Prior exploit count

Hyperliquid's assessment for RD-F-077 — scored yellow on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

1 material exploit-class incident: JELLY perp manipulation (2025-03-26) caused ~$13.5M unrealized HLP vault loss; attackers extracted ~$2.76M net profit before positions were frozen. Bridge outage (Oct 2024) and API outage (Jul 2025) are operational failures, not exploits. Count = 1 exploit-class incident. Yellow (1 incident, not zero).

Sources #

URL
https://www.coindesk.com/markets/2025/03/26/hyperliquid-delists-jellyjelly-after-vault-squeezed-in-usd13m-tussleretrieved 2026-04-28
URL
https://hyperliquid-co.gitbook.io/wiki/introduction/roadmap/incident/2025-26-03retrieved 2026-04-28
URL
https://www.halborn.com/blog/post/explained-the-hyperliquid-hack-march-2025retrieved 2026-04-28

Methodology #

Count the number of distinct incidents in the hack database affecting this protocol.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol hyperliquid factor RD-F-077 score yellow collected_at 2026-04-28 13:58:49