On December 14, news came that Aevo officially stated that due to a vulnerability in the smart contract update, the old Ribbon DOV vault was attacked on December 12, resulting in a loss of about 2.7 million dollars. The Aevo platform was not affected and will continue to operate normally. All Ribbon vaults have ceased operation and will be deactivated immediately, with the vaults losing about 32% of total assets due to the attack. Users are required to follow the standard withdrawal process to retrieve funds, which will require a contract upgrade that will be launched next week (further notice will be provided). The claims window will be open for six months until June 12, 2026, after which the DAO will liquidate all remaining assets and distribute them to users who have previously withdrawn, with compensation amounts up to 19% of the missing funds or the remaining available amount.