Every Lightning service gets hit with a drainage attack eventually, we once had someone exploit internal payments even though external payments had locks/atomic transactions... every Lightning node is a bounty

Even with the atomic solution in place we still run a separate watchdog that tracks LND and DB balances and shuts down on any discrepency