Global blockchain supervision and query platform

English
Download
Home Exchange Project Token Comment News Market Field Survey WikiEXPO Education Forum Live Big Data Announcement Calendar Newsletter Community
Your Location:   Home >
News >
Main body

Hackers Drain Nearly $6 Million in ETH and BTC from Trusted Volumes

Hackers Drain Nearly $6 Million in ETH and BTC from Trusted Volumes WikiBit 2026-05-07 18:46

The decentralized finance (DeFi) sector has just endured yet another multi-million-dollar breach. According to alerts from prominent blockchain security

Bitcoin Ethereum

Hackers Drain Nearly $6 Million in ETH and BTC from Trusted Volumes

The decentralized finance (DeFi) sector has just endured yet another multi-million-dollar breach.

According to alerts from prominent blockchain security firms SlowMist and PeckShield, hackers managed to drain approximately $5.9 million in Ethereum, Wrapped Bitcoin (WBTC), and stablecoins from trading protocol Trusted Volumes.

This has happened due to a fundamental flaw in the protocols core signature validation logic. The flaw has made it possible for the attacker to bypass authorization checks and forge trading orders.

Zcash (ZEC) Is Crypto‘s Number One, Toncoin (TON) Dwarfs Solana (SOL), XRP Finally Breaks Key Resistance, but What’s Early: Crypto Market Review

Bollinger‘s Model Says ’Buy Bitcoin

A fatal flaw

Trusted Volumes is a DeFi trading protocol built upon a Request for Quote (RFQ) architecture. They operate similarly to decentralized Over-The-Counter (OTC) desks.

An RFQ system facilitates peer-to-peer trading, which sets it apart from traditional Automated Market Makers (AMMs) like Uniswap.

A “taker” requests a price quote, and a “maker” offers a firm price. Both parties cryptographically sign the order, and the smart contract settles the swap. Users have to grant the protocol broad approval to move their funds. Hence, flawless cryptographic signature verification is essential for the security of an RFQ network.

In this case, the devastating security breach was caused by a logical error within the protocols fillOrder function.

According to PeckShield, the total haul amounted to $5.9 million. SlowMists autopsy of the drained assets revealed a massive pile consisting of 1,291 ETH ($3.02 million), 16.94 WBTC ($1.37 million), 1.26 million USDC, and 206,000 USDT.

The bad actor immediately started laundering the stolen funds (to no ones surprise). On-chain data confirms the attacker laundered the stolen stablecoins and Wrapped Bitcoin through a decentralized exchange.

Disclaimer:

The views in this article only represent the author's personal views, and do not constitute investment advice on this platform. This platform does not guarantee the accuracy, completeness and timeliness of the information in the article, and will not be liable for any loss caused by the use of or reliance on the information in the article.

Related exchange
TONCOIN
TONCOIN
Rating
TonCoin | 5-10 years
FOR
FOR
Rating
ForTube
KEY
KEY
Rating
Selfkey | 5-10 years
ZEC
ZEC
Rating
Zcash | 10-15 years
DATA
DATA
Rating
Streamr | 10-15 years
SMART
SMART
Rating
SMART | 2-5 years
WBTC
WBTC
Rating
Wrapped Bitcoin | 5-10 years
ORDER
ORDER
Rating
Orderly Network | 2-5 years
ETH
Featured
ETH
Rating
Featured | Ethereum | 10-15 years
TON
TON
Rating
TON Crystal | 5-10 years
XRP
XRP
Rating
Ripple | 15-20 years
USDC
USDC
Rating
USD Coin | 5-10 years
ONE
ONE
Rating
Harmony | 5-10 years
LIKE
LIKE
Rating
Only1 | 5-10 years
SWAP
SWAP
Rating
TrustSwap | 5-10 years
SOL
SOL
Rating
Solana | 5-10 years
BAD
BAD
Rating
Bad Idea AI | 2-5 years
CHAIN
CHAIN
Rating
Chain Games
DEFI
DEFI
Rating
DeFi | 2-5 years

WikiBit Exchange

  • Crypto token price conversion
  • Exchange rate conversion
  • Calculation for foreign exchange purchasing
/
PC(S)
Current Rate
Available

0.00

You may also like