Author：Digital Coin God

Resolv Labs moved quickly to contain a major security breach that threatened its USR stablecoin ecosystem. The incident began when a hacker exploited a minting vulnerability, generating roughly 80 million USR tokens without proper collateral. Of these, approximately 34 million USR tokens were sold immediately for 11,409 ETH. 

The breach highlighted a critical flaw in Resolv’s reliance on off-chain infrastructure for minting approvals. 

By upgrading its smart contract, Resolv Labs successfully destroyed approximately 36.73 million USR tokens held by the hacker, mitigating a significant portion of the potential financial loss, estimated at $34 million.

Resolve Labs: How the Exploit Happened?

According to Chainalysis data, the attack stemmed from a compromised privileged key in Resolv’s off-chain AWS Key Management Service (KMS). Using this key, the attacker manipulated the minting process, authorizing USR token outputs far beyond deposited collateral. 

The hacker began with relatively small USDC deposits of $100K–$200K but converted these into tens of millions of unbacked USR tokens. Two main minting transactions were identified: one for 50 million USR and another for 30 million USR. 

The attacker then converted USR into wrapped staked USR (wstUSR), gradually swapping the holdings into other stablecoins and eventually into ETH, totaling approximately $25 million.

The flood of unbacked tokens drove USR’s price down sharply, losing up to 80% of its value in a matter of hours. The attack exposed how the protocol’s minting system lacked maximum limits and on-chain checks, relying solely on off-chain signatures for authorization.

Lessons in Real-Time Monitoring

This exploit emphasizes the importance of real-time on-chain monitoring to detect unusual activity before it escalates. Tools like Hexagate could have flagged disproportionate minting ratios immediately and paused contract operations to prevent large-scale losses. 

Additionally, automated response mechanisms triggered by anomalous contract events could have mitigated the damage more effectively.

Despite passing 18 security audits, Resolv’s incident demonstrates that DeFi protocols remain vulnerable when off-chain components, privileged keys, or cloud infrastructure are compromised. 

The breach serves as a reminder that robust on-chain monitoring and rapid response mechanisms are crucial for protecting assets in complex DeFi ecosystems.

Related: XRP Price Prediction: XRP Price Stalls at $1.35 as Bulls Fight to Hold $1.30