Resolv Labs issued an ultimatum to the attacker behind Sunday’s $25 million exploit, offering to let the individual keep 10% of the stolen funds in exchange for returning the remainder within 72 hours.
According to an onchain message sent Monday, the Abu Dhabi-based stablecoin issuer set a recovery address and gave the exploiter until Thursday to transfer 90% of the converted assets, roughly $22.5 million in ether (ETH), along with any remaining USR tokens under the attacker’s control.
The proposal includes an alternative white hat disclosure path, inviting the attacker to demonstrate good-faith security research through email instead of the settlement terms.
Resolv warned that noncompliance within the 72-hour window would prompt escalation measures. These include coordination with centralized exchanges, bridges, and infrastructure providers to restrict or freeze assets, as well as public disclosure of addresses and transaction traces. The protocol also said it would engage blockchain analytics firms and law enforcement, and pursue legal action to recover damages.
The exploit occurred early Sunday, March 22, when the attacker deposited roughly $200,000 in USDC into Resolv’s USR Counter contract and received 50 million USR in return, followed by a second transaction minting an additional 30 million USR. The attacker swapped the minted USR for stablecoins across decentralized exchanges and converted the proceeds into 11,409 ETH, per onchain data.
Analysts identified the breach as originating from a privileged minting role controlled by a single externally owned account, lacking maximum mint limits, oracle checks, or multi-signature authorization.
In its onchain communication, Resolv emphasized that the exploit, though facilitated by a protocol vulnerability, was executed with clear malicious intent and generated unbacked tokens that could affect secondary market stability.
Resolv Digital Assets Ltd. separately said it is in contact with all allowlisted users who held USR at the time of the incident, with redemptions for pre-incident USR now enabled for that group. The protocol said updates for other users would follow.
© 2026 The Block. All Rights Reserved. This article is provided for informational purposes only. It is not offered or intended to be used as legal, tax, investment, financial, or other advice.
Trade Crypto On Coinhub Exchange
Trade Crypto On Coinhub Exchange
Stay ahead of the market by turning news insights into trading opportunities. With Coinhub Exchange, you can seamlessly buy, sell, and manage your digital assets, all in one secure platform. Take advantage of real-time market insights, deep liquidity, and fast execution for your favorite cryptocurrencies. Don’t just read about it — trade crypto now!
Disclaimer
The content of this article shown by Coinhub News, powered by The Block, is for informational purposes only and should not be construed as financial, legal, tax, or investment advice. Coinhub News and its affiliates are not a licensed financial advisor, legal advisor, broker, or tax advisor, and ... should not be considered as professional advice or a recommendation to engage in any specific investment, legal decision, or financial transaction. Cryptocurrency markets are highly speculative and volatile. Readers should perform their own independent research and consult with a qualified professional before making any financial or legal decisions. The opinions expressed in this article are those of the author and do not necessarily represent the views or opinions of the Company of its affiliates. Additionally, the Company does not make any representations or warranties regarding the accuracy, timeliness, reliability, or completeness of any information in this article. By accessing this content, you acknowledge that any reliance on the information contained in this article is solely at your own risk. The Company is not responsible for any financial losses, legal disputes, or other damages that may arise from reliance on this content or from any investment or legal decisions based on the information provided. Investing in cryptocurrencies involves substantial risks, including the risk of losing your entire investment, and you should carefully consider whether it is appropriate for your circumstances.
Read more
