Est. MMXXVISunday, May 24, 2026Vol. VI · № 273$13.99B total lossesRSS

Blockchain Breaches

An archive of cryptocurrency security incidents — hacks, exploits, bridge failures and rug pulls, documented with on-chain evidence.

Year × Attack dossier

Smart Contract Bug attacks in 2026

Total losses

$55.9M

5 incidents

№ 001Smart Contract BugApril 16, 2026
Rhea Finance Two-Day Margin Drain
Rhea Finance on NEAR lost $18.4M after a two-day setup of fake tokens, 423 wallets and 8 Ref pools exploited a slippage-summing flaw in margin trading.
Rhea FinanceNEARPartially Recovered
Loss
18.4M
USD
№ 002Smart Contract BugMarch 22, 2026
Solv BRO Double-Mint Exploit
Solv Protocol's BRO vault lost $2.73M when an ERC-3525 double-mint bug let the attacker turn 135 BRO into ~567M BRO over 22 deposits, then swap for 38 SolvBTC.
Solv ProtocolEthereumBitcoinPartially Recovered
Loss
2.7M
USD
№ 003Smart Contract BugJanuary 20, 2026
SagaEVM Ethermint Mint Bypass
SagaEVM lost $7M in 11 minutes when an Ethermint bug let crafted messages bypass validation, minting Saga Dollar (D) without collateral and bridging to ETH.
SagaSagaEthereumFunds Stolen
Loss
7.0M
USD
№ 004Smart Contract BugJanuary 18, 2026
TMXTribe Reward Exploit
TMXTribe, a staking/rewards protocol, lost ~$1.4M when a distribution accounting flaw let an attacker repeatedly over-claim, draining the reward reserve.
TMXTribeBNB ChainFunds Stolen
Loss
1.4M
USD
№ 005Smart Contract BugJanuary 8, 2026
Truebit Integer Overflow
Truebit lost $26.4M when an integer overflow in TRU's five-year-old bonding-curve contract let the attacker mint TRU near-free and sell back for 8,500 ETH.
TruebitEthereumFunds Stolen
Loss
26.4M
USD