Flash Loan (Governance Attack)

The attack hinges on the atomic nature of flash loans, which allow the borrowing of a massive amount of assets within a single transaction block, provided the loan is repaid by the block's end. The attacker uses these borrowed funds to:

• Acquire governance tokens (e.g., via a DEX swap).
• Cast a malicious vote or series of votes.
• Repay the flash loan, returning the governance tokens. The entire sequence is atomic—it either succeeds completely or fails and reverts, eliminating financial risk for the attacker.

This attack vector specifically exploits protocols with on-chain, token-weighted voting. The attacker's goal is to pass a proposal that benefits them, such as:

• Draining the treasury via a malicious proposal.
• Altering protocol parameters (e.g., fees, collateral factors) to enable other exploits.
• Minting tokens or granting special privileges to the attacker's address. The attack is viable because governance power is directly proportional to the number of tokens held at the snapshot time for a vote, regardless of how briefly they are held.

Several conditions must align for this attack to work:

• Low Governance Participation: The protocol's quorum (minimum votes needed) and the cost to acquire a voting majority must be low relative to the potential profit.
• Liquid Markets: Sufficient liquidity must exist to swap the flash-loaned capital for the governance token without excessive slippage.
• Immediate Execution: The malicious proposal's effects must be executable within the same block to realize profit before repaying the loan. This often requires pre-approved, arbitrary code execution via a timelock bypass or similar mechanism.

Protocols implement various strategies to mitigate this risk:

• Timelocks: A mandatory delay (e.g., 48-72 hours) between a proposal's passing and its execution, preventing instant exploitation.
• Quorum & Thresholds: Setting high quorum requirements and super-majority thresholds increases the capital cost of an attack.
• Vote Delegation: Encouraging passive token holders to delegate votes to trusted, active participants (delegates).
• Sybil Resistance: Implementing proof-of-personhood or proof-of-stake mechanics to make vote buying harder.
• Separation of Powers: Dividing governance into different houses (e.g., token holders, experts, stakers) to require consensus across groups.

Governance flash loan attacks are part of a broader class of governance attacks and economic exploits:

• Vote Buying & Bribery: Colluding with voters or using bribery markets (e.g., Hidden Hand) to influence outcomes.
• Governance Tokenomics: Assessing how token distribution, vesting, and liquidty affect attack surface.
• Flash Loan Arbitrage: The legitimate use of flash loans for risk-free profit, which shares the same atomic mechanism.
• Price Oracle Manipulation: A separate but often related exploit where an attacker manipulates an asset's price to borrow excessively or liquidate positions.

Analysis of historical attacks reveals recurring patterns and the defenses developed in response:

• Oracle Manipulation: Using flash loans to distort price feeds. Mitigated by using time-weighted average prices (TWAPs) and more robust oracle networks.
• Governance Token Accumulation: Borrowing voting power to pass malicious proposals. Mitigated by introducing governance time-locks, quorum requirements, and delegated voting.
• Logic Exploits: Finding flaws in smart contract math (like the Euler attack). Mitigated through extensive audits, formal verification, and bug bounty programs.

Maximal Extractable Value (MEV) bots often use flash loans as a core tool, creating a complex ecosystem:

• Arbitrage Bots: Use flash loans to capitalize on price differences across DEXs without capital, a legitimate use case.
• Liquidation Bots: Use flash loans to fund large liquidations of undercollateralized positions.
• Sandwich Attacks: Bots use flash loans to front-run and back-run user transactions, extracting value. While not always malicious, MEV activity demonstrates the dual-use nature of flash loan technology for both efficient market operations and predatory strategies.

The attack exploits the fungibility of governance tokens. An attacker borrows a massive quantity of a protocol's governance token via a flash loan, uses those tokens to cast a malicious vote (e.g., to drain the treasury or change critical parameters), and repays the loan—all within a single transaction block. The attack is feasible because governance voting power is often calculated as a simple snapshot of token holdings at voting time, without mechanisms to prevent borrowed capital from influencing decisions.

In a landmark case, an attacker borrowed 80,000 ETH via flash loans, converted it to MKR governance tokens, and used the voting power to pass a malicious executive vote. The proposal aimed to install a dysfunctional price oracle that would have allowed the attacker to steal collateral. The attack was ultimately thwarted by the Governance Security Module (GSM) delay, a 24-hour timelock that gave the community time to identify and neutralize the threat before execution.

The primary technical vulnerability enabling these attacks is instantaneous vote snapshotting. Many governance systems determine voting power based on a token balance snapshot taken at the moment a vote is cast. Since flash loans exist within one block, the borrowed tokens appear as legitimate holdings. Mitigations include:

• Vote Delegation with Lock-up: Requiring tokens to be locked (e.g., via veToken models) to gain voting power.
• Time-Weighted Voting: Basing power on the average token balance over a period, not an instant snapshot.
• Quorum & Proposal Thresholds: Setting high thresholds that make flash loan attacks economically unfeasible.

Protocols implement several layers of defense to mitigate flash loan governance attacks:

• Governance Delay (Timelock): A mandatory waiting period (e.g., 24-72 hours) between a vote passing and execution, allowing for emergency intervention.
• Whitelisted Oracles & Critical Parameter Guards: Protecting core functions (like oracle updates) from being changed via a single governance vote.
• Minimum Vote Duration: Ensuring votes last multiple blocks, far longer than a flash loan's lifespan, though this doesn't prevent the initial malicious proposal.
• Separation of Powers: Implementing a multi-sig or security council with veto power over certain high-risk governance actions.

These attacks highlight a game theory flaw: temporary capital can subvert long-term governance. The cost of the attack is only the flash loan fee (often ~0.09%), while the potential profit is the entire value of the manipulated protocol. Defenses must make the attack cost-prohibitive or impossible, not just difficult. This involves ensuring the capital required to pass a malicious vote exceeds the available liquidity for flash loans or designing governance where borrowed capital cannot acquire meaningful influence.

While distinct from governance attacks, flash loan oracle manipulation is a closely related exploit often used in conjunction. An attacker uses a flash loan to dramatically shift an asset's price on a DEX that serves as a price oracle for a lending protocol. This can create false liquidations or allow borrowing against inflated collateral. Governance attacks sometimes aim to disable oracle safeguards, demonstrating how these vectors can intersect to compromise a protocol's entire security model.

An uncollateralized loan that must be borrowed and repaid within a single blockchain transaction. This is the primary tool for governance attacks, allowing an attacker to amass immense, temporary capital to manipulate voting power without upfront capital.

• Mechanism: Borrow, execute logic, repay—all in one atomic block.
• Key Feature: Transaction reverts if repayment fails, making it risk-free for the lender.

A protocol's native token that confers voting rights on proposals. Its market liquidity and distribution model are primary attack surfaces.

• Attack Vector: Attackers borrow tokens to surpass the voting quorum or proposal threshold.
• Examples: COMP (Compound), MKR (MakerDAO), UNI (Uniswap).
• Vulnerability: High liquidity on decentralized exchanges (DEXs) facilitates large flash loan borrows.

A system where token holders can delegate their voting power to another address. This can be exploited if delegated votes are not actively managed.

• Passive Risk: Inactive delegates or "sleeping" votes can be targeted by attackers borrowing tokens to create a malicious delegate.
• Mitigation: Protocols encourage active delegation and implement timelocks on delegation changes during critical votes.

A mandatory delay between a governance proposal's passage and its execution. This is a critical defense mechanism against flash loan governance attacks.

• Purpose: Provides a "grace period" for the community to identify and react to malicious proposals passed with borrowed voting power.
• Effect: Since flash loans must be repaid in the same transaction, the attacker cannot maintain the borrowed voting power through the timelock delay, neutralizing the attack.

Minimum voting requirements a proposal must meet to pass. These parameters are key to attack feasibility.

• Proposal Threshold: Minimum token ownership required to submit a proposal.
• Quorum: Minimum number of total votes required for a proposal to be valid.
• Attack Calculus: Attackers use flash loans to meet these thresholds temporarily. Setting them as a percentage of circulating supply (not just votes cast) is a stronger defense.

A related attack vector where a flash loan is used to distort price feed data, which can then impact governance token valuations or collateralized voting systems.

• Mechanism: Borrow vast sums to create imbalanced trades on a DEX, skewing the price oracle that a protocol uses.
• Indirect Attack: Can be used to liquidate a large stakeholder's position, affecting vote distribution, or to manipulate token-collateralized votes.