This is not hacking, but the oldest financial game—Big money + Thin liquidity = Stop hunting. This time it happens on-chain, clearly visible to everyone.
This incident once again exposed the mechanism issues of @HyperliquidX:
• Too many coins, the order book is too thin: Pre-listing Hyperps contracts have almost no depth, and large players can directly market buy/sell to blow up the whole scene.
• Self-referencing price: Hyperps contracts have a "self-referencing price"; 3x leverage seems safe, but the actual market impact leverage is infinitely amplified.
• No external anchor points, no circuit breakers, prices can deviate by 200% in just a few minutes.
Ultimately, it still comes down to the order book model; if the order depth is insufficient, it equates to a wild goose chase. The reason why people don’t use wild goose chases is that large players can almost monopolize the price and insert needles at will. The perp model of Oracle + AMM at least uses decentralized oracles for redundancy cross-validation of multiple price feeds, preventing complete decoupling from other markets.
In TradFi and CEX, this kind of stop hunting happens every day:
Large players test the order book → continuously eat orders → force retail investors to stop loss → harvest.
The difference is: in CEX, you can’t see the process, while in DeFi, you can see it all clearly; it’s just that the transparency on-chain makes everyone feel shocked.
Transparency ≠ Fairness; transparency merely live-streams the entire process of "hunting" to you. On-chain positions, depth, and stop-loss points are all public, making it easier for those with intent to precisely design their "attack routes."
But this also reminds me of what @cz_binance mentioned before about Privacy trading; the rules should be public, but traders should have the right to choose their own "visibility". Not disclosing trades may be a necessary option for the future. DeFi cannot rely solely on Transparency; it also needs to provide users with Privacy as a choice.
The price of $XPL is being manipulated on @HyperliquidX, resulting in a liquidation of $2 million.
At 5:35 AM this morning, the perpetrators deposited $5 million USDC into Hyperliquid, and then immediately started going long with positions ranging from about $5 to $500,000, pushing the price of $XPL up to $1.8, while the highest contract price on Binance only reached 0.6176.
The partners' positions on Hyperliquid were liquidated at a peak of $2 million. Ultimately, the perpetrators leveraged millions of $XPL to manipulate the entire XPL market, making a quick profit of $10 million.
Now the perpetrators have already started withdrawing funds. Previously, due to issues with unrealized gains and losses, the HLP treasury ended up losing. This time, due to manipulation issues, the losses are being borne by the customers' real money.
@HyperliquidX still has not taken any action, and the perpetrators' withdrawals have started to arrive. If it were Binance @binancezh, any trading pair with a position exceeding a certain market proportion would have restrictions on orders, along with other risk control measures.
The problems with Hyperliquid are undeniable, and now various competing DEXs are emerging. If @HyperliquidX cannot provide a satisfactory response to users this time, it may struggle to maintain its position as the leading DEX.
The perpetrators' address is still in operation:
914
0
The content on this page is provided by third parties. Unless otherwise stated, OKX is not the author of the cited article(s) and does not claim any copyright in the materials. The content is provided for informational purposes only and does not represent the views of OKX. It is not intended to be an endorsement of any kind and should not be considered investment advice or a solicitation to buy or sell digital assets. To the extent generative AI is utilized to provide summaries or other information, such AI generated content may be inaccurate or inconsistent. Please read the linked article for more details and information. OKX is not responsible for content hosted on third party sites. Digital asset holdings, including stablecoins and NFTs, involve a high degree of risk and can fluctuate greatly. You should carefully consider whether trading or holding digital assets is suitable for you in light of your financial condition.