Ted Hisokawa
Jun 10, 2026 12:19
Hackers exploited a compromised laptop to seize control of Humanity Protocol bridges, stealing $36M in H tokens and triggering an 80% price crash.
Humanity Protocol confirmed on June 8, 2026, that a compromised employee laptop led to a $36 million exploit targeting its multi-chain bridge infrastructure. Attackers gained control of the protocol’s token bridges on Ethereum and BNB Chain, exploiting private keys stored in a Gnosis Safe multisig wallet.
The breach allowed attackers to upgrade bridge contracts to malicious versions, according to the project’s founder, Terence Kwok. On Ethereum, approximately 141.2 million H tokens were drained, while on BNB Chain, attackers minted 200 million H tokens directly into their wallets. Humanity Protocol halted deposits and withdrawals and began working with exchanges and law enforcement to mitigate further damage.
Multisig Setups and Endpoint Risk
The attack highlights the systemic risks of concentrated key management. Humanity’s bridges relied on a multisig wallet requiring three of six keys on Ethereum and three of five on BNB Chain for administrative access. Kwok admitted that some keys were “accidentally backed up to a compromised device,” exposing the protocol to catastrophic failure when the laptop was breached.
Security researchers have pointed out that while multisig wallets provide decentralized control, storing quorum-significant keys on a single endpoint defeats the purpose of the setup. “A compromised endpoint can escalate to a protocol-wide crisis,” said Hakan Unal, Cyvers’ senior security operations lead, emphasizing the need for stricter operational security policies.
H Token Price Collapses by 80%
The market responded swiftly to the news. H token, which traded near $1.00 before the attack, plummeted over 80% in 24 hours, briefly touching $0.05 before stabilizing around $0.20 as of June 9. Trading volumes surged as panic selling set in, and liquidity pools on decentralized exchanges became highly volatile. Humanity Protocol also warned users to avoid interacting with affected bridges or liquidity pools.
The exploit not only wiped out token value but also raised concerns about the project’s long-term viability. With $36 million drained and trust in the protocol eroded, recovery will likely depend on effective communication, technical safeguards, and collaboration with exchanges to freeze and potentially recover stolen funds.
Was the Attack Coordinated?
The incident has drawn scrutiny from blockchain investigators, with some suggesting it may have been a coordinated operation. Blockchain researcher Elton Shehdula noted suspicious on-chain activity, including funding wallets weeks in advance via an exchange and mixer, as well as synchronized attacks across Ethereum and BNB Chain. The attack’s level of preparation suggests the attacker may have held compromised keys for an extended period before executing the exploit.
Meanwhile, investigator ZachXBT analyzed related wallet activity but concluded that Humanity’s market maker and OTC trades appear unrelated to the attack. However, he left open the possibility of insider involvement, given the timing of the breach relative to token unlocks.
Next Steps for Humanity Protocol
Humanity Protocol faces a steep challenge in rebuilding trust and ensuring security after this high-profile exploit. The team has promised to work with law enforcement and exchanges to investigate recovery options, but there is no clear timeline for restitution. In the meantime, trading activity around H token remains highly speculative, with significant risks for retail investors.
This incident serves as a cautionary tale for crypto projects: operational security failures, even at the endpoint level, can cascade into systemic vulnerabilities. For traders, it’s a stark reminder of the importance of due diligence when investing in projects with complex tokenomics and bridge dependencies.
Image source: Shutterstock
Be the first to comment