TechFlow reports that on July 17, CertiK released an analysis stating that Solana ecosystem protocol DeFiTuna was attacked on July 16, with losses of approximately 569,601 USDC. The attacker first constructed a TUNA/USDC pool with extremely low liquidity and routed borrowed USDC through the Jupiter router into the pool to complete the swap. Since only a very small amount of TUNA was ultimately obtained, rounding down occurred in the protocol's calculation of position asset value, causing the total assets to be recorded as 0, thereby incorrectly passing health and solvency checks.
The attacker subsequently withdrew funds through limit liquidity positions they controlled to realize profits. The core reason for this incident lies in a logic flaw in DeFiTuna's solvency check: in extreme cases, asset value becomes zero after calculation and rounding, yet the system still regards the position as healthy. According to the report, the relevant funds were subsequently transferred to multiple intermediary addresses and further dispersed.




