DeFi protocol Summer.fi was exploited for approximately $6 million (about 8.2 billion KRW) from its Ethereum-based yield farming platform. Immediately after, all 'Lazy Summer' protocol vaults were temporarily suspended. It was revealed that the attacker manipulated Lazy Summer's automated USDC vault accounting logic using a large-scale Flash Loan attack reportedly sourced through Morpho. The value of SUMR, the protocol's governance token, plummeted by over 18%.