Ostium, the Arbitrum‑based real‑world asset perpetual futures protocol, suffered a $18 million attack on its OLP Vault, resulting in the loss of USDC to an unknown adversary.
Attack Overview
Blockaid, a blockchain security firm, reported that the attacker exploited a registered PriceUpKeep forwarder and submitted forward‑dated authorized oracle reports. This manipulation generated artificial trading profits that forced the OLP Vault to disburse roughly $18 million in USDC. The security firm also confirmed that the malicious transaction and the associated wallet address have been pinpointed, while technical analysis of the breach continues.
Protocol Response
Ostium’s development team acknowledged the incident and immediately halted all trading activity on the platform. The suspension will remain in effect until the investigation clarifies the root cause and restores confidence among investors. The team assures that they are collaborating with security experts to secure the vault and protect the market’s integrity.
Funding and Investor Profile
To date, Ostium has attracted approximately $27.8 million in capital, drawing backing from General Catalyst, Jump Crypto, Coinbase Ventures, Wintermute, and GSR. These investors underscore the protocol’s ambition to bridge traditional financial markets with crypto‑based perpetual futures. Ostium continues to develop its blockchain infrastructure, aiming to deliver reliable RWA products for a growing base of crypto investors.
