DeFi lender Purrlend drained of $1.5 million in dual-network attack

Purrlend, a decentralized lending and borrowing protocol built on HyperEVM, has fallen victim to a suspected exploit affecting two networks: MegaETH and HyperEVM. The attack resulted in estimated losses of $1.5 million, with approximately $1.2 million drained from HyperEVM and $325,000 from MegaETH.

The stolen assets include significant amounts of USDC, USDT0, and USDH, as well as various ecosystem tokens like wstHYPE, kHYPE, and UETH. Following the detection of irregular activity, Purrlend has officially paused its operations to allow the team to conduct a full investigation.

This incident occurs amidst a significant surge in DeFi exploits, with April 2026 seeing massive losses driven by major attacks on protocols such as KelpDAO and Drift Protocol.

(Source：Crypto Briefing)