The Humanity Protocol, a decentralized identity project using palm biometrics, suffered a private key compromise resulting in losses exceeding $30 million. The H token plummeted 85% from $0.70 to $0.08, with the project’s founder confirming the incident and advising users to avoid the bridge and liquidity pools.
Stablecoin issuer StablR has reported an exploit resulting in its euro and US dollar stablecoins depegging. Blockchain security firm Blockaid stated that $2.8 million has been extracted so far due to a private key compromise.
StablR's euro and US dollar stablecoins have depegged after an exploit drained $2.8 million, reportedly due to a compromised private key in the minting multisignature account. This incident adds to a growing list of crypto hacks this month.
StablR's Euro and USD stablecoins (EURR, USDR) have depegged due to an exploit where a compromised private key allowed an attacker to mint millions in new tokens. Approximately $2.8 million was extracted after the attacker swapped the minted assets on decentralized exchanges.
Polymarket experienced a security exploit affecting a wallet used for internal top-up operations, potentially compromising a six-year-old private key. While at least $600,000 was drained, the company assures user funds and core infrastructure remain safe.
Tagging @grok in an X post plus a few dots and dashes was all that was needed last night for a bad actor to pickpocket a verified crypto wallet without ever touching the private keys. Agentic token launchpad, Bankrbot reported on May 4 that it had sent 3 billion DRB on Base to the recipient […] The post Grok’s crypto wallet was just exploited by a tweet sent in morse code without any private key compromise appeared first on CryptoSlate.
Hackers have stolen over $17 billion across 518 crypto incidents over the past decade, with private key compromises being the leading attack vector, according to DefiLlama data. Around 22.3% of incidents stemmed from brute force private key attacks and 18.2% from unknown methods, while 10% involved multi-signature wallet phishing. The findings come after the industry's largest 2026 hack drained $290-293 million from Kelp DAO's rsETH bridge, with DeFi protocols losing $600 million in the past 60 days.
