{"id":95458,"date":"2026-03-22T10:40:43","date_gmt":"2026-03-22T07:40:43","guid":{"rendered":"https:\/\/forklog.com\/en\/?p=95458"},"modified":"2026-03-22T10:45:16","modified_gmt":"2026-03-22T07:45:16","slug":"hacker-attack-on-resolv-crashes-usr-stablecoin","status":"publish","type":"post","link":"https:\/\/forklog.com\/en\/hacker-attack-on-resolv-crashes-usr-stablecoin\/","title":{"rendered":"Hacker Attack on Resolv Crashes USR Stablecoin"},"content":{"rendered":"<p>A hacker breached the Resolv platform, extracting approximately $25 million and simultaneously disrupting the peg of the native stablecoin USR.<\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">Resolv has experienced an exploit that allowed the attackers to mint 50mn of unbacked USR.<\/p>\n<p>The team has currently paused all the protocol functions to prevent further malicious actions and is actively working on recovery.<\/p>\n<p>\u2014 Resolv Labs (@ResolvLabs) <a href=\"https:\/\/twitter.com\/ResolvLabs\/status\/2035581976514609437?ref_src=twsrc%5Etfw\">March 22, 2026<\/a><\/p><\/blockquote>\n<p> <script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><\/p>\n<p>According to a statement from the developer company Resolv Labs, the vulnerability allowed the hacker to issue 50 million unbacked USR.<\/p>\n<p>At the time of writing, the token, pegged to the US dollar, had fallen to $0.44.<\/p>\n<figure class=\"wp-block-image size-large\"><img loading=\"lazy\" decoding=\"async\" width=\"1024\" height=\"527\" src=\"https:\/\/forklog.com\/wp-content\/uploads\/img-8d9dcf6250babc31-9381176338936538-1024x527.png\" alt=\"image\" class=\"wp-image-277191\" srcset=\"https:\/\/forklog.com\/wp-content\/uploads\/img-8d9dcf6250babc31-9381176338936538-1024x527.png 1024w, https:\/\/forklog.com\/wp-content\/uploads\/img-8d9dcf6250babc31-9381176338936538-300x154.png 300w, https:\/\/forklog.com\/wp-content\/uploads\/img-8d9dcf6250babc31-9381176338936538-768x395.png 768w, https:\/\/forklog.com\/wp-content\/uploads\/img-8d9dcf6250babc31-9381176338936538.png 1036w\" sizes=\"auto, (max-width: 1024px) 100vw, 1024px\" \/><figcaption class=\"wp-element-caption\">Source: <a href=\"https:\/\/www.coingecko.com\/en\/coins\/resolv-usr\" title=\"\">CoinGecko<\/a>.<\/figcaption><\/figure>\n<p>D2 researchers <a href=\"https:\/\/x.com\/D2_Finance\/status\/2035560501070225770\">published<\/a> an analysis of the incident. According to their version, the attacker deposited 100,000 USDC into the USR Counter contract via the requestSwap function and received 49.95 million USR. The amount was 500 times the deposit due to a faulty smart contract.\u00a0<\/p>\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" src=\"https:\/\/forklog.com\/wp-content\/uploads\/img-a547a128cb9abdaf-9381176331651758.webp\" alt=\"image\" class=\"wp-image-277192\"\/><figcaption class=\"wp-element-caption\">Source: X.<\/figcaption><\/figure>\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p>&#8220;Either the oracle was deceived, the validator was compromised offline, or there is simply no algorithm to confirm the amount between the request and finalization,&#8221; experts suggested.<\/p>\n<\/blockquote>\n<p>After the main attack, the perpetrator began withdrawing funds at &#8220;full speed,&#8221; using a classic DeFi scheme. He converted the obtained USR into wstUSR and placed the coins on all available platforms for sale.\u00a0<\/p>\n<p>Transactions were executed with significant slippage due to liquidity depletion, exacerbating the USR&#8217;s decline. Ultimately, the perpetrator withdrew the earned funds through swaps and bridges to other networks. Researchers estimated the approximate damage at $25 million.<\/p>\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\">\n<p>&#8220;The main question: how was the requestSwap for 100,000 USDC authorized as 50 million USR through completeSwap? Someone needs to explain what happened between these two stages,&#8221; noted D2.<\/p>\n<\/blockquote>\n<p>Project representatives have yet to provide additional details. The company is working on mitigating the consequences and recovering the lost funds.\u00a0<\/p>\n<p>Resolv is a platform for issuing stablecoins. The protocol offered high yields and used <a href=\"https:\/\/forklog.com\/en\/news\/stop-guessing-bitcoins-price-a-guide-to-delta-neutral-strategies\">delta-neutral strategies<\/a> based on Ethereum and Bitcoin for its generation.\u00a0<\/p>\n<p>As reported by Immunefi, <a href=\"https:\/\/forklog.com\/en\/news\/average-loss-from-crypto-hacks-reaches-25-million\">the average damage<\/a> from a single crypto protocol hack is about $25 million, excluding the subsequent collapse of native coins.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>A hacker breached the Resolv platform, extracting approximately $25 million and simultaneously disrupting the peg of the native stablecoin USR.<\/p>\n","protected":false},"author":1,"featured_media":95459,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"select":"1","news_style_id":"1","cryptorium_level":"","_short_excerpt_text":"A hacker breached the Resolv platform, extracting $25 million and disrupting USR's peg.","creation_source":"","_metatest_mainpost_news_update":false,"footnotes":""},"categories":[3],"tags":[44,807],"class_list":["post-95458","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news-and-analysis","tag-cybercrime","tag-stablecoins"],"aioseo_notices":[],"amp_enabled":true,"views":"558","promo_type":"1","layout_type":"1","short_excerpt":"A hacker breached the Resolv platform, extracting $25 million and disrupting USR's peg.","is_update":"","_links":{"self":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/95458","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/comments?post=95458"}],"version-history":[{"count":1,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/95458\/revisions"}],"predecessor-version":[{"id":95460,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/posts\/95458\/revisions\/95460"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/media\/95459"}],"wp:attachment":[{"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/media?parent=95458"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/categories?post=95458"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/forklog.com\/en\/wp-json\/wp\/v2\/tags?post=95458"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}