Moonwell, the decentralized lending protocol operating on Moonriver, is fighting an active attempt by an unknown attacker to seize administrative control of its smart contracts through a manipulated governance vote.
The proposal, if executed, would hand control of seven lending markets, holding around $1.08 million in user assets, to a wallet that is reportedly designed to drain them.
How did an $1,808 bet threaten a $1 million protocol?
On March 24, the attacker funded a deployer wallet and used it to purchase 40.17 million MFAM tokens, Moonwell’s native governance token, from the SolarBeam decentralized exchange on Moonriver for 1,600 MOVR, worth $1,808.
The attacker then deployed a contract containing purpose-built exploit logic and submitted Proposal #74, titled “MIP-R39: Protocol Recovery – Admin Migration.”
This proposal calls for the transfer of the administrative control of all seven lending markets, the Comptroller, and the Oracle to the attacker’s contract.
Blockful, a governance security platform for decentralized autonomous organizations (DAOs), wrote that the proposal is clearly an attack, adding that the attacker’s contract already contained the transactions needed to drain all markets upon execution.
At the snapshot block, the attacker’s 40.17 million MFAM exceeded the protocol’s 40 million quorum threshold. The implied return, if successful, would have been approximately 597 times the cost of the attack.
The funds exposed across Moonwell’s Moonriver markets total about $1.08 million. This attack is coming roughly a month after Moonwell suffered a loss of about $1.8 million in bad debt, which is attributed to a misconfigured oracle for its Coinbase-wrapped ETH (cbETH) market.
Can Moonwell stop the vote, and what happens next?
Community voting data as of 26 March shows 66.7% of cast votes opposing the proposal. The vote closes on 27 March at 10:28 UTC, leaving a narrow window for action.
Moonwell’s governance lead has asked whoever is behind the proposal to come forward and provide more clarity by sharing details on the intent of the proposal and a technical explanation of the changes. The lead also asked the proposer to engage with the community in the forum.
Until the required context is provided, Moonwell advises community members to exercise caution when reviewing or voting on this proposal, avoid supporting proposals that lack sufficient transparency, and wait for further clarification before taking action.
So far, the number of votes against the proposal indicates that Moonwell is gaining the upper hand.
Blockful outlined two viable defense strategies to mitigate the proposal from being passed. The first is mobilizing sufficient “Against” votes before the deadline. However, this move is also complicated due to the fact that voting power is snapshotted at the proposal’s start block, meaning MFAM purchased after the attack carries no weight on this vote.
Blockful noted that the proposer of the prior legitimate proposal holds at least 48.8 million voting power in staked MFAM, enough to defeat the proposal outright with a single transaction.
The second and, according to Blockful, safer option is the Break Glass Guardian, a 2-of-3 Gnosis Safe multisig that can bypass the protocol’s timelock entirely and transfer admin back to the legitimate governance address, rendering the attacker’s proposal a no-op even if it passes.
If the proposal passes without intervention, the attacker could queue execution as early as 27 March, with a 24-hour timelock expiring on 28 March, the earliest date all funds could be drained.
There have been a series of governance attacks in the past that left some DeFi platforms with major losses. A notable incident occurred in April 2022 with the Beanstalk stablecoin protocol, which lost $181 million to a flash loan-based governance attack that exploited the same fundamental vulnerability with temporary voting power with immediate execution.
In 2024, a faction of Compound Finance investors submitted an unsolicited proposal to redirect 5% of the COMP treasury to a multisig they controlled, prompting a community backlash.