Est. MMXXVISunday, May 24, 2026Vol. VI · № 273$13.99B total lossesRSS

Blockchain Breaches

An archive of cryptocurrency security incidents — hacks, exploits, bridge failures and rug pulls, documented with on-chain evidence.

Year × Attack dossier

Private Key Compromise attacks in 2026

Total losses

$60.5M

4 incidents

№ 001Private Key CompromiseApril 30, 2026
Wasabi Protocol Deployer EOA Compromise
Wasabi Protocol's perp vaults across Ethereum, Base, Berachain and Blast lost $5M when a compromised deployer EOA with sole ADMIN_ROLE allowed UUPS upgrades.
Wasabi ProtocolEthereumBaseFunds Stolen
Loss
5.0M
USD
№ 002Private Key CompromiseApril 22, 2026
Volo Sui Admin Key Social Engineering
Volo Protocol's Sui vaults lost $3.5M after social engineering compromised the admin key. The team froze $500K in 30 minutes and blocked a $2.1M WBTC bridge.
Volo ProtocolSuiPartially Recovered
Loss
3.5M
USD
№ 003Private Key CompromiseMarch 22, 2026
Resolv USR Stablecoin Cloud-KMS Drain
Resolv Labs lost $25M after attackers compromised its AWS KMS keys; a $100K USDC deposit minted 50M USR and depegged the stablecoin 74% in 17 minutes.
Resolv LabsEthereumFunds Stolen
Loss
25.0M
USD
№ 004Private Key CompromiseJanuary 31, 2026
Step Finance Treasury Drain
Step Finance lost 261,854 SOL ($27M) from treasury and fee wallets to a 'sophisticated' actor. STEP fell 96%; Step, SolanaFloor and Remora all shut down.
Step FinanceSolanaFunds Stolen
Loss
27.0M
USD