On June 2023, Pawnfi was exploited in a business logic flaw, resulting in approximately $820K in losses. That makes the Pawnfi exploit the 98th largest DeFi incident out of 690 documented in our archive.
Attack Mechanics: How the Pawnfi Business Logic Flaw Played Out
Exploit Class Applied to Pawnfi
The Pawnfi incident on June 17, 2023 is classified as a Business Logic Flaw. A business-logic bug in the contract — such as an incorrect formula or missing state update — lets the attacker withdraw more than their share. In the full archive, Pawnfi is 1 of 144 documented business logic flaw incidents.
Pawnfi in Context
At $820K, the Pawnfi exploit is a minor (<$1M) event compared to the largest same-class incident in our archive — – EulerFinance (2023) at $200M.
Prior Business Logic Flaw Before Pawnfi
The nearest business logic flaw incident before Pawnfi was LFI Token, 25 days earlier on May 23, 2023 ($36K lost). The same exploit class surfaced again within the business logic flaw attack surface.
Impact & Recovery for Pawnfi
Pawnfi Loss Figure
The Pawnfi exploit caused $820,000 in losses — a minor (<$1M) incident and the 38th largest of 214 documented in 2023. This single incident represents 0.1% of all tracked losses that year.
Where Pawnfi Sits Among Business Logic Flaw Attacks
Ranked by loss size, Pawnfi is the 18th largest of 144 business logic flaw incidents documented. That puts the Pawnfi loss below the class average of $6.08M.
Timeline Since the Pawnfi Incident
The Pawnfi exploit occurred 2.8 years ago (1,032 days). The contract, its fork-block, and the attack transaction remain on-chain and forensically reproducible.
Primary Reference for Pawnfi
Public post-mortem / on-chain analysis for the Pawnfi incident: view source.
FAQ
How much did Pawnfi lose?
The Pawnfi exploit in June 2023 resulted in $820,000 in losses — the 38th largest of 214 DeFi incidents that year.
When did the Pawnfi hack happen?
The Pawnfi exploit was recorded on June 17, 2023 — 1,032 days ago.
What type of exploit hit Pawnfi?
The Pawnfi incident is classified as a Business Logic Flaw. A business-logic bug in the contract — such as an incorrect formula or missing state update — lets the attacker withdraw more than their share.
How common is the Business Logic Flaw pattern seen at Pawnfi?
Our archive contains 144 documented business logic flaw incidents. The Pawnfi incident is one of them.
How does Pawnfi compare to the largest Business Logic Flaw attack?
The largest business logic flaw incident in our archive is – EulerFinance (2023) at $200M. The Pawnfi loss is $820K.
How does the research address the issue of data privacy in cloud manufacturing?
By employing encryption and secure data management practices within the blockchain framework to protect sensitive operational data.
What does the document suggest about the ownership of cryptocurrencies?
Ownership is highly concentrated at the top, but many investors have only moderate incomes.