On July 2025, FPC was exploited in a business logic flaw, resulting in approximately $4.7M in losses. That makes the FPC exploit the 48th largest DeFi incident out of 690 documented in our archive.
Attack Mechanics: How the FPC Business Logic Flaw Played Out
Exploit Class Applied to FPC
The FPC incident on July 2, 2025 is classified as a Business Logic Flaw. A business-logic bug in the contract — such as an incorrect formula or missing state update — lets the attacker withdraw more than their share. In the full archive, FPC is 1 of 144 documented business logic flaw incidents.
FPC in Context
At $4.7M, the FPC exploit is a significant ($1M–$10M) event compared to the largest same-class incident in our archive — – EulerFinance (2023) at $200M.
Prior Business Logic Flaw Before FPC
The nearest business logic flaw incident before FPC was AAVEBoost, 20 days earlier on June 12, 2025 ($14.8K lost). The same exploit class surfaced again within the business logic flaw attack surface.
FPC Vulnerability Signature
The primary source categorises the FPC exploit specifically as “Logic Flaw”. This narrower label is entity-specific: it reflects how the FPC contract failed, rather than the broad business logic flaw pattern alone.
Impact & Recovery for FPC
FPC Loss Figure
The FPC exploit caused $4,700,000 in losses — a significant ($1M–$10M) incident and the 8th largest of 96 documented in 2025. This single incident represents 0.3% of all tracked losses that year.
Where FPC Sits Among Business Logic Flaw Attacks
Ranked by loss size, FPC is the 10th largest of 144 business logic flaw incidents documented. That puts the FPC loss below the class average of $6.08M.
Timeline Since the FPC Incident
The FPC exploit occurred 10 months ago (286 days). The contract, its fork-block, and the attack transaction remain on-chain and forensically reproducible.
Primary Reference for FPC
Public post-mortem / on-chain analysis for the FPC incident: view source.
FAQ
How much did FPC lose?
The FPC exploit in July 2025 resulted in $4,700,000 in losses — the 8th largest of 96 DeFi incidents that year.
When did the FPC hack happen?
The FPC exploit was recorded on July 2, 2025 — 286 days ago.
What type of exploit hit FPC?
The FPC incident is classified as a Business Logic Flaw. A business-logic bug in the contract — such as an incorrect formula or missing state update — lets the attacker withdraw more than their share.
How common is the Business Logic Flaw pattern seen at FPC?
Our archive contains 144 documented business logic flaw incidents. The FPC incident is one of them.
How does FPC compare to the largest Business Logic Flaw attack?
The largest business logic flaw incident in our archive is – EulerFinance (2023) at $200M. The FPC loss is $4.7M.
What are the research gaps identified in the current literature on blockchain in accounting?
Lack of comprehensive studies on blockchain’s regulatory aspects, risks in new technology adoption, and understanding of cryptocurrencies' tax and disclosure requirements.
What are the two types of security challenges specifically mentioned as being addressed by blockchain in e-commerce?
The challenges are data breaches/data theft and phishing attacks.