Curve Finance, one of DeFi's oldest decentralized exchanges, reported a mixed week ending March 5, 2026. Trading volume rose 12.1% to $1.14 billion and total fees collected jumped 37.5% to $267,000. At the same time, an attacker exploited a misconfigured price oracle in the sDOLA lending market, triggering wrongful liquidations and wiping out approximately $240,000 across 27 borrower positions. Total value locked (TVL) across the protocol slipped 1.7% to $2.08 billion.

The sDOLA Attack

The attacker used a flash loan (a type of uncollateralized loan that must be borrowed and repaid within a single blockchain transaction) worth roughly $30 million to artificially inflate the reported price of sDOLA, a yield-bearing version of the DOLA stablecoin. The manipulation pushed the oracle price from $1.188 to $1.358 per DOLA, causing the protocol to treat borrowers as undercollateralized and liquidate their positions incorrectly.

Curve Finance acknowledged the incident on X, writing: "We are currently investigating the attack on sDOLA LlamaLend markets. Investigation shows that it is made possible by a combination of which price oracle is used for sDOLA (e.g. whether affected by donation attacks) vs how much sDOLA existed outside of collateral in this market."

Lenders in the market were not affected. Inverse Finance, the protocol that issues DOLA and sDOLA, was also not involved. Nour Haridy, the founder of Inverse Finance, stated plainly: "False. Inverse Finance was NOT affected. It's simply an incident in an external protocol that uses the DOLA token."

LlamaLend is Curve's lending platform built around its LLAMMA algorithm, which is designed to reduce bad debt through a soft liquidation mechanism that gradually unwinds collateral positions rather than executing sudden liquidations. This week's attack illustrates that the soft liquidation design alone does not protect against oracle-level manipulation.

Protocol Metrics and Yield Landscape

Despite the exploit, broader Curve activity held up. The protocol recorded 472,000 total swaps, up 10.5% on the week. Fees of $267,000 translated into a $110,000 weekly distribution for veCRV holders (users who lock CRV tokens in exchange for governance rights and fee revenue), a 41.4% increase week over week. For context, the protocol emitted $551,000 worth of CRV tokens during the same period, a ratio readers assessing token inflation and protocol sustainability may find relevant.

Curve's native stablecoin, crvUSD, traded at $1.0019 and held its dollar peg. Its minted supply fell 8.0% to $22.8 million, while the protocol's PegKeeper mechanism deployed $6.42 million in reserves to support stability. The staked version, scrvUSD, yielded 8.7% APY this week, up 3.8 percentage points from the prior week.

The top unboosted yield pools this week were the frxUSD/USDp pool on Avalanche at 43.1% APY, the USDp/frxUSD pool on Sonic at 40.0% APY, and the ynRWAx/ynUSDx pool on Ethereum at 34.1% APY. The first two figures are largely driven by liquidity incentive campaigns on newer chains and should not be taken as sustainable returns. Unlike scrvUSD, whose yield derives from protocol fee revenue sharing, these Avalanche and Sonic pool yields are funded by token emissions, a meaningful distinction for readers assessing return durability and risk. The third pool combines a tokenized private credit product backed by Australian Tier-1 mortgage properties with a stablecoin yield aggregator, representing a growing category of real-world asset products entering DeFi liquidity infrastructure.

Regional Relevance: Africa and South Asia

These numbers carry concrete meaning for users in emerging markets. In sub-Saharan Africa, stablecoins accounted for 43% of the more than $200 billion in on-chain value processed between mid-2024 and mid-2025, according to a 2026 Transak report. Nigeria alone accounts for 40% of all African stablecoin inflows, with South Africa, Kenya, Uganda, and Ethiopia also among the top markets. A YouGov survey across 15 countries found that 95% of Nigerian respondents said they would prefer to receive payments in stablecoins over the local naira.

For users in Nigeria, Pakistan, Kenya, or Bangladesh who already hold dollar stablecoins to protect against local currency depreciation, an 8.7% yield on scrvUSD represents a meaningful return compared to local savings rates, which typically range from 3% to 7% where accessible at all. The cost of moving money across borders compounds the case further: sub-Saharan Africa carries the world's highest average remittance fees at 7.9% for a $200 transfer, and stablecoin-based transfers can reduce that cost by up to 85%, according to Unlock-BC. Standard Chartered has projected that stablecoins could draw $1 trillion from bank deposits in emerging markets, including Pakistan and Egypt, within three years, a forecast cited by Serrari Group that underscores the scale of the shift underway. The practical barriers remain wallet literacy, gas fees, and uncertain regulatory environments, but the yield comparison is real.

The sDOLA exploit is also a live case study for the growing number of fintech developers in India, Nigeria, and Kenya who are building DeFi-adjacent lending and credit products. Oracle manipulation is one of the most recurring attack vectors in decentralized finance, and this incident illustrates what can go wrong when price feed design is not aligned with the market structure of the collateral being used.

What Comes Next

Curve has flagged LlamalendV2 as the structural fix for the oracle vulnerability class that enabled this week's attack, though the protocol's stated timeline is deliberately vague and no confirmed release date exists. Separately, the protocol is raising its fee-free flash loan cap for crvUSD tenfold, from 3 million to 30 million crvUSD, to improve capital efficiency for arbitrage and liquidation activity. Whether this governance-level change has already passed a formal vote or remains pending has not been confirmed.

Curve's development trajectory remains uncertain following the Curve DAO's December 2025 rejection of a 17.45 million CRV grant to Swiss Stake AG, the development entity behind the protocol. The vote failed 54.46% to 45.54%, with addresses linked to Yearn Finance and Convex Finance casting nearly 90% of opposing votes. The rejected grant specifically named LlamalendV2 as a deliverable, alongside an FX swap platform and Curve-Lite deployments, meaning the governance vote's failure directly bears on the upgrade's uncertain timeline. Curve founder Michael Egorov had written in the proposal that the development entity "remains largely dependent on community support to continue its work." Until that funding question is resolved, the roadmap for LlamalendV2 and other planned upgrades carries meaningful execution risk.