Lodestar V0
Summary
Lodestar V0 is the original deployment of Lodestar Finance, an algorithmic money market lending protocol on Arbitrum. On December 10, 2022, the protocol suffered a critical flash loan exploit in which an attacker manipulated the plvGLP price oracle to drain approximately $6.9 million in user funds. The protocol was subsequently relaunched as Lodestar V1 in July 2023; V0 remains abandoned with negligible TVL (~$95K) and the attacker was never publicly identified.
Connected Entities
1 entities · 10 linked investigationsTimeline(9 events)
2022-12-08
Attacker wallet funded with approximately 1,500 ETH in preparation for the exploit.
2022-12-10
Flash loan oracle manipulation exploit executed against Lodestar V0 on Arbitrum; approximately $6.5–6.9 million drained from the protocol.
2022-12-10
Lodestar Finance team publicly acknowledged the exploit and appealed to the attacker for a white-hat agreement via Twitter.
2022-12-10
PlutusDAO published official statement clarifying the vulnerability was in Lodestar's oracle implementation, not the plvGLP contract.
2022-12-11
CertiK published incident analysis identifying attacker wallet 0xb50f...5db13 and detailing the on-chain attack flow.
2022-12-12
Halborn published post-mortem analysis classifying the exploit as a preventable oracle vulnerability.
2023-04-08
Lodestar Finance relaunched on Arbitrum, attracting over $30 million in TVL.
2023-07-27
Lodestar V1 launched; team announced migration of incentives from V0 to V1.
2023-10-01
Lodestar team reported approximately one-third of hack losses repaid to affected depositors; 750,000 esLODE tokens allocated for further compensation.
Decision Log
- hash: 9r5bueA5tFfRpMPo2j2jeFWhhCXKzcNdaHEbXNaqYEjR
This investigation is cryptographically anchored to the Solana blockchain and source URLs are archived via the Internet Archive.
model: claude-sonnet-4-6
generated: 5/4/2026, 2:54:46 AM
last updated: 5/28/2026, 3:02:22 PM
avoid.net — verified advice for a post-truth world