Ripple and Immunefi Launch $200,000 “Attackathon” to Strengthen DeFi Security on XRPL
Ripple is teaming up with cybersecurity platform Immunefi to improve the security of its decentralized finance (DeFi) system for institutions. Together, they’ve announced a $200,000 “Attackathon”, a competition designed to find and fix security flaws in the XRPL Lending Protocol.
The event runs from October 27 to November 29, with an education phase that starts on October 13. During this time, security researchers will study the C++ code of several XRPL standards, including:
- XLS-66 (Lending Protocol)
- XLS-65 (Single Asset Vault)
- XLS-33 (Multi-Purpose Tokens)
- XLS-80 (Permissioned Domains)
To help newcomers, Ripple and Immunefi will open Attackathon Academy during the education period, offering free access to learning materials about XRPL. Researchers who discover valid security bugs can earn part of the $200,000 reward, while another $30,000 prize pool is reserved for valuable insights.
This program is part of Ripple’s Institutional DeFi Roadmap, announced on September 22, 2025, which focuses on expanding XRPL’s features for lending, tokenization, and privacy using zero-knowledge proofs (ZKP). Ripple aims to make XRPL a top blockchain for real-world assets, handling over $1 billion in monthly stablecoin transactions with strong compliance tools like Credentials and Deep Freeze.
According to Immunefi, the XRPL Lending Protocol is built to support real-world credit markets and institutional use, not speculative trading.
Overall, the Attackathon represents an important step in Ripple’s plan to combine security, compliance, and privacy—key elements for the future of institutional blockchain finance.
