Bonzo Lend Oracle Exploit on Hedera
Bonzo Lend reported that an attacker inflated SAUCE collateral through a flaw in Supra’s on-chain oracle verifier, then borrowed about $9 million from the Hedera-based lending pool.
On 2026-07-11, Bonzo Lend reported an oracle-manipulation exploit on Hedera that resulted in losses of about $9 million.<sup class="cite">[1]</sup> Public reporting attributed the mechanism to an attacker depositing 250 SAUCE, submitting a manipulated price update that allegedly inflated SAUCE’s value by roughly 12 orders of magnitude, and then borrowing 6.63 million USDC and 34.5 million wrapped HBAR from the lending pool.<sup class="cite">[2]</sup><sup class="cite">[3]</sup><sup class="cite">[4]</sup> Bonzo stated that the failure arose from a flaw in Supra’s on-chain oracle verifier, including acceptance of a manipulated price carrying a zeroed signature, and further stated that Supra acknowledged the issue and deployed a fix.<sup class="cite">[5]</sup><sup class="cite">[6]</sup> As of 2026-07-11, the broad loss estimate and reported exploit path were public, but recovery, attribution, and transaction-level chronology remained unresolved.
This record relied on the stage brief’s cited public reporting, principally Cointelegraph’s account of Bonzo Lend’s statements, together with the structured timeline, entity metadata, and archive analytics supplied in the dossier. Claims were treated as established only where the brief provided direct attribution or a quoted source. Assertions about causation were framed conditionally when they depended on Bonzo’s description of Supra’s verifier rather than independently published technical artifacts. No additional on-chain reconstruction, court filing review, audit report, or recovery analysis was available in the present record, so unresolved points were left explicit rather than inferred.
Bonzo Lend, a lending protocol on Hedera, reported on 2026-07-11 that it had lost about $9 million in an exploit centered on collateral valuation rather than an asserted failure of Hedera’s core network.[1] Public reporting attributed the event to manipulation of SAUCE pricing used within the protocol’s lending logic, with Bonzo stating that the relevant failure lay in Supra’s on-chain oracle verifier rather than in Bonzo’s own contracts.[2][5] In functional terms, the incident followed a familiar lending-market pattern: a low-value asset position was allegedly made to appear highly valuable, after which the attacker borrowed against the inflated collateral until pool assets were extracted.[2][3]
The earliest pivotal step described in the public record was the attacker’s deposit of 250 SAUCE, which Bonzo characterized as worth only a few dollars at the time of deposit.[3] That initial position, on its own, would not have supported meaningful borrowing. The reported exploit path therefore depended on a second step: submission of a price update that Bonzo said inflated SAUCE’s value by roughly 12 orders of magnitude.[3] If accepted by the lending system’s oracle path, such an update would have transformed a negligible collateral position into one that appeared overcollateralized on paper, allowing the protocol to extend credit far beyond the asset’s real market value.[2][3]
Bonzo’s account placed the critical control failure in Supra’s on-chain oracle verifier.[2][5] According to Bonzo, the manipulated SAUCE price was accepted even though it carried a zeroed signature, which Bonzo cited as evidence that the verifier failed to reject malformed or unauthorized pricing data.[5] On the present record, that point remained an attributed claim rather than an independently published technical proof, but it is the central explanation offered for how the inflated valuation entered protocol state.[5] The distinction matters analytically: the reported mechanism was not that SAUCE’s market price moved naturally, nor that Hedera consensus failed, but that a verification layer allegedly admitted invalid oracle input into a lending system that treated the resulting value as authoritative.[2][5]
Once the manipulated price update had been accepted, the attacker allegedly borrowed against the inflated collateral. The reported withdrawals were 6.63 million USDC and 34.5 million wrapped HBAR from the lending pool.[4] Cointelegraph’s summary, citing Bonzo, described the aggregate loss as about $9 million.[1] The sequence described publicly is therefore internally consistent at a high level: deposit a small amount of SAUCE, alter the collateral valuation through the oracle path, and then draw down liquid assets from the pool before the manipulated state could be halted or reversed.[2][3][4]
Bonzo further stated that the issue did not arise from Bonzo’s contracts or from Hedera’s core network, but from the external oracle verifier used to validate price data.[5] That attribution has significance beyond fault allocation. Lending protocols often externalize price discovery and verification to oracle providers, but the lending contract still bears the downstream consequence if invalid data is accepted as collateral truth. In this case, the public account suggests a dependency chain in which a single verifier decision determined whether a low-value deposit remained low value or became borrowable collateral at a fictitious scale.[2][3][5] Bonzo also said that Supra acknowledged the issue and deployed a fix, indicating that at least one remediation step occurred soon after disclosure.[6]
The available record did not provide a detailed minute-by-minute exploit chronology, transaction hash, or block-height reconstruction, so the exact operational tempo of the borrowing phase could not be established from the dossier alone. What can be stated is narrower: the public report identified the exploit on 2026-07-11, described the collateral deposit and manipulated price update as antecedent steps, and listed the borrowed assets that constituted the principal outflow from the pool.[1][3][4] No recovery figure was supplied in the brief, and no court filing, freeze order, or negotiated return was referenced in the source set. As a result, the event’s current status is best described as technically explained at a high level but financially unresolved in the public record as of 2026-07-11.
The documented consequences were material but narrowly bounded by the present evidence. Bonzo Lend reported a loss of about $9 million, with the extracted assets identified as 6.63 million USDC and 34.5 million wrapped HBAR.[1][4] Bonzo publicly attributed the cause to Supra’s verifier and stated that Supra acknowledged and fixed the issue, but the dossier did not identify an attacker, did not establish any recovery, and did not document user-level losses beyond the protocol and lending pool itself.[5][6] No litigation, enforcement action, or insolvency proceeding was described in the available materials, so legal and market consequences remained limited to the reported loss and the stated remediation claim as of the incident date.
Discussion
Within the archive, this incident ranked #42 of 67 by severity and #20 of 32 within the hack category, placing it in the middle tier rather than among the archive’s largest losses. The attack vector is comparatively rare in this dataset: oracle_manipulation had 1 prior event in the archive, with cumulative $0.11B affected and mean recovery 100.0%. That comparison is directionally useful but thin, because it rests on only 1 prior case and therefore does not establish a stable recovery baseline for this vector. The broader hack cohort provides more context. Across 12 other hack records, mean recovery was 91.6% and mean resolution was 465 days. This does not imply a similar outcome here; the present record contains no recovery figure. It does, however, place the Bonzo event in a class where financial resolution has often extended well beyond initial disclosure. The more salient comparative signal lies in the structural patterns. The pattern labeled single_point_of_control had been observed in 39 prior events, including 22 in the past 12 months. The pattern absence_of_withdrawal_monitoring had been observed in 18 prior events, including 13 in the past 12 months. Those counts suggest that the distinctive feature of this case was not merely oracle dependence, but concentration of trust in a single verification path combined with insufficient downstream controls to interrupt implausible borrowing once collateral values became abnormal. In archive context, 70 total events had been catalogued, with 39 in the 12 months preceding this incident, indicating that this event fit an active and recurring failure environment rather than an isolated anomaly.
Comparative analytics
All comparisons computed against the 70-event CryptoMortem archive at time of publication.
- Severity rank across full archive: #42 of 67 (38.8th percentile).
- Severity rank within same event type: #20 of 32.
- Attack vector "Oracle Manipulation": 1 prior events in archive, cumulative $114M, mean recovery 100.0%; 1 fully recovered, 0 with low or no recovery.
- Event type "Hack": 12 other records in archive, mean recovery 91.6%, mean resolution 465 days.
- Pattern "Single Point Of Control": observed in 39 prior events (22 in the past 12 months).
- Pattern "Absence Of Withdrawal Monitoring": observed in 18 prior events (13 in the past 12 months).
- Archive context: 70 events catalogued; 39 in the 12 months preceding this incident.
Limitations
The present record is narrow and leaves several material questions unresolved. As of 2026-07-11, the dossier did not establish whether any funds were recovered, whether any assets were frozen, or whether losses remained fully outstanding. It did not identify the attacker, and it did not provide a precise transaction hash, block height, or minute-level exploit timestamp, which limited independent reconstruction of the exploit path. The central causation claim—that Supra’s on-chain oracle verifier accepted a manipulated price with a zeroed signature—was attributed to Bonzo’s public statement rather than corroborated here by a published technical report or source-code diff. The dossier also did not state whether users beyond the protocol treasury or pool were directly affected.
Timeline
- Incident reported publicly
Cointelegraph published that Bonzo Lend had lost about $9 million in an oracle exploit on Hedera.
source → - Attacker deposits low-value collateral
Bonzo said the attacker deposited 250 SAUCE, described as worth only a few dollars.
source → - Manipulated price update accepted
Bonzo said a price update inflated SAUCE’s value by roughly 12 orders of magnitude and was accepted by Supra’s oracle verifier.
source → - Funds borrowed from pool
The wallet borrowed 6.63 million USDC and 34.5 million wrapped HBAR from the lending pool.
source → - Bonzo blames oracle verifier flaw
Bonzo said the incident was caused by a flaw in Supra’s on-chain oracle verifier, not Bonzo’s contracts or Hedera’s core network.
source →
Who was involved
- Hederanetworkbystander
- Supraprojectenabler
- Bonzo Lendprotocolvictim$9.0M
Structural failures identified
Sources
- Bonzo Lend loses $9M in oracle exploit on Hedera, Cointelegraph — Incident summary, loss estimate, collateral manipulation, borrowed amounts, and attribution to Supra’s oracle verifier