Bluefin Spot offers competitive concentrated liquidity trading on Sui with strong VC backing, but the Cetus exploit revealed systemic vulnerabilities in Sui DEX architecture that directly apply to Bluefin. Users should monitor Sui ecosystem security developments closely and avoid over-concentrating positions.
Top Risks
1
Bluefin Spot shares architectural patterns with Cetus Protocol, which suffered a $223M exploit in May 2025 due to a math library vulnerability — Bluefin suspended operations during that incident to assess exposure.
2
Security audits revealed high-risk vulnerabilities including share manipulation flaws (ERC4626-style) in deposit/withdrawal functions, indicating the Move codebase requires ongoing scrutiny.
3
As a concentrated liquidity DEX on Sui, Bluefin faces the same impermanent loss risks as Uniswap V3 but in a newer ecosystem with less mature tooling for LP risk management.
Risk Breakdown
Frequently Asked Questions
Is Bluefin Spot safe to use?
Bluefin Spot receives a C+ risk grade (41/100) from Hindenrank, where lower scores indicate lower risk. Bluefin Spot offers competitive concentrated liquidity trading on Sui with strong VC backing, but the Cetus exploit revealed systemic vulnerabilities in Sui DEX architecture that directly apply to Bluefin. Users should monitor Sui ecosystem security developments closely and avoid over-concentrating positions. Bluefin Spot is a concentrated liquidity DEX on the Sui blockchain, handling over 30% of all decentralized spot trading volume on Sui. Users can swap tokens with fees as low as 0.01% for stablecoin pairs, provide concentrated liquidity to earn trading fees, and use their LP positions as collateral on partner lending protocols. Backed by Polychain Capital, SIG, and Brevan Howard, Bluefin has processed over $37 billion in total trading volume since September 2023. The protocol has undergone security audits by Trail of Bits and MoveBit, though the broader Sui DEX ecosystem was shaken by the $223M Cetus exploit in May 2025.
What are the main risks of using Bluefin Spot?
The key risks identified for Bluefin Spot are: (1) Bluefin shares architectural patterns with Cetus, which lost $223M in May 2025 — the same type of math library vulnerability could affect Bluefin. (2) Security audits found high-risk vulnerabilities including share manipulation flaws, indicating the codebase requires ongoing vigilance. (3) Using LP positions as collateral across Sui lending protocols creates complex cross-protocol risks that are not well understood.
What is Bluefin Spot's risk score breakdown?
Bluefin Spot scores 41/100 across eight risk dimensions: Mechanism Novelty: 3/15, Interaction Severity: 10/20, Oracle Surface: 2/10, Documentation Gaps: 3/10, Track Record: 10/15, Scale Exposure: 3/10, Regulatory Risk: 3/10, Vitality Risk: 7/10. The highest risk area is Vitality Risk at 7/10.
How does Bluefin Spot compare to other DEX protocols?
Among 111 rated DEX protocols on Hindenrank, Bluefin Spot ranks #85 by safety (lowest risk score = safest). Its 41/100 risk score and C+ grade place it among the riskier DEX protocols.
Has Bluefin Spot ever been hacked or exploited?
Bluefin Spot scores 10/15 on the Track Record risk dimension, indicating some history of security incidents or exploits. Higher scores reflect more severe or frequent incidents. Review the full risk report for details.