day period, marking another setback for one of the industry’s fastest-growing blockchain ecosystems.
The first outage lasted nearly six hours on Thursday. Two additional disruptions followed on Friday, lasting approximately eight and a half hours and 45 minutes respectively.
According to a statement from the Sui Foundation, the initial outages were linked to a recent software update. Engineers subsequently implemented an emergency fix to restore network functionality, but that temporary solution introduced another issue that ultimately triggered the third outage.
The repeated interruptions have raised questions about network reliability and the challenges of maintaining stability while rapidly deploying updates and performance improvements.
Gnosis Pay Issues Urgent Security Warning
The weekend concluded with an unexpected warning from Gnosis co-founder Martin Koeppelmann regarding a potential vulnerability affecting Gnosis Pay users.
Koeppelmann initially advised users to withdraw their funds immediately before later deleting the message and clarifying that many customers would not be able to do so. He later explained that the threat appears to be connected to the Zodiac Delay Module, which could potentially allow attackers to initiate unauthorized transactions from affected Safe accounts.
Despite the seriousness of the warning, Gnosis reassured users that the situation is being actively managed and that any affected customers would be fully reimbursed if losses occur.
May’s DeFi Losses Surpass $60 Million
The latest incidents contribute to a broader trend that has defined the DeFi sector throughout recent months. More than $60 million was reportedly lost to DeFi-related exploits during May 2026.
While the figure is significantly lower than April’s massive losses, which included approximately $280 million linked to Drift Protocol and another $290 million associated with the Kelp DAO and LayerZero ecosystem, the number of major incidents remains alarmingly high.
Industry trackers recorded around 30 significant exploits and security events during May, compared to 33 during April, suggesting that attackers remain highly active despite increased security investments across the sector.
Major Weekend DeFi Incidents
| Incident | Estimated Loss | Type |
|---|---|---|
| Fluid | $250,000 | Rewards Infrastructure Exploit |
| Alephium Bridge | $815,000 | Bridge Exploit |
| Gravity Bridge | $5.4 Million | Bridge Exploit |
| AFI afiUSD Vault | $480,000 | Vault Exploit |
Security Continues to Challenge DeFi Growth
The events of the weekend demonstrate that security remains one of the greatest obstacles facing decentralized finance. From protocol exploits and bridge attacks to network outages and wallet-related vulnerabilities, the industry’s rapid innovation continues to create opportunities for attackers.
As institutional adoption accelerates and billions of dollars remain locked across DeFi applications, protocol teams will face growing pressure to improve security standards, enhance transparency, and respond more quickly when incidents occur.
For investors, the latest events serve as a reminder that while DeFi continues to unlock new financial opportunities, risk management remains just as important as yield generation.
FAQ
How much was lost during the weekend’s DeFi incidents?
Approximately $7 million was lost across four separate exploits involving Fluid, Alephium Bridge, Gravity Bridge, and the AFI afiUSD Vault.
Which incident caused the largest loss?
The Gravity Bridge exploit was the largest, resulting in the theft of approximately $5.4 million in digital assets.
Why did the Sui Network experience multiple outages?
The Sui Foundation stated that the disruptions were linked to a recent software update and an emergency fix that introduced an additional issue.
What is the Gnosis Pay security concern?
The warning relates to the Zodiac Delay Module, which could potentially allow unauthorized transaction initiation from affected Safe accounts.
How much did DeFi lose to exploits during May 2026?
Industry estimates suggest that more than $60 million was lost to DeFi-related exploits during May, continuing a trend of frequent security incidents across the sector.
