Counterparty risk describes exposure to loss whenever a transaction depends on a second party actually delivering on its promise, rather than settling automatically at the moment of the trade. In traditional finance this risk is managed through regulation, deposit insurance, and legal recourse; in crypto markets those backstops are often thin or absent, which is why the concept gets so much attention.
The clearest example is a centralized exchange or lending platform holding customer assets in custody. Users effectively become unsecured creditors of the platform: if it is hacked, mismanaged, or becomes insolvent, deposits can be frozen or lost entirely. The 2022 collapse of FTX, which turned roughly eight billion dollars in customer assets into contested bankruptcy claims, remains the reference case. Since then, many exchanges publish "proof of reserves" snapshots, but researchers and regulators, including the PCAOB, caution that a point-in-time balance check does not prove solvency, since it says nothing about hidden liabilities or whether reserves can be liquidated fast enough during a panic. Newer rules such as the EU's MiCA framework now require asset segregation and minimum reserve buffers to narrow this gap.
DeFi protocols reduce this exposure structurally. A decentralized exchange lets traders keep custody of their own funds throughout a trade, and smart contracts enforce lending and swap terms automatically, using overcollateralization and automated liquidations instead of a promise to repay. This shifts, rather than erases, the risk: users now depend on code being bug-free and price oracles being accurate, so smart contract exploits and oracle manipulation remain real failure modes.