Resolv DeFi Platform Hit by $80M Stablecoin Exploit
Decentralized finance (DeFi) platform Resolv suffered a cyberattack on Saturday, resulting in the illicit creation of $80 million worth of its USR stablecoin. The attacker compromised Resolv’s infrastructure by exploiting a stolen private key, allowing them to mint uncollateralized USR tokens without proper backing.
The hacker then swapped the fraudulent USR for 11,408 ETH (approximately $24.5 million), causing the stablecoin to depeg from its $1 USD value, plummeting to $0.26. Resolv confirmed the breach, stating the attacker gained unauthorized access through a compromised private key controlling minting approvals.
In response, Resolv paused its app to contain the fallout and is working to trace the illicitly minted tokens. The company issued a blockchain message to the attacker, offering a 10% bounty ($2.45 million) if the remaining funds were returned within 72 hours. Resolv also warned of legal action, exchange freezes, and law enforcement involvement if the attacker failed to comply.
Blockchain analytics firm Chainalysis analyzed the incident, attributing the exploit to over-reliance on off-chain infrastructure. Despite 18 security audits, the attacker bypassed safeguards by stealing a private key that controlled minting limits, allowing them to generate 80 million unbacked USR tokens from a $100K–$200K USDC deposit.
Resolv has since enabled redemptions for verified users and is finalizing a recovery plan before restoring full functionality. The company advised users to avoid trading USR or other Resolv tokens while mitigation efforts continue.
Source: https://therecord.media/hacker-breaches-resolv-defi-25-million
Resolv cybersecurity rating report: https://www.rankiteo.com/company/resolvcrypto
"id": "RES1774319027",
"linkid": "resolvcrypto",
"type": "Cyber Attack",
"date": "3/2026",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'affected_entities': [{'customers_affected': 'Verified users (redemptions '
'enabled)',
'industry': 'Decentralized Finance (DeFi)',
'name': 'Resolv',
'type': 'DeFi Platform'}],
'attack_vector': 'Stolen private key',
'customer_advisories': 'Avoid trading USR or other Resolv tokens while '
'mitigation efforts continue',
'date_detected': 'Saturday',
'date_publicly_disclosed': 'Saturday',
'description': 'Decentralized finance (DeFi) platform Resolv suffered a '
'cyberattack resulting in the illicit creation of $80 million '
'worth of its USR stablecoin. The attacker compromised '
'Resolv’s infrastructure by exploiting a stolen private key, '
'allowing them to mint uncollateralized USR tokens without '
'proper backing. The hacker swapped the fraudulent USR for '
'11,408 ETH (approximately $24.5 million), causing the '
'stablecoin to depeg from its $1 USD value, plummeting to '
'$0.26.',
'impact': {'brand_reputation_impact': 'Significant (depeg, legal threats, '
'recovery efforts)',
'conversion_rate_impact': 'USR depegged from $1 to $0.26',
'downtime': 'App paused',
'financial_loss': '$80 million (illicitly minted USR) + $24.5 '
'million (swapped ETH)',
'legal_liabilities': 'Potential legal action, exchange freezes, '
'law enforcement involvement',
'operational_impact': 'Platform paused, redemptions enabled for '
'verified users',
'systems_affected': 'Resolv’s stablecoin minting infrastructure'},
'initial_access_broker': {'entry_point': 'Stolen private key',
'high_value_targets': 'Minting approvals for USR '
'stablecoin'},
'investigation_status': 'Ongoing (tracing illicit tokens, recovery plan in '
'progress)',
'lessons_learned': 'Over-reliance on off-chain infrastructure, need for '
'stronger private key security despite multiple audits',
'motivation': 'Financial gain',
'post_incident_analysis': {'corrective_actions': 'Strengthen private key '
'security, enhance '
'monitoring of minting '
'approvals, finalize '
'recovery plan',
'root_causes': 'Stolen private key controlling '
'minting approvals, over-reliance '
'on off-chain infrastructure'},
'recommendations': 'Avoid trading USR or other Resolv tokens during '
'mitigation, strengthen private key management, enhance '
'monitoring of minting approvals',
'references': [{'source': 'Chainalysis'}],
'regulatory_compliance': {'legal_actions': 'Threatened (if attacker does not '
'comply)'},
'response': {'communication_strategy': 'Blockchain message to attacker, '
'public advisories',
'containment_measures': 'Paused app, enabled redemptions for '
'verified users',
'incident_response_plan_activated': 'Yes',
'law_enforcement_notified': 'Threatened (if attacker does not '
'comply)',
'recovery_measures': 'Finalizing recovery plan before restoring '
'full functionality',
'remediation_measures': 'Tracing illicitly minted tokens, '
'recovery plan in progress',
'third_party_assistance': 'Chainalysis (blockchain analytics)'},
'stakeholder_advisories': 'Avoid trading USR or other Resolv tokens while '
'mitigation efforts continue',
'title': 'Resolv DeFi Platform Hit by $80M Stablecoin Exploit',
'type': 'Stablecoin Exploit',
'vulnerability_exploited': 'Compromised private key controlling minting '
'approvals'}