TrustedVolumes, a liquidity provider and market maker for decentralized exchange aggregator 1inch, is suffering an ongoing attack that has drained approximately $6.7 million in funds, according to reports from blockchain security firm Blockaid and TrustedVolumes itself. Blockaid initially flagged the exploit on Wednesday as affecting TrustedVolumes’ resolver contract on the Ethereum blockchain, with the company providing an updated loss figure on Thursday and indicating consideration of a bug bounty to address the situation. 1inch confirmed that its systems, infrastructure, and user funds remain unaffected.
Initial Blockaid Report
Blockaid reported that the initial drained amount was approximately $5.87 million, comprised of 1,291.16 WETH, 206,282 USDT, 16.939 WBTC, and 1,268,771 USDC. According to Blockaid, the attacker is the same entity responsible for the March 2025 exploit of 1inch Fusion V1, which drained around $5 million. However, Blockaid noted that the ongoing attack involves a different vulnerability related to a TrustedVolumes-controlled custom RFQ (request for quote) swap proxy.
TrustedVolumes Response
TrustedVolumes confirmed the exploit on Thursday, updating the loss amount to approximately $6.7 million. The company indicated it will consider a bug bounty as a potential solution to address the situation.
1inch Statement
1inch released a statement clarifying that there is no impact on its systems, infrastructure, or user funds. “TrustedVolumes operate independently as a liquidity provider, used by multiple protocols across the industry, and are not exclusive to 1inch,” the statement said. “We continue to monitor the situation and are actively assisting where appropriate alongside relevant security parties.”
Broader DeFi Security Context
Attacks on DeFi participants have surged significantly in recent weeks. According to data from DefiLlama, a total of $635.2 million was stolen in hacks and exploits in April 2025, marking the largest monthly sum since February 2025, when hackers stole nearly $1.5 billion from Bybit. Recent major exploits include a $285 million social engineering attack on Drift and a $293 million exploit on Kelp DAO. The attack on TrustedVolumes marks the fifth major exploit since the beginning of May.
Disclaimer: The information on this page may come from third parties and does not represent the views or opinions of Gate. The content displayed on this page is for reference only and does not constitute any financial, investment, or legal advice. Gate does not guarantee the accuracy or completeness of the information and shall not be liable for any losses arising from the use of this information. Virtual asset investments carry high risks and are subject to significant price volatility. You may lose all of your invested principal. Please fully understand the relevant risks and make prudent decisions based on your own financial situation and risk tolerance. For details, please refer to
Disclaimer.
Related Articles
Tokenized U.S. Treasuries on Ethereum Hit Record $8 Billion, Ethereum Hosts Over 60% of Total Value
Tokenized U.S. Treasuries on the Ethereum network reached a record market capitalization of $8 billion as of early May 2026. Ethereum hosts over 60% of the total on-chain value of tokenized Treasuries, which are also available on Stellar, Solana, and Polygon. The growth is largely driven by
GateNews22m ago
New York Bank expands its “digital assets” business to the UAE, offering BTC and ETH custody services
According to an official press release issued by Bank of New York (BNY) on May 7, the global largest custodian bank, which manages about $59 trillion in assets, announced that it will partner with local partners Finstreet and the ADI Foundation to set up a regulated digital asset infrastructure at the Abu Dhabi Global Market (ADGM), initially focusing on institutional custody services for Bitcoin (BTC) and Ethereum (ETH).
MarketWhisper2h ago
JPMorgan, Ripple, Mastercard Execute Tokenized Treasury Pilot on XRP Ledger
JPMorgan, Ripple, Mastercard, and Ondo Finance have completed a pilot transaction transferring tokenized U.S. Treasurys across borders using both the XRP Ledger blockchain and traditional banking infrastructure. Ripple announced the pilot on X (formerly Twitter) on Wednesday, stating that the transa
CryptoFrontier4h ago
Ethereum Spot ETFs Record $11.57M Net Inflows Yesterday, Extending 4-Day Streak
According to SoSoValue data cited by ChainCatcher, Ethereum spot ETFs recorded net inflows of $11.57 million yesterday (May 6), marking the fourth consecutive day of inflows. Grayscale's Ethereum Mini Trust ETF (ETH) led with $10.03 million in single-day inflows, bringing its historical cumulative n
GateNews4h ago
Vitalik Buterin releases the EIP-8250 proposal, aiming to support 500 billion private records
According to an X post by Ethereum co-founder Vitalik Buterin on May 6, the EIP-8250 proposal has been officially put forward. Its core mechanism is a “keyed nonce” system, aiming to enable large-scale parallel private transactions on Ethereum. According to the EIP-8250 proposal document, the system is designed to support up to 500 billion privacy-related records within eight years.
MarketWhisper4h ago
