On Jan 25, 2026, Aperture Finance lost about $3.67 million after an attacker abused weaknesses in the platform’s V3 and V4 contracts and existing ERC‑20/ERC‑721 approvals. The attacker used the contract’s own logic to trigger unauthorized transfers (no private keys were stolen), converted a large share to ETH and sent roughly 1,242 ETH to Tornado Cash in multiple transactions. Aperture issued an emergency notice listing affected contracts and urged users to revoke token and liquidity approvals immediately.

The breach drained ~$3.67M by abusing V3/V4 contract logic and existing token/LP approvals (fact). Funds were converted to ETH and ~1,242 ETH was sent to Tornado Cash (fact), and the protocol urged immediate revocation of approvals (fact). These facts justify a strongly negative sentiment for Aperture and a moderate-to-high short-term market impact for affected assets.