PancakeSwap Suffers $1.1M DeFi Breach via OLPC/LABUBU Pool

The decentralized exchange PancakeSwap has suffered a security breach that resulted in losses estimated at $1.1 million. The attack targeted the OLPC/LABUBU liquidity pool, a popular automated market maker (AMM) built on the BNB Chain.

According to PeckShield's analysis, the attacker swiftly bridged the stolen funds to Ethereum and then deposited 633.4 ETH into Tornado Cash, a privacy mixer that complicates fund tracing.

The incident adds to the growing list of exploits targeting decentralized finance protocols in 2025. While PancakeSwap has not confirmed the root cause, the attack highlights persistent vulnerabilities in liquidity pools, particularly those involving less established token pairs.