On December 2023, GoodDollar was exploited in a reentrancy, resulting in approximately $2M in losses. That makes the GoodDollar exploit the 60th largest DeFi incident out of 690 documented in our archive.
Attack Mechanics: How the GoodDollar Reentrancy Played Out
Exploit Class Applied to GoodDollar
The GoodDollar incident on December 16, 2023 is classified as a Reentrancy. A malicious contract re-enters a vulnerable function before state is updated, letting it drain funds multiple times. In the full archive, GoodDollar is 1 of 51 documented reentrancy incidents.
GoodDollar in Context
At $2M, the GoodDollar exploit is a significant ($1M–$10M) event compared to the largest same-class incident in our archive — Curve (2023) at $41M.
Prior Reentrancy Before GoodDollar
The nearest reentrancy incident before GoodDollar was StarsArena, 70 days earlier on October 7, 2023 ($3M lost). The same exploit class surfaced again within the reentrancy attack surface.
GoodDollar Vulnerability Signature
The primary source categorises the GoodDollar exploit specifically as “Lack of Input Validation & Reentrancy”. This narrower label is entity-specific: it reflects how the GoodDollar contract failed, rather than the broad reentrancy pattern alone.
Impact & Recovery for GoodDollar
GoodDollar Loss Figure
The GoodDollar exploit caused $2,000,000 in losses — a significant ($1M–$10M) incident and the 22nd largest of 214 documented in 2023. This single incident represents 0.3% of all tracked losses that year.
Where GoodDollar Sits Among Reentrancy Attacks
Ranked by loss size, GoodDollar is the 9th largest of 51 reentrancy incidents documented. That puts the GoodDollar loss below the class average of $2.87M.
Timeline Since the GoodDollar Incident
The GoodDollar exploit occurred 2.3 years ago (850 days). The contract, its fork-block, and the attack transaction remain on-chain and forensically reproducible.
Primary Reference for GoodDollar
Public post-mortem / on-chain analysis for the GoodDollar incident: view source.
FAQ
How much did GoodDollar lose?
The GoodDollar exploit in December 2023 resulted in $2,000,000 in losses — the 22nd largest of 214 DeFi incidents that year.
When did the GoodDollar hack happen?
The GoodDollar exploit was recorded on December 16, 2023 — 850 days ago.
What type of exploit hit GoodDollar?
The GoodDollar incident is classified as a Reentrancy. A malicious contract re-enters a vulnerable function before state is updated, letting it drain funds multiple times.
How common is the Reentrancy pattern seen at GoodDollar?
Our archive contains 51 documented reentrancy incidents. The GoodDollar incident is one of them.
How does GoodDollar compare to the largest Reentrancy attack?
The largest reentrancy incident in our archive is Curve (2023) at $41M. The GoodDollar loss is $2M.
What is the impact of using public blockchain networks for data storage as mentioned in the study?
It examines financial implications and the need for cost-effective storage solutions.
What statistical technique is used to assess the fit of different distributions to cryptocurrency returns?
Statistical techniques like the Kolmogorov-Smirnov test, along with the Akaike Information Criterion (AIC), are used for assessing fit.