Sybil surge of identical-pattern transactions

Morpho V1 (Morpho Blue + MetaMorpho)'s assessment for RD-F-097 — scored yellow on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

Morpho Blue isolated-market design is not vulnerable to traditional sybil-front-running. However, permissionless market creation creates exposure to fake-pool-seeding attacks (Rhea Finance analog — RD-F-181 class). May 2025 AMM LP oracle manipulation involves venue-level manipulation, not sybil.

Detail #

No documented sybil surge on Morpho Blue in 2025-2026. May 2025 cUSDO incident used AMM LP oracle spot manipulation rather than sybil wallet surge. Yellow because the permissionless-pool oracle vulnerability (RD-F-181) is architecturally related — fake pools can be seeded to manipulate spot oracles.

Sources #

Governance
https://forum.morpho.org/t/post-mortem-aerodrome-cusdo-usdc-amm-lp-oracle-manipulation-on-morpho-lending-market/1794retrieved 2026-04-27

Methodology #

Detect multiple new EOAs submitting identical transaction patterns within a short window (sybil setup pattern).

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol morpho-v1 factor RD-F-097 score yellow collected_at 2026-04-30 21:19:13