Oracle Manipulation Exploits

Oracle manipulation exploits occur when an attacker intentionally influences the price data provided by a decentralized oracle to a smart contract, such as a lending protocol or a decentralized exchange. These oracles serve as bridges that feed real-world asset prices into the blockchain.

If the oracle relies on a single source or a low-liquidity exchange, an attacker can execute large trades to artificially inflate or deflate the asset price. Once the price is skewed, the attacker interacts with the protocol to extract value, often by borrowing against overvalued collateral or liquidating positions unfairly.

This vulnerability arises because the smart contract blindly trusts the manipulated data as the true market price. Mitigations often involve using decentralized, multi-source price feeds like Chainlink or time-weighted average prices to smooth out volatility.

Understanding this exploit is critical for developers designing robust DeFi primitives.