Latest News

Merlin Decentralized Exchange Hacked for Over $1.8 Million Despite Code Audit by Certik

The Merlin decentralized exchange (DEX) was apparently hacked for more than $1.82 million shortly after receiving a code audit from Certik, a well-known smart-contract auditor. This event has highlighted the weaknesses of the decentralized finance (DeFi) sector as well as the necessity for stronger security measures.

Certik is now examining the incident, and preliminary findings indicate that the hack was most likely triggered by a problem with private key management rather than a code exploit. The firm has informed the public that excellent practices are always highlighted to projects during audits, but that it cannot prevent private key concerns.

Despite the Merlin team’s security procedures, hackers were able to circumvent them and steal a large quantity of money. This serves as a reminder that in order to stay ahead of the shifting threat landscape, DeFi initiatives must remain watchful and regularly enhance their security protocols.

Merlin is a decentralized exchange that makes use of zkSync, a layer-2 scaling solution aimed at lowering gas fees and increasing transaction speeds on the Ethereum network. Because of its user-friendly UI and quick transaction times, the platform has garnered popularity among DeFi fans.

The Merlin team has not yet issued an official statement in response to the hack, but it has informed its users that their cash are secure and that it is trying to rectify the situation as soon as possible.

This event also emphasizes the need of code audits and the role that third-party auditors play in guaranteeing DeFi project security and reliability. While audits cannot guarantee that a project is totally secure, they can provide useful information about potential flaws that can be remedied before hackers exploit them.

As the DeFi industry expands, it is critical that projects emphasize security and collaborate closely with credible auditors to detect and mitigate any threats. This will not only protect users’ finances, but will also contribute to the development of trust and confidence in the DeFi ecosystem.

Finally, the recent attack of Merlin’s decentralized exchange serves as a reminder that the DeFi industry is still in its infancy and that much work need to be done in terms of security. While such instances are depressing, it is critical that the community works together to learn from them and build a more secure and resilient DeFi environment for the future.


Crypto products and NFTs are unregulated and can be highly risky. There may be no regulatory recourse for any loss from such transactions. Crypto is not a legal tender and is subject to market risks. Readers are advised to seek expert advice and read offer document(s) along with related important literature on the subject carefully before making any kind of investment whatsoever. Crypto market predictions are speculative and any investment made shall be at the sole cost and risk of the readers.