Risks & Security

Flash Loan Attack

Attack using flash loans to manipulate protocols for profit

Definition

Flash loan attacks use uncollateralized loans to manipulate DeFi protocols, often involving price manipulation, arbitrage exploitation, or governance attacks within a single transaction.

Flash Loan Attack is a risk term used to understand Attack using flash loans to manipulate protocols for profit. In practice, it matters because it affects how users evaluate protocols, compare opportunities, and avoid hidden assumptions.

Example

An attacker uses flash loans to manipulate an oracle price, borrow against inflated collateral, then repay the flash loan while keeping the stolen funds.

1

How it works

In practice, the concept shows up like this: An attacker uses flash loans to manipulate an oracle price, borrow against inflated collateral, then repay the flash loan while keeping the stolen funds.

2

Why it matters

Flash Loan Attack matters because small misunderstandings in DeFi can turn into bad pricing, liquidation, governance, custody, or smart-contract risk. A good mental model helps you compare protocols without relying on marketing language.

3

What to check

Treat it as a risk term: identify the failure mode, who can be harmed, and what evidence would reduce that risk. The main checks are: Protocol drainage; Market manipulation; Cascading failures.

Risks to Consider

  • Protocol drainage
  • Market manipulation
  • Cascading failures

Common Questions

What does Flash Loan Attack mean in DeFi?

Flash Loan Attack means Attack using flash loans to manipulate protocols for profit. The useful question is not only the definition, but how the mechanism changes risk, return, liquidity, or governance for the user.

How is Flash Loan Attack used in practice?

A practical example: An attacker uses flash loans to manipulate an oracle price, borrow against inflated collateral, then repay the flash loan while keeping the stolen funds.

What should I check before relying on Flash Loan Attack?

Check protocol drainage, market manipulation, cascading failures. Also verify liquidity, oracle assumptions, admin controls, and whether the protocol has been tested during stressed markets.

Related Terms

Related Articles

Assessing risk in decentralized finance: a handbook for money markets

Assessing risk in decentralized finance: a handbook for money markets

Money markets are at the heart of DeFi. From a high-level perspective, yes, they simply enable the borrowing and lending of various assets. Yet those functions are like the two primitive verbs of DeFi at the base of pretty much all use cases. There are three major money markets right now in DeFi: Aave, Compound & Cream. Yet all the following services use them, one way or another: Yearn Finance, Curve Finance, Alpha Finance, Harvest Finance, DeFiSaver, Saffron, 88mph, Idle Finance, etc. To put it simply - money markets are one of the root-level of DeFi.

Behind the scene of the decentralization theater: a study of the inalterability of DeFi protocols

Behind the scene of the decentralization theater: a study of the inalterability of DeFi protocols

Decentralized finance has allowed the emergence of autonomous protocols whose functionalities are ensured by smart contracts that are sometimes immutable. It enables individuals from all over the world to use financial services that are at the same time sovereign, accessible, and more efficient and resilient than those available in traditional finance. It’s the lovely story that newcomers are told to lull them to sleep: the reality is much more nuanced.

DeFi Glossary