Markets
Share this article

Memecoin Launchpad Odin.fun Suffers $7M Liquidity Exploit

Attackers exploited Odin’s liquidity pool by depositing a worthless token like SATOSHI alongside BTC, setting an inflated price ratio in the thin market.

By Shaurya Malwa|Edited by Parikshit Mishra
Updated Aug 13, 2025, 10:48 a.m. Published Aug 13, 2025, 10:35 a.m.
Hacker sitting in a room

What to know:

  • Hackers exploited a vulnerability in Odin.fun's liquidity system, stealing 58.2 BTC, valued at approximately $7 million.
  • The attack involved manipulating token prices through artificial inflation and liquidity withdrawal, primarily linked to Chinese hacker groups.
  • Odin.fun is working with law enforcement and exchanges to recover the funds and plans to compensate affected users after a security audit.

Hackers drained 58.2 bitcoin BTC$89,431.85, worth about $7 million, from memecoin launchpad Odin.fun in a sophisticated liquidity manipulation exploit that is being linked to China-based hacking groups.

The attack targeted the Bitcoin-based memecoin launchpad’s automated liquidity market-making system, which co-founder Bob Bodily later described as having a critical vulnerability.

STORY CONTINUES BELOW
Don't miss another story.Subscribe to the Crypto Daybook Americas Newsletter today. See all newsletters
By signing up, you will receive emails about CoinDesk products and you agree to our terms of use and privacy policy.
Loading...

Blockchain data shows the platform’s bitcoin reserves plummeted from 291 BTC to 232.8 BTC in under two hours amid the attack.

“Today we discovered a major exploit in our liquidity AMM which was introduced in our latest update,” Bodily said in an X post following the attack. “Several malicious users, primarily linked to groups in China, took advantage of this vulnerability to steal a significant amount of BTC from the platform.”

Attackers exploited Odin’s liquidity pool by depositing a worthless token like SATOSHI alongside BTC, setting an inflated price ratio in the thin market. By manipulating the pool’s math — often through self-trading or over-weighted deposits — they made the token appear far more valuable in BTC terms.

They then withdrew liquidity, receiving large amounts of real BTC at the fake price, draining 58.2 BTC from the pool.

This pump-and-drain worked because automated market makers rely purely on internal supply ratios, not external price checks, making them vulnerable when pools are shallow or poorly secured.

Bodily said the incident involved multiple threat actors, many tied to Chinese groups, working in coordination to exploit the flaw. The breach was first flagged by a community member who noticed the unusual liquidity movements, prompting an immediate freeze on suspicious accounts.

While the platform’s remaining funds are “safe,” Bodily admitted Odin’s treasury isn’t large enough to fully absorb the losses, forcing the team to prepare what he called a “concrete plan” to compensate affected users.

“We have ideas… we’ll share details as soon as they are finalized,” he said on X, adding that the plan is being shaped alongside a full audit from a security firm in a process expected to take up to a week.

The Odin.fun team has contacted U.S. law enforcement and is coordinating with Binance and OKX, both of which have engaged Chinese authorities to track and potentially freeze the stolen funds.

Read more: Indian Crypto Exchange CoinDCX Suffers $44M Hack

HackBitcoin NewsMemecoin

More For You

Protocol Research: GoPlus Security

By CoinDesk Research
Nov 14, 2025
Commissioned byGoPlus
GP Basic Image

What to know:

  • As of October 2025, GoPlus has generated $4.7M in total revenue across its product lines. The GoPlus App is the primary revenue driver, contributing $2.5M (approx. 53%), followed by the SafeToken Protocol at $1.7M.
  • GoPlus Intelligence's Token Security API averaged 717 million monthly calls year-to-date in 2025 , with a peak of nearly 1 billion calls in February 2025. Total blockchain-level requests, including transaction simulations, averaged an additional 350 million per month.
  • Since its January 2025 launch , the $GPS token has registered over $5B in total spot volume and $10B in derivatives volume in 2025. Monthly spot volume peaked in March 2025 at over $1.1B , while derivatives volume peaked the same month at over $4B.
View Full Report

More For You

Trump’s Security Strategy: Impact on Bitcoin, Gold, Bond Yields

By Omkar Godbole, AI Boost|Edited by Oliver Knight
15 hours ago
Donald Trump (Jesse Hamilton/CoinDesk)

The White House's new National Security Strategy emphasizes increased global fiscal expansion and military spending.

What to know:

  • The White House's new National Security Strategy emphasizes increased global fiscal expansion and military spending.
  • NATO allies are urged to raise defense spending to 5% of GDP, significantly higher than the previous 2% mandate.
  • Heightened government borrowing could lead to higher bond yields and inflation, complicating interest rate cuts.
Read full story