Overview
- Humanity Protocol said a malware infection on a developer’s laptop led to a key compromise which on June 8–9 allowed attackers to take control of multisig wallets and move tokens.
- Attackers used the stolen keys to drain about 141 million H from the Ethereum bridge and to mint roughly 200 million additional H on BNB Smart Chain before converting proceeds to ETH and BNB.
- Direct on‑chain losses are estimated at $30–36 million while the token’s market capitalization fell by more than $1 billion and the price dropped about 80–90% before rallying roughly 41% to near $0.20.
- Humanity paused bridge operations, published attacker wallet trackers, posted a $1 million USDT bounty, and engaged security firms, exchanges, and law enforcement with any recovered funds to be used for token buybacks.
- Attribution remains unsettled: Quantstamp reported links to North Korea‑linked hackers and on‑chain analysts have flagged unusual timing ahead of a June 25 token unlock, raising lingering questions about insider involvement and long‑term trust in custody practices.