- The ORE Protocol team has identified a bug in its staking smart contract that allowed hackers to falsely claim approximately 25.5 percent. $SOL tokens in revenue.
- According to the official statement, the bug was present in the isolated smart contract and there was no large-scale exploitation.
- Users will have to migrate to the new staking smart contract to generate rewards.
On June 17, ORE Protocol revealed a bug in the staking program and responded quickly to resolve the issue. However, the security incident in a smart contract on the Solana blockchain has allowed hackers 25.5 $SOL protocol revenue mechanism tokens, which are worth approximately $2,215.
“All user deposits are safe,” the ORE team guarantees after a security incident
ORE, a proof-of-work-style mining protocol on the Solana, revealed details regarding the security incident via a post onan attack on the deployment program that leads to unfair revenue distribution.” However, the damage was small compared to recent cyber attacks on the DeFi platforms.
The team ensured that “All user deposits are safe. There is no risk of losing money.”
The ORE Protocol clarified that this security incident was related to the isolated smart contract bug in the staking program and that it did not affect the network or the main mining system. “The deployment program isolates user funds. Each stake account has an independent token account, meaning the attacker could not steal deposits from other users. The wagering program has sufficient reserves to cover all valid user deposits and revenue claims. The impact was only limited to unfair revenue distribution,” said the official message shared on X.
Users put their data on the protocol $SOL or ORE tokens in smart contracts linked to the protocol’s grid-based mining game. In this mining space, miners take place on a 5×5 grid to generate rewards. Apart from this, the protocol’s betting mechanism allows them to generate returns. However, like many other DeFi protocols, it comes with some risks if smart contracts are not fully monitored.
ORE protocol asks users to migrate to a new smart contract
According to the official statement, the bug was in the smart contract code for the staking program. Using this bug, hackers falsely claimed 25.5 $SOL tokens after they are blown up registered stake balance without actually depositing tokens. This is a very small amount compared to major hacks, and the ORE team managed to prevent further exploitation of the protocol with quick security measures.
The team stated that individual users’ staking contracts were not affected by the cyber attack and no large amounts of money were stolen from the user.
After the problem became known, the maintainers of the ORE protocol quickly froze everything proceeds transfers from the mining program to the strike program on June 15, 2026. During this time, the hacker has done just that has inflated the stake balance to around 6% of the total stake pool.
To prevent further exploitation of funds, the team has suggested that all users with existing interests in the old smart contracts should withdraw their funds and migrate to a new staking contract to earn rewards.
Apart from this, the ore-lst liquid staking program (stORE) is also frozen and depends on the ring program involved. The ORE team also created a new stORE token contract as part of the migration. It means that users with stORE tokens will also need to exchange them for new stORE coin as part of the process.
The message stated: “The funds kept in the ring program are secured only by user wallets. Protocol administrators do not have upgrade authority over the staking or stORE contracts and thus cannot migrate the stake on behalf of users. A one-click migration process is available on the Stake page of the official ORE app.”
This cyber attack is a classic smart contract bug, most likely related to issues such as poor account handling, revival attacks that reuse closed accounts, or validation gaps, which are common on Solana. In the past, ORE has also experienced network congestion due to high user demand; however, it has been fixed on V2 with better mechanics.
In recent months, the DeFi sector has suffered major cyber attacks, including the Kelp DAO attack, where users lost millions of dollars, impacting the overall DeFi ecosystem.