Verify a decision

{"actor":"system:backfill","investigation_id":"952dcf2f-110d-478b-ba7b-4a8af35d4767","kind":"publish","page_slug":"dforce-lending","published_at":"2026-05-25T17:56:58.202Z","sequence_num":1,"snapshot":{"content_type":"investigation","entity_name":"dForce Lending","sections":[{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://medium.com/dforcenet/a-summary-of-the-attack-on-lendf-me-on-april-19-2020-e2f1c5d96640","type":"other","url":""},{"credibility":3,"name":"https://quantstamp.com/blog/how-the-dforce-hacker-used-reentrancy-to-steal-25-million","type":"other","url":""},{"credibility":3,"name":"https://rekt.news/dforce-network-rekt","type":"other","url":""},{"credibility":3,"name":"https://decrypt.co/26033/dforce-lendfme-defi-hack-25m","type":"other","url":""},{"credibility":3,"name":"https://www.theblock.co/linked/62346/multicoin-capital-backed-defi-protocol-dforce-loses-25m-total-locked-value-in-an-exploit","type":"other","url":""},{"credibility":3,"name":"https://www.coindesk.com/business/2020/04/28/defi-project-dforce-refunds-all-affected-users-after-25m-hack","type":"other","url":""},{"credibility":3,"name":"https://cointelegraph.com/news/dforce-hacker-attempts-to-negotiate-after-allegedly-leaking-his-identity","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://www.halborn.com/blog/post/explained-the-dforce-hack-february-2023","type":"other","url":""},{"credibility":3,"name":"https://www.theblock.co/post/210518/dforce-protocol-drained-of-3-6-million-in-reentrancy-attack","type":"other","url":""},{"credibility":3,"name":"https://www.certik.com/resources/blog/1oDd0j4Kx9dfym2vRwvf5Y-curve-conundrum-the-dforce-attack-via-a-read-only-reentrancy-vector-exploit","type":"other","url":""},{"credibility":3,"name":"https://crypto.news/dforce-confirms-the-return-of-exploited-3-65m-to-their-vaults","type":"other","url":""},{"credibility":3,"name":"https://www.web3isgoinggreat.com/?id=dforce-network-exploited-for-3-65-million-funds-returned","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://cointelegraph.com/news/dforce-hacker-returns-stolen-money-as-criticism-of-the-project-continues","type":"other","url":""},{"credibility":3,"name":"https://decrypt.co/26033/dforce-lendfme-defi-hack-25m","type":"other","url":""},{"credibility":3,"name":"https://www.theblock.co/linked/62346/multicoin-capital-backed-defi-protocol-dforce-loses-25m-total-locked-value-in-an-exploit","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://consensys.net/diligence/audits/2021/03/dforce-lending-protocol-review/","type":"other","url":""},{"credibility":3,"name":"https://diligence.consensys.io/audits/2021/03/dforce-lending-protocol-review/","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://decrypt.co/26069/exclusive-an-interview-with-dforce-founder-mindao-yang","type":"other","url":""},{"credibility":3,"name":"https://multicoin.capital/2020/04/14/our-investment-in-dforce-the-defi-super-network/","type":"other","url":""},{"credibility":3,"name":"https://www.fxstreet.com/cryptocurrencies/news/chinese-decentralized-finance-platform-dforce-raises-15m-in-funding-led-by-multicoin-capital-202004160232","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://www.halborn.com/blog/post/explained-the-dforce-hack-february-2023","type":"other","url":""},{"credibility":3,"name":"https://www.certik.com/resources/blog/1oDd0j4Kx9dfym2vRwvf5Y-curve-conundrum-the-dforce-attack-via-a-read-only-reentrancy-vector-exploit","type":"other","url":""},{"credibility":3,"name":"https://quantstamp.com/blog/how-the-dforce-hacker-used-reentrancy-to-steal-25-million","type":"other","url":""},{"credibility":3,"name":"https://medium.com/pnetwork/is-a-new-token-standard-really-to-blame-for-the-imbtc-uniswap-and-dforce-attacks-31c62e2bc799","type":"other","url":""}]},{"content":"","heading":"","severity":"medium","sources":[{"credibility":3,"name":"https://dforce.network/","type":"other","url":""},{"credibility":3,"name":"https://defillama.com/stablecoin/dforce-usd","type":"other","url":""},{"credibility":3,"name":"https://coinmarketcap.com/currencies/dforce/","type":"other","url":""}]}],"sources_used":[],"summary":"dForce Lending (operating as Lendf.Me) is a Chinese-founded DeFi lending protocol that suffered a landmark ~$25 million ERC-777 reentrancy exploit in April 2020 — one of the largest DeFi hacks of that year — and a second reentrancy attack in February 2023 that drained $3.65 million. In both incidents, stolen funds were ultimately returned after the attackers were identified or negotiated with. The protocol has also faced persistent allegations of plagiarizing Compound Finance's open-source smart contract code without attribution, and a 2021 ConsenSys Diligence audit flagged centralised owner controls capable of draining user funds. ZachXBT has flagged dForce as a high-risk entity.","timeline":[{"date":"2018-01-01","event":"dForce founded by Mindao Yang in China as an integrated open finance protocol.","source":""},{"date":"2019-01-01","event":"dForce Foundation established; Lendf.Me lending market launched.","source":""},{"date":"2020-01-01","event":"The Block reports that dForce's Lendf.Me contracts contain unattributed references to Compound Finance code; attribution later added after press inquiry.","source":""},{"date":"2020-04-14","event":"Multicoin Capital announces $1.5M seed investment in dForce, with Huobi Capital and CMBI as co-investors.","source":""},{"date":"2020-04-19","event":"Lendf.Me exploited via ERC-777 reentrancy attack; approximately $25 million in assets drained. dForce pauses contracts and takes website offline.","source":""},{"date":"2020-04-20","event":"1inch exchange reports the attacker exposed their Chinese IP address and device fingerprint. Attacker begins symbolic PAX token peace transactions totaling ~$250,000 to dForce, 1inch, and ParaSwap.","source":""},{"date":"2020-04-22","event":"Compound's Robert Leshner and Kava Labs' Brian Kerr publicly allege dForce copied Compound's code without authorization or understanding.","source":""},{"date":"2020-04-25","event":"Attacker returns full ~$25 million to dForce. Huobi-issued assets worth ~$2.6M were the first to be returned.","source":""},{"date":"2020-05-04","event":"dForce confirms 100% of recovered funds redistributed to affected Lendf.Me users.","source":""},{"date":"2021-04-09","event":"ConsenSys Diligence publishes dForce Lending Protocol audit, flagging Owner role as single point of failure with unchecked power to drain user funds, and governance transition as untested.","source":""},{"date":"2023-02-09","event":"dForce Lending exploited via read-only reentrancy on Curve wstETH/ETH vault on Arbitrum and Optimism; $3.65 million drained.","source":""},{"date":"2023-02-13","event":"Attacker self-identifies as a whitehat, returns all $3.65 million to dForce multi-sig wallets in exchange for a bug bounty; dForce drops threatened law enforcement action.","source":""}]},"v":1}