Skip to main content
Sign in
Aperture LM1 decision on this page

Audit log

Every state-changing event for Aperture LM: moderation decisions on community submissions, plus corrections and updates from the news pipeline. URL-based decisions carry three independent witnesses — the original source, an Internet Archive snapshot taken at submission time, and a Solana memo signed by our publicly-disclosed publisher key.

  1. #1publishby system:backfill
    2026-05-26 19:42:47Z
    Score: ?? (no score change)
    anchoranchored
    chain
    mainnet-betaslot 422,349,734
    sig
    36fzsa1q1MCn…tZZdTWvZexplorer ↗
    hash
    FTzjepKoBAvT…5mfRNqsfsha256 → base58
    verifying row…full verify ↗
    canonical bytes (6416 B) ▸
    {"actor":"system:backfill","investigation_id":"012e009b-3cec-4ec2-9443-5a1873c079ce","kind":"publish","page_slug":"aperture-lm","published_at":"2026-05-26T19:42:47.797Z","sequence_num":1,"snapshot":{"content_type":"investigation","entity_name":"Aperture LM","sections":[{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://blocksec.com/blog/17m-closed-source-smart-contract-exploit-arbitrary-call-swapnet-aperture","type":"other","url":""},{"credibility":3,"name":"https://coinpedia.org/news/defi-hack-alert-aperture-finance-smart-contract-exploit-suffers-3-67m-loss/","type":"other","url":""},{"credibility":3,"name":"https://blog.solidityscan.com/aperture-finance-hack-analysis-22dca439ff33","type":"other","url":""},{"credibility":3,"name":"https://coinfomania.com/aperture-finance-reports-exploit-and-urges-users-to-revoke-access/","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://blog.amlbot.com/13-5m-lost-in-aperture-finance-swapnet-exploit-full-on-chain-breakdown/","type":"other","url":""},{"credibility":3,"name":"https://www.mexc.com/news/643634","type":"other","url":""},{"credibility":3,"name":"https://coinpedia.org/news/defi-hack-alert-aperture-finance-smart-contract-exploit-suffers-3-67m-loss/","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://docs.aperture.finance/docs/transparency/security-audit","type":"other","url":""},{"credibility":3,"name":"https://blog.solidityscan.com/aperture-finance-hack-analysis-22dca439ff33","type":"other","url":""},{"credibility":3,"name":"https://blocksec.com/blog/17m-closed-source-smart-contract-exploit-arbitrary-call-swapnet-aperture","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://x.com/ApertureFinance/status/2015938720453820752","type":"other","url":""},{"credibility":3,"name":"https://coinfomania.com/aperture-finance-reports-exploit-and-urges-users-to-revoke-access/","type":"other","url":""},{"credibility":3,"name":"https://cryptoadventure.com/aperture-finance-reports-v3-v4-contract-exploit-halts-front-end-functions/","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://coinmarketcap.com/currencies/aperture-finance/","type":"other","url":""},{"credibility":3,"name":"https://alphagrowth.io/aperture-lm","type":"other","url":""},{"credibility":3,"name":"https://medium.com/@aperturefinance/aperture-finance-aptr-fca15735d698","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://defillama.com/protocol/aperture-finance","type":"other","url":""},{"credibility":3,"name":"https://coinmarketcap.com/academy/article/what-is-aperture-finance","type":"other","url":""},{"credibility":3,"name":"https://alphagrowth.io/aperture-lm","type":"other","url":""},{"credibility":3,"name":"https://chainbroker.io/projects/aperture-finance/","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://zachxbt.mirror.xyz/","type":"other","url":""},{"credibility":3,"name":"https://blocksec.com/blog/17m-closed-source-smart-contract-exploit-arbitrary-call-swapnet-aperture","type":"other","url":""},{"credibility":3,"name":"https://coinpedia.org/news/defi-hack-alert-aperture-finance-smart-contract-exploit-suffers-3-67m-loss/","type":"other","url":""}]}],"sources_used":[],"summary":"Aperture LM (also marketed as Aperture Finance) is a multi-chain DeFi liquidity management protocol that launched in 2022 and raised $12 million at a reported $250 million valuation. On January 25, 2026, the protocol suffered a critical smart contract exploit due to insufficient input validation in its V3 and V4 helper modules, resulting in $3.67 million stolen from Aperture directly and contributing to a combined ~$17 million loss across a coordinated attack that also hit SwapNet. Stolen funds were laundered through Tornado Cash, no public compensation plan for affected users has been confirmed, and the protocol's closed-source contract architecture was identified as a compounding risk factor that hindered independent security review.","timeline":[{"date":"2022-01-01","event":"Aperture Finance founded; initial audit of Terra DNS module by Oak Security completed March 2022.","source":""},{"date":"2022-08-01","event":"Oak Security/Solidified audit of Avalanche PDN Strategies completed September 2022.","source":""},{"date":"2023-05-08","event":"First Narya.ai audit of UniV3 automation contracts completed.","source":""},{"date":"2023-07-03","event":"Second Narya.ai audit of UniV3 automation contracts completed.","source":""},{"date":"2023-09-29","event":"Veridise audit of UniV3 fork deployment completed — last documented audit on record.","source":""},{"date":"2024-05-31","event":"APTR token officially launched on Ethereum, Arbitrum, and Mantle Network.","source":""},{"date":"2024-06-10","event":"APTR token reaches all-time high of approximately $0.12497.","source":""},{"date":"2025-12-31","event":"APTR token ends 2025 down approximately 99.25% year-over-year, trading near $0.00005.","source":""},{"date":"2026-01-25","event":"Arbitrary-call vulnerability in Aperture Finance V3/V4 helper module exploited across Ethereum, Arbitrum, Base, and BNB Chain; $3.67 million stolen. Same attacker simultaneously exploits SwapNet for ~$13.4 million; combined losses reach ~$17 million. Exploit first flagged by PeckShield.","source":""},{"date":"2026-01-25","event":"Aperture Finance halts frontend functions, issues emergency advisory urging users to revoke approvals for contract 0xD83d960deBEC397fB149b51F8F37DD3B5CFA8913.","source":""},{"date":"2026-01-27","event":"Attacker deposits approximately 1,242.7 ETH (~$2.4 million) into Tornado Cash in structured batches. AMLBot publishes initial on-chain findings.","source":""},{"date":"2026-01-28","event":"BlockSec publishes detailed technical analysis of both the Aperture Finance and SwapNet exploits, attributing root cause to insufficient input validation in closed-source contracts.","source":""},{"date":"2026-02-03","event":"AMLBot publishes full on-chain forensic breakdown; secondary attacker linked to Li.Fi/Jumper Exchange exploiter network.","source":""}]},"v":1}
    Verify offline (run on your own machine)
    python -m src.verify_decision 7a8cdf64-b133-4f80-a136-21df1b710d48
How verification works. The “Row integrity” check above is computed in your browser — your machine recomputes the SHA-256 of the canonical bytes and compares against the stored hash. No avoid.net server can fake that check. The “full verify” link goes one level deeper: your browser fetches the on-chain transaction from a Solana RPC node and confirms the same hash is in the memo. If you don’t want to trust either avoid.net or the public RPC, run the CLI verifier on your own machine — python -m src.verify_decision <event_id>.