Prior exploit count
Lista DAO's assessment for RD-F-077 — scored yellow on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.
Evidence summary #
One incident in combined Helio/Lista lineage: 2022-12-02 Ankr/Helio cascade. Ankr deployer-key compromise allowed malicious aBNBc infinite-mint; aBNBc price collapsed; Helio oracle lag allowed attacker to borrow ~$15M HAY against worthless aBNBc collateral. Recovery: Ankr deployed $15M to cover Helio bad debt + Helio team executed ~6.8M HAY buyback; HAY re-pegged; users made whole. Yellow per methodology (1 prior exploit with full recovery via cross-protocol agreement). Post-rebrand Lista DAO (Feb 2024 onward): zero direct exploits found. Hack DB cross-reference: confirmed in hacksdatabase/hacks/ankr-helio-rekt.md (BNB Chain, 2022-12-02, ~$15M HAY bad debt). Rekt DB under current slug: empty (sources.rekt.incidents=[]).
Sources #
- InternalAnkr & Helio Money Hack Report — BNB Chain 2022-12-02 ~$15Mhacksdatabase/hacks/ankr-helio-rekt.mdretrieved 2026-05-12
- Rekt DB — no incidents under lista-dao slug.research/protocols/lista-dao/00-data-cache.json sources.rekt.incidents=[]retrieved 2026-05-12
- Explained: The Ankr and Helio Hacks (November 2022)Halborn — Explained: The Ankr and Helio Hacks (November 2022)retrieved 2026-05-12
Methodology #
Count the number of distinct incidents in the hack database affecting this protocol.
See the full factor methodology and distribution across all protocols →