6 articles
Web3 WatchCertiK flagged a suspicious drain of $2.19M from Aztec Connect on Ethereum. The contract was deprecated three years ago and cannot be paused or upgraded by anyone.
editorial-picksTHORChain's recovery from a $10.17M exploit inches forward. ADR028 is approved, a hacker bounty is live, and v3.19.0 heads to stagenet but one move has the DeFi community asking hard questions.
Web3 WatchTHORChain node operators are voting on ADR-028 following a May 15 vault exploit that drained $10.7M. The plan uses protocol-owned liquidity first, protects innocent nodes, and avoids minting new RUNE.
Web3 WatchA compromised admin key on Echo Protocol's Monad deployment led to $816K in confirmed losses after an attacker minted 1,000 unbacked eBTC, borrowed against them on Curvance, and laundered the proceeds through Tornado Cash.
editorial-picksTHORChain suffered a $10.8M multi-chain exploit on May 15, 2026. Trading was halted after node operator SamYap called for an emergency global pause. On-chain data shows stolen funds are still being laundered in real time.
Web3 WatchAftermath Finance's perpetuals protocol was drained of $1.14M via a negative fee flaw on Sui. The attacker routed stolen funds to KuCoin. Mysten Labs and the Sui Foundation confirmed full user recovery.