Skip to main content
Sign in
Earning.Farm1 decision on this page

Audit log

Every state-changing event for Earning.Farm: moderation decisions on community submissions, plus corrections and updates from the news pipeline. URL-based decisions carry three independent witnesses — the original source, an Internet Archive snapshot taken at submission time, and a Solana memo signed by our publicly-disclosed publisher key.

  1. #1publishby system:backfill
    2026-05-30 11:47:48Z
    Score: ?? (no score change)
    anchoranchored
    chain
    mainnet-betaslot 423,150,258
    sig
    5FEPbUKDrdzf…PpVUg1gdexplorer ↗
    hash
    3A6Rd25GmXUo…BpPqrHgCsha256 → base58
    verifying row…full verify ↗
    canonical bytes (4406 B) ▸
    {"actor":"system:backfill","investigation_id":"8e3f6bab-464d-431e-8463-8a93b7bc2edb","kind":"publish","page_slug":"earningfarm","published_at":"2026-05-30T11:47:48.518Z","sequence_num":1,"snapshot":{"content_type":"investigation","entity_name":"Earning.Farm","sections":[{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://medium.com/neptune-mutual/how-was-the-earning-farm-exploited-9802135793ab","type":"other","url":""},{"credibility":3,"name":"https://www.binance.com/en-NG/feed/post/938964","type":"other","url":""},{"credibility":3,"name":"https://crypto.news/287000-reportedly-stolen-in-hack-targeting-aaves-earning-farm/","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://u.today/earningfarm-yield-platform-under-attack-details","type":"other","url":""},{"credibility":3,"name":"https://www.investing.com/news/cryptocurrency-news/287000-reportedly-stolen-in-hack-targeting-aaves-earning-farm-3150404","type":"other","url":""},{"credibility":3,"name":"https://www.supremacy.team/","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://www.quillaudits.com/blog/hack-analysis/earning-farm-exploit","type":"other","url":""},{"credibility":3,"name":"https://medium.com/neptune-mutual/how-was-the-earning-farm-exploited-9802135793ab","type":"other","url":""},{"credibility":3,"name":"https://crypto.news/287000-reportedly-stolen-in-hack-targeting-aaves-earning-farm/","type":"other","url":""},{"credibility":3,"name":"https://u.today/breaking-earning-farm-on-aave-protocol-hit-immediate-action-needed","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://medium.com/neptune-mutual/how-was-the-earning-farm-exploited-9802135793ab","type":"other","url":""},{"credibility":3,"name":"https://www.quillaudits.com/blog/hack-analysis/earning-farm-exploit","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://medium.com/neptune-mutual/how-was-the-earning-farm-exploited-9802135793ab","type":"other","url":""},{"credibility":3,"name":"https://www.quillaudits.com/blog/hack-analysis/earning-farm-exploit","type":"other","url":""},{"credibility":3,"name":"https://www.binance.com/en-NG/feed/post/938964","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://crypto.news/287000-reportedly-stolen-in-hack-targeting-aaves-earning-farm/","type":"other","url":""},{"credibility":3,"name":"https://u.today/breaking-earning-farm-on-aave-protocol-hit-immediate-action-needed","type":"other","url":""},{"credibility":3,"name":"https://www.quillaudits.com/blog/hack-analysis/earning-farm-exploit","type":"other","url":""}]}],"sources_used":[],"summary":"Earning.Farm is an Ethereum-based DeFi yield aggregator that deployed leveraged yield strategies on top of Aave. The protocol suffered two distinct security incidents — a flash loan attack in October 2022 that drained approximately 750 ETH (~$950,000), followed by a reentrancy exploit in August 2023 that resulted in an additional ~$528,000 loss. The protocol has been flagged by ZachXBT and has shown no evidence of recovery, compensation to users, or resumed operations following either incident.","timeline":[{"date":"2022-10-14","event":"Earning.Farm's EFLeverVault contract is targeted by two successive flash loan attacks. A total of approximately 750 ETH (~$950,000) is drained: 480 ETH captured by an MEV bot front-running the attacker, and 268 ETH extracted by the attacker directly. Supremacy Inc. publicly discloses the incident.","source":""},{"date":"2023-08-09","event":"A reentrancy attacker exploits a logic flaw in EFVault's withdraw function across nine transactions, taking a flash loan of 80,000 ETH and draining 291.64 ETH (~$528,000 at the time). PeckShield alerts the community. Stolen funds are moved to two consolidation wallets.","source":""},{"date":"2023-08-10","event":"Attacker transfers stolen funds to consolidation addresses. Earning.Farm team sends on-chain message to the attacker offering a 10% bounty (~$52,800) in exchange for return of remaining funds and cessation of third-party investigations. No public response from attacker is recorded.","source":""}]},"v":1}
    Verify offline (run on your own machine)
    python -m src.verify_decision 29a83115-bccc-4cbe-9865-b7126993f854
How verification works. The “Row integrity” check above is computed in your browser — your machine recomputes the SHA-256 of the canonical bytes and compares against the stored hash. No avoid.net server can fake that check. The “full verify” link goes one level deeper: your browser fetches the on-chain transaction from a Solana RPC node and confirms the same hash is in the memo. If you don’t want to trust either avoid.net or the public RPC, run the CLI verifier on your own machine — python -m src.verify_decision <event_id>.