The cryptocurrency market is still recovering from the brutal “flash crash” of October 11 that obliterated tens of billions of dollars in just a few hours. While traders argued it was just more of the extreme volatility we’ve seen time and time again, prominent blockchain journalist Colin Wu has made a compelling case that it was cause for concern much worse than just “market volatility”: a coordinated, purposeful attack on a weakness in the largest crypto exchange, Binance.
The Anatomy of the Attack
Wu’s study indicated that the attackers not only bet against the market, but specifically targeted Binance’s Unified Account margin aspect. The weakness was that Binance allowed traders to use certain volatile, yield-bearing assets as collateral for their loans and leveraged positions. The three assets at the heart of the exploit were the stablecoin Ethena (USDE), Wrapped Beacon ETH (wBETH), and a wrapped version of Solana (BnSOL). The attackers allegedly drove down the price of these specific assets on Binance’s internal market, effectively making traders’ collateral worthless.
A System Primed for Collapse
The essence of the issue was related to how Binance determined the value of this collateral. Instead of using stable, external price feeds known as oracles, the liquidation prices were directly tied to the exchange’s own spot order book. This created a closed loop that was conducive to manipulation. As the broader crypto market started to decline, the attackers reportedly bombarded Binance with sell orders for the USDE, wBETH, and BnSOL. This caused their prices, to de-peg massively on just Binance exchange. USDE fell to $0.65, wBETH fell to $0.20, and BnSOL plummeted to just $0.13. On other exchanges and on-chain, these assets were relatively stable, suggesting the chaos was confined to Binance liquidity. The sudden collapse of collateral led to a cascade of mass liquidations, even for those who had hedged their trades.
The Suspicious Timing: A Window of Opportunity
The attack theory is strong because of its timing. The exploit occurred in a tiny eight-day window. On October 6, 2022, Binance had announced publicly that it was working on an update to its system that would change to a new oracle-based pricing model that would be deployed on October 14. The announcement had essentially prepared the public for its system vulnerability while leaving the door open for almost a week. Observers think the attackers saw this opportunity, understood the weakness of the system, and constructed a meticulous plan to attack before the loophole ended.
The Billion-Dollar Aftermath
The financial ramifications were massive. In merely a day of trading, the three targeted assets accounted for nearly $4 billion in volume on Binance. The forced liquidations resulted in retail traders not just losing their entire accounts, but also the retail traders caused volume pressures on market makers, who were in turn also forced to liquidate their own positions to mitigate their losses, thus magnifying the crash across the entire market. Conservative estimates of the direct losses absorbed by Binance as a result of this were between $500 million and perhaps as high as $1 billion, making this one of the most costly exploits in the history of the exchange.
Echoes of LUNA and a Wake-Up Call for the Industry
The episode has eerie resonances with the notorious failure of Terra-LUNA, when a supposed “stable” asset collapsed to zero and triggered contagion throughout the market. This serves as a warning for the entire industry about the risks of treating non-fiat-backed or overly complicated derivative tokens as Class A collateral. Despite some commentators – like Fundstrat’s Tom Lee – labeling the broader market collapse as a “healthy shakeout,” it is clear from evidence of a particular exploitability at Binance that this is more systemic than “shock and awe.” The drop from October 11 may not just have been a market shakeout; it may have been a hard lesson learned about the importance of proper financial infrastructure that is resistant to manipulation.
