Hacker Drains $5.9M From TrustedVolumes on Ethereum

The Theft

An attacker drained $5.9 million from TrustedVolumes, an Ethereum liquidity provider, according to early on-chain reports. The exploit occurred without immediate public disclosure from the affected protocol, leading to initial confusion about which system had been compromised.

Clarification on 1inch

Some early reports attributed the incident to a 1inch exploit. 1inch subsequently clarified that its protocol was not compromised and that no user funds were at risk. The distinction matters for traders and liquidity providers who use both platforms: the vulnerability was isolated to TrustedVolumes' infrastructure or smart contract logic, not the broader 1inch ecosystem.

Investigation Ongoing

Details on the attack vector remained limited at publication. TrustedVolumes' response timeline and any compensation or recovery efforts were not immediately announced. The incident underscores the ongoing risk surface in Ethereum's DeFi infrastructure, where even lesser-known liquidity pools can be targeted by sophisticated attackers.

Why It Matters

For Traders

If you provide liquidity to TrustedVolumes or hold its governance token, verify your positions immediately and monitor for protocol updates or compensation announcements.

For Investors

The incident highlights recurring smart contract risks in mid-tier DeFi protocols; audit history and insurance coverage are material factors in assessing platform safety.

For Builders

Review your own integration points with external liquidity providers and ensure fail-safes prevent cascading drain scenarios if a counterparty is compromised.