- StakeWise has retrieved $20.7M, or 73.5% of osETH and osGNO hit in the Balancer V2 exploit, via DAO emergency actions.
- The unrecovered 26.5% (~$7M) was converted to ETH too quickly to claw back; users will be repaid pro rata on recovered funds.
- Balancer, Gnosis and SEALs coordinated the response, while Balancer kept a 20% white-hat bounty open for remaining assets.
StakeWise has pulled off a rare recovery in the DeFi world, retrieving the majority of assets lost in the recent Balancer exploit that rocked the ecosystem.
The liquid staking platform confirmed on Nov. 4 that its DAO emergency multisig successfully recovered 5,041 osETH (worth about $19 million) and 13,495 osGNO (approximately $1.7 million) from the hacker.
The $20.7M Recovery: How StakeWise Got 73.5% Back
According to StakeWise, the recovered assets represent 73.5% of the 6,851 osETH drained during the attack, while the remaining 26.5%, worth around $7 million, was swiftly converted to ETH by the attacker and remains unrecoverable.
The recovered funds will be distributed to affected users on a pro-rata basis according to their pre-exploit balances.
The operation was made possible through coordinated efforts between the StakeWise DAO, Balancer, and Gnosis teams, as well as individual contributors from the SEALs security collective.
Related: CZ Warns of Rising Meme Coin Scams After BNB Chain’s X Account Breach
In a statement, StakeWise extended thanks to Balancer and Gnosis contributors for their rapid support in executing the recovery.
Inside the Balancer Exploit
The Balancer hack, one of the largest decentralized finance exploits of 2025, exploited a flaw in the manageUserBalance function of Balancer’s V2 Composable Stable Pools.
The vulnerability allowed unauthorized withdrawals by manipulating internal balances and converting Balancer Pool Tokens into underlying assets like Ethereum.
The attack spread rapidly across multiple Layer-2 networks, including Arbitrum, Base, Polygon, Optimism, Berachain, and Sonic, which share parts of Balancer’s codebase. Blockchain security firms PeckShield and Lookonchain later confirmed total losses exceeded $128 million, far higher than initial $70 million estimates.
In response, Balancer paused affected pools and entered recovery mode, while offering the attacker a 20% white-hat bounty (worth roughly $25.6 million) to return funds within 48 hours. The team also cautioned users about fraudulent posts impersonating Balancer during the crisis.
It is important to note that as per CertiK, total funds lost to hacks and exploits fell by 37% in Q3 2025, dropping from $803 million in Q2 to $509 million. Losses from code vulnerabilities fell sharply to $78 million.
Related: UXLINK Hack Sparks Audit, Migration, and DAXA Review – Can Fixes Restore Trust?
Disclaimer: The information presented in this article is for informational and educational purposes only. The article does not constitute financial advice or advice of any kind. Coin Edition is not responsible for any losses incurred as a result of the utilization of content, products, or services mentioned. Readers are advised to exercise caution before taking any action related to the company.
!function(e,n,c,t,o,r,d){!function e(n,c,t,o,r,m,d,s,a){s=c.getElementsByTagName(t)[0],(a=c.createElement(t)).async=!0,a.src=”https://”+r[m]+”/js/”+o+”.js?v=”+d,a.onerror=function(){a.remove(),(m+=1)>=r.length||e(n,c,t,o,r,m)},s.parentNode.insertBefore(a,s)}(window,document,”script”,”66bb109a16bc52caa886301a”,[“cdn.bmcdn6.com”], 0, new Date().getTime())}();