1inch Redeploys Resolver Smart Contract After Vulnerability Detected

A vulnerability in a resolver smart contract prompted 1inch to redeploy it as a precautionary measure to enhance security. The issue was identified at approximately 6 pm UTC on March 5, 2025, involving resolver contracts that used an outdated implementation of Fusion (v1). This version, being open source, contained deprecated logic that was exploited, although it is no longer live or supported by 1inch.

Importantly, no end users were affected, and their funds remained secure throughout the incident. The vulnerability allowed unintended transaction executions in specific resolvers using the outdated Fusion v1 in their smart contracts. Despite the complexity of the issue, the direct impact was contained, underscoring the necessity for proactive security measures within the ecosystem.

Security Enhancements and Proactive Measures

To reinforce security, 1inch has redeployed the relevant contract, even though such redeployment represents an additional security measure beyond standard practice. The incident highlights the importance of migrating to newer, more secure protocol versions, particularly in open-source environments like DeFi.

Fusion v2, which is currently in use, introduced security enhancements designed to mitigate such vulnerabilities. 1inch advises all integration partners, including resolvers, to upgrade to the latest version to benefit from these security protections. Resolvers that continued using Fusion v1 without additional security checks increased their exposure to potential attacks.

Shared Responsibility in DeFi Security

Security in DeFi requires continuous adaptation and refinement. 1inch continuously evaluates and strengthens its security measures, providing best practices for resolvers and integrators. The team actively monitors security trends, collaborates with auditors, and implements upgrades to prevent similar incidents.

Resolvers play a crucial role in DeFi execution and must adopt security best practices to enhance their robustness. While 1inch provides open-source tools and protocol documentation, resolvers are responsible for conducting independent security assessments and ensuring the deployment of the latest, most secure protocol versions.

This incident serves as a reminder of the importance of proactive risk management in smart contract security. For more technical details regarding the incident, refer to the post-mortem analysis by 1inch partner Decurity.

Why This Matters: Impact, Industry Trends & Expert Insights

A vulnerability in 1inch’s resolver smart contract necessitated a redeployment to bolster security. This incident underscores the critical need for vigilance in smart contract security.

Recent industry reports indicate significant concerns and advancements in DeFi security. February 2025 saw major DeFi hacks, highlighting the importance of addressing off-chain security gaps and social engineering vulnerabilities. This aligns with the proactive measures taken by 1inch to enhance security and prevent similar incidents.

Recent expert insights emphasize the critical nature of vulnerabilities such as access control flaws, which have caused substantial financial losses. This supports the significance of 1inch’s actions in redeploying their smart contract to mitigate such risks.

Disclaimer: The views expressed in this article are those of the authors and do not necessarily reflect the official policy of CoinsHolder. Content, including that generated with the help of AI, is for informational purposes only and is not intended as legal, financial, or professional advice. Readers should do their research before taking any actions related to the company and carry full responsibility for their decisions.