The DeFi protocol CrediX Finance, operating on the Sonic platform, was forced to suspend its activities following a massive hacking attack, during which attackers stole approximately $4.5 million. The incident occurred on August 4, 2025 — less than a month after the project’s launch.
This is reported by Finway
Details of the Hack and Fund Distribution
According to information from CertiK, a cybersecurity company, the stolen assets were transferred from the Sonic network to Ethereum. Experts confirmed that these funds were distributed among three different wallets, but the exact method used by the hackers has not yet been disclosed.
After detecting the attack, the CrediX team promptly shut down the platform’s website to prevent potential further losses and limit users’ ability to conduct new transactions. In an official statement, representatives of the protocol promised to return all lost funds to users within 24–48 hours.
“Credix seems to have had a security breach. We are investigating and will share details soon”.
Causes of the Incident and Impact on the DeFi Market
Analysts from SlowMist clarified that several days before the incident, the attacker gained access to the multi-signature and control over the platform’s bridge. They used these privileges to create additional collateral and obtain large loans, which allowed them to withdraw a significant amount of liquidity from the CrediX pool.
Despite the fact that the Sonic-based platform has only recently started operating, the CrediX brand itself has existed since 2021 and specializes in lending backed by real-world assets (RWA). Previously, the company secured a credit line of $60 million.
CertiK experts note that in 2025, attacks on multi-signature wallets have become a key threat to the DeFi ecosystem. In just the first six months of the current year, losses from such incidents exceeded $3.1 billion, indicating an increase in the vulnerability of digital financial infrastructure.
The recent hack of CrediX demonstrates the growing risks for investors and users of DeFi products, as well as the need for enhanced security measures in this sector.