On March 2025, UNI was exploited in a business logic flaw, resulting in approximately $14K in losses. That makes the UNI exploit the 364th largest DeFi incident out of 690 documented in our archive.
Attack Mechanics: How the UNI Business Logic Flaw Played Out
Exploit Class Applied to UNI
The UNI incident on March 7, 2025 is classified as a Business Logic Flaw. A business-logic bug in the contract — such as an incorrect formula or missing state update — lets the attacker withdraw more than their share. In the full archive, UNI is 1 of 144 documented business logic flaw incidents.
UNI in Context
At $14K, the UNI exploit is a minor (<$1M) event compared to the largest same-class incident in our archive — – EulerFinance (2023) at $200M.
Prior Business Logic Flaw Before UNI
The nearest business logic flaw incident before UNI was HegicOptions, 12 days earlier on February 23, 2025 ($104M lost). The same exploit class surfaced again within the business logic flaw attack surface.
UNI Vulnerability Signature
The primary source categorises the UNI exploit specifically as “Logic Flaw”. This narrower label is entity-specific: it reflects how the UNI contract failed, rather than the broad business logic flaw pattern alone.
Impact & Recovery for UNI
UNI Loss Figure
The UNI exploit caused $14,000 in losses — a minor (<$1M) incident and the 67th largest of 96 documented in 2025.
Where UNI Sits Among Business Logic Flaw Attacks
Ranked by loss size, UNI is the 79th largest of 144 business logic flaw incidents documented. That puts the UNI loss below the class average of $6.08M.
Timeline Since the UNI Incident
The UNI exploit occurred 1.1 years ago (403 days). The contract, its fork-block, and the attack transaction remain on-chain and forensically reproducible.
Primary Reference for UNI
Public post-mortem / on-chain analysis for the UNI incident: view source.
FAQ
How much did UNI lose?
The UNI exploit in March 2025 resulted in $14,000 in losses — the 67th largest of 96 DeFi incidents that year.
When did the UNI hack happen?
The UNI exploit was recorded on March 7, 2025 — 403 days ago.
What type of exploit hit UNI?
The UNI incident is classified as a Business Logic Flaw. A business-logic bug in the contract — such as an incorrect formula or missing state update — lets the attacker withdraw more than their share.
How common is the Business Logic Flaw pattern seen at UNI?
Our archive contains 144 documented business logic flaw incidents. The UNI incident is one of them.
How does UNI compare to the largest Business Logic Flaw attack?
The largest business logic flaw incident in our archive is – EulerFinance (2023) at $200M. The UNI loss is $14K.
What significant advantage does blockchain offer for e-commerce transactions?
Blockchain provides a decentralized marketplace, enhancing the security and transparency of online transactions.
What challenge does the protocol aim to address in cross-chain transactions?
The need for a secure, privacy-preserving, and offline-tolerant multi-party transaction protocol.