When a custodian loses control of a large pool of backing assets, protocols that depend on that pool can go from solvent to effectively collateral-free in hours — as happened after a custody lapse tied to Stream Finance. Stream Finance suffered a $93M loss tied to an external fund manager, and Elixir’s deUSD collapsed by more than 97% after the breach.
The practical chain began with a custody failure at Stream Finance that removed a sizable portion of the assets supporting Elixir’s deUSD; the on-chain result was a near-total collapse of the stablecoin’s market value. That collapse followed a broader pattern: hacked tokens tend to re-price sharply and seldom recover. An Immunefi security report finds a median 61% price drop for hacked tokens within six months, and reports that 83.9% of hacked tokens remained below their hack-day price. The same dataset tallies $4.67 billion lost across 191 hacks in 2024–2025.
Two mechanics turned the initial custody breach into a lending problem. First, concentrated backing: when a single custodian (or a single external manager) controls a large share of a stablecoin’s reserves, losing that control shrinks the pool of acceptable collateral immediately and unequivocally. Second, market repricing: the token used as backing re-trades well below prior levels, reducing collateral valuations across every protocol that accepted it. In Elixir’s case the >97% fall in deUSD value removed the economic foundation for loans and positions that referenced the token, producing cascading failures through connected lending stacks.
Collateral vulnerability shows up in a few concrete places:
Exchange-focused losses are non-trivial: the Immunefi dataset shows 20 exchange hacks alone accounted for $2.55 billion of the total, underlining how custody events at centralized venues can propagate into DeFi collateral sets. (See the Immunefi analysis linked above.)
Assetify judgment: the Stream Finance–deUSD episode revealed that custody concentration and overlapping collateral acceptances are the structural pressure points most likely to convert a hack into a lending-system crisis. The immediate cause was a custody failure and the ensuing token price collapse, not a failure of isolated liquidation logic. That distinction matters because it shifts defensive focus from tweaking liquidation parameters to limiting single points of collateral failure and reducing simultaneous exposures across protocols.
Design takeaway: lenders and stablecoin engineers should treat large custodial concentrations and commonly accepted collateral as system-level risk factors. When a single custody event can wipe the backing of a token used across lending pools, market repricing will transmit that single-event loss into broad solvency and liquidity stress.
