Post-exploit response score

Lista DAO's assessment for RD-F-081 — scored yellow on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

Curator score ~3.25/5 across four sub-dimensions: (1) Compensation completeness 4/5 — users made whole via Ankr $15M + Helio ~6.8M HAY buyback, HAY re-pegged. (2) Transparency 3/5 — first public Medium post 14 days after exploit (2022-12-16), deferred detailed root-cause analysis to a promised follow-up. (3) Root-cause analysis depth 2/5 — best technical analysis by Halborn (third party), not the protocol team. Team language limited to 'oracle price lag' without specifying design changes. (4) Operational recovery speed 4/5 — protocol paused same day; collateral replacement (aBNBc → ankrBNB) committed to immediately. Composite ~3.25 → yellow (green requires ≥4).

Sources #

URL
Report: Know about the Helio Protocol Hack — Neptune MutualNeptune Mutual hack reportretrieved 2026-05-12
URL
Explained: The Ankr and Helio Hacks — Halborn technical analysisHalborn third-party post-mortemretrieved 2026-05-12
URL
Helio Protocol's Impact in the aBNBc Exploit (Medium, 2022-12-16)Helio Medium — protocol response update 2022-12-16retrieved 2026-05-12

Methodology #

Curator-score (1–5) the most recent incident response on: compensation completeness, transparency of disclosure, root-cause analysis depth, and operational recovery speed.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol lista-dao factor RD-F-081 score yellow collected_at 2026-05-12 17:54:05