Skip to main content
Sign in

Humanity Protocol June 2026 Hack

avoid.net/humanity-protocol-june-2026-hack18/100·82% conf.
[AI-DRAFTED · AWAITING VERIFICATION]
anchored·ffMFEe…Cz4q

Summary

On June 8–9, 2026, Humanity Protocol — a palm-biometric decentralized identity project backed by Pantera Capital and Jump Crypto at a $1.1 billion fully diluted valuation — suffered a $36 million exploit after attackers obtained multisignature private keys stored on a single compromised employee laptop. Blockchain security firm Quantstamp subsequently linked the attack to DPRK-affiliated threat actors, citing malware tooling and certificate-signing patterns consistent with North Korean state-backed operations. The H token collapsed approximately 80–90% intraday; the protocol announced a token migration and recovery airdrop the following week.

Connected Entities

1 entities · 10 linked investigations
Protocols
Humanity Protocol June 2026 Hack
Relationships
    Also appears in
    edgeX Exchange·28Mach-O Man Malware Campaign (Lazarus / Chollima)·0Gamma Strategies·28Alephium Bridge·18Shunda Park Scam Compound·0Thorchain DEX·28Crossmint·70Access Protocol·47Orca·80KuCoin Exchange Hack·32
    Have evidence about Humanity Protocol June 2026 Hack?

    Timeline(8 events)

    2024-05-01

    Humanity Protocol raises $30 million in funding led by Kingsway Capital at a $1 billion valuation.

    Coinspeaker

    2025-01-27

    Humanity Protocol raises $20 million in a round led by Pantera Capital and Jump Crypto, reaching a $1.1 billion fully diluted valuation.

    The Block

    2026-06-05

    A spear-phishing email impersonating South Korean exchange Bithumb is sent to a Humanity Protocol director, deploying remote-access malware on their device when the attachment is opened.

    CryptoTimes (Quantstamp report coverage)

    2026-06-08

    Attackers use compromised private keys to upgrade the Ethereum H token bridge contract, drain approximately 141.18 million H tokens, seize BNB Chain ProxyAdmin, and mint approximately 200 million additional H tokens. Stolen and minted tokens are liquidated on Uniswap and PancakeSwap. Total losses reach approximately $36 million.

    CoinDesk

    2026-06-09

    Humanity Protocol founder Terence Kwok publicly confirms the private key compromise. The H token falls more than 80–90% intraday. ZachXBT publicly alleges the incident may have been 'possibly staged' as a cover for a coordinated market exit. Bridge deposits and withdrawals are suspended.

    CoinDesk / CryptoTimes

    2026-06-12

    Quantstamp publishes its investigation report linking the attack to DPRK-affiliated threat actors based on malware tooling, certificate-signing patterns, and operational characteristics consistent with Lazarus Group intrusions.

    Crypto Briefing

    2026-06-13

    ZachXBT updates his assessment, ruling out insider theft and concluding the exploit was the result of a private key compromise rather than an inside job, separating the suspicious pre-existing market activity from the hack itself.

    Crypto.news

    2026-06-16

    Humanity Protocol announces a recovery plan: new audited ERC-20 H token deployed on Ethereum, 1:1 airdrop based on pre-exploit snapshots, H Compensation Fund for edge cases, and mandatory identity verification for compensation claimants. Humanity Mainnet relaunch announced for 'coming weeks.'

    CryptoTimes
    Provenance & Audit Trail
    Anchored on SolanaVerify on-chain

    Decision Log

    This investigation is cryptographically anchored to the Solana blockchain and source URLs are archived via the Internet Archive.

    full audit log →version history →

    model: claude-code-investigator

    generated: 6/29/2026, 12:05:10 PM

    last updated: 6/29/2026, 12:05:19 PM

    avoid.net — verified advice for a post-truth world