Verify a decision

{"actor":"system:backfill","investigation_id":"d91b85b1-e27d-487b-8210-6e5276e87204","kind":"publish","page_slug":"vesper-finance","published_at":"2026-05-28T17:44:13.475Z","sequence_num":1,"snapshot":{"content_type":"investigation","entity_name":"Vesper Finance","sections":[{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://cointelegraph.com/news/jeff-garzik-s-defi-protocol-vesper-finance-tops-1b-tvl-in-six-weeks","type":"other","url":""},{"credibility":3,"name":"https://defillama.com/protocol/vesper","type":"other","url":""},{"credibility":3,"name":"https://docs.vesper.finance/","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://cointelegraph.com/news/jeff-garzik-segwit2x-bitcoin-upgrade-comments-spark-trolling-campaign","type":"other","url":""},{"credibility":3,"name":"https://www.ccn.com/segwit2x-dev-jeff-garzik-expelled-from-bitcoin-core-repository/","type":"other","url":""},{"credibility":3,"name":"https://www.crunchbase.com/person/jeff-garzik","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://www.web3isgoinggreat.com/?id=2021-11-02-0","type":"other","url":""},{"credibility":3,"name":"https://medium.com/vesperfinance/on-the-vesper-lend-beta-rari-fuse-pool-23-exploit-9043ccd40ac9","type":"other","url":""},{"credibility":3,"name":"https://www.quadrigainitiative.com/hackfraudscam/vesperfinanceoracleattack.php","type":"other","url":""},{"credibility":3,"name":"https://fairyproof.substack.com/p/preliminary-analysis-of-attack-on-vesper-lend-beta-31844b6c274c","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://gov.vesper.finance/t/discussion-sonne-exploit-remediation/158","type":"other","url":""},{"credibility":3,"name":"https://x.com/VesperFi/status/1794100976355283022","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://medium.com/immunefi/vesper-rebase-vulnerability-postmortem-and-bug-bounty-55354a49d184","type":"other","url":""},{"credibility":3,"name":"https://immunefi.com/bug-bounty/vesper/","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://www.coingecko.com/en/coins/vesper-finance","type":"other","url":""},{"credibility":3,"name":"https://coinmarketcap.com/currencies/vesper/","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://docs.vesper.finance/reports/smart-contract-audits","type":"other","url":""},{"credibility":3,"name":"https://immunefi.com/bug-bounty/vesper/","type":"other","url":""},{"credibility":3,"name":"https://docs.vesper.finance/vesper-pools-and-strategies/risk-framework","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://defillama.com/protocol/vesper","type":"other","url":""},{"credibility":3,"name":"https://medium.com/vesperfinance/vesper-performance-report-november-2024-90c80c24f7a5","type":"other","url":""},{"credibility":3,"name":"https://www.coingecko.com/en/coins/vesper-finance","type":"other","url":""}]}],"sources_used":[],"summary":"Vesper Finance is an Ethereum-based DeFi yield aggregator co-founded by former Bitcoin Core developer Jeff Garzik that launched in early 2021 and briefly exceeded $1 billion in TVL. The protocol suffered a confirmed $3.37 million oracle manipulation exploit on Rari Fuse Pool #23 in November 2021, and was indirectly exposed to a May 2024 Sonne Finance exploit that required treasury remediation. Vesper remains operational as of 2025 with approximately $48–55 million TVL, though its native VSP token has lost over 99% of its all-time-high value.","timeline":[{"date":"2021-02-01","event":"Vesper Finance launches beta on Ethereum, co-founded by Jeff Garzik, Matthew Roszak, and Jordan Kruger.","source":""},{"date":"2021-03-01","event":"Vesper Finance surpasses $1 billion in TVL within approximately six weeks of launch.","source":""},{"date":"2021-11-02","event":"Oracle manipulation attack on Rari Fuse Pool #23 (Vesper Lend Beta) results in $3.37 million stolen. Attacker used Tornado Cash and Uniswap v3 TWAP manipulation. Attacker address: 0xa3f447feb0b2bddc50a44ccd6f412a5f98619264.","source":""},{"date":"2023-03-16","event":"Dedaub team discovers rebase vulnerability in Vesper's yield rebalance mechanism. Vulnerability is disclosed responsibly, patched before any exploitation, and a bug bounty is paid.","source":""},{"date":"2023-01-01","event":"Vesper joins Immunefi with a $200,000 maximum bug bounty program for smart contract vulnerabilities.","source":""},{"date":"2024-05-14","event":"Sonne Finance exploit (~$20 million total) indirectly affects three Vesper Optimism pools (OP, USDC, wstETH), restricting withdrawals.","source":""},{"date":"2024-05-21","event":"Vesper governance approves $156,833 treasury allocation to remediate Sonne-related pool debt; all Optimism pools restored to operation.","source":""},{"date":"2024-08-01","event":"Vesper DAO votes to restart VSP buyback mechanisms and transitions from vVSP to locked VSP tokenomics model.","source":""},{"date":"2025-11-01","event":"Vesper treasury reaches approximately $460,649; protocol reports TVL near $55 million, highest since 2022.","source":""}]},"v":1}