Raydium hacked for $1.34M; outdated AMM V3 exploited.
The decentralized exchange Raydium reported an attack on the liquidity pool of its outdated Legacy AMM V3 program. Hackers managed to withdraw assets worth $1.34 million.
Raydium is aware of an exploit involving unauthorized removal of liquidity from its legacy AMM V3 program which was previously phased out in 2021.
No current users of Raydium are affected by this exploit or would have been able to interact with these pools through the UI since…
— Infra | Raydium (@0xINFRA) June 10, 2026
According to the developers, the main users of the platform were not affected. After AMM V3 was decommissioned in 2021, access to the pools through the exchange interface was closed.
The attackers stole about 150,000 RAY, 5,600 SOL, and nearly 900,000 USDC. The exploit affected the Sollet USDT-RAY, Sollet ETH-RAY, RAY-SOL, USDC-RAY, and SRM-RAY pools.
Project representatives linked the vulnerability to insufficient validation of liquidity token issuance, which allowed bypassing the proportion checks. Raydium stated that the current pools are unaffected but are undergoing a separate security audit.
“The attacker was able to create new coins and use them as LP tokens, bypassing the intended proportion checks. All other programs on Raydium’s main network use a virtual offering mechanism for verification […], preventing this class of vulnerabilities,” the team clarified.
The team promised to compensate affected users for their losses from the treasury.
As reported by PeckShieldAlert analysts, the hacker has already started laundering the funds. They moved the stolen assets from the Solana network to Ethereum and then directed them to crypto mixers.
Earlier, on June 8, unknown individuals compromised wallets associated with the Humanity Protocol project. The damage was estimated at approximately $31 million.
Found a mistake in the text? Select it and press CTRL+ENTER
Leave a comment