Overview
- Security firms and Aztec Labs confirmed that roughly $2.1 million was taken from an immutable Aztec Connect Router / RollupProcessorV3 contract after an exploit on June 14, 2026.
- Analysts say the attacker abused a verification-to-settlement mismatch in the RollupProcessorV3 public processing function to create balances that had no backing on Ethereum and then withdrew those funds.
- The haul included about 909 ETH, roughly 270,000 DAI, 167 wstETH and other tokens, with loss estimates ranging from $2.1 million to $2.19 million depending on the firm.
- Aztec Labs said it renounced admin keys during the 2023 shutdown and therefore cannot pause, upgrade, or reverse the transactions, so the attacker’s wallet is being monitored but the funds cannot be recovered on-chain.
- The incident highlights the risk of leaving value in deprecated immutable contracts and reinforces calls for formal shutdown playbooks, post-shutdown monitoring, and clearer user wind-down procedures.