In a significant blow to the decentralized finance ecosystem, TrustedVolumes has reported a stunning $6.7 million exploit, raising alarms about the vulnerabilities endemic in such platforms. The independent market maker, closely associated with 1inch Fusion, disclosed that stolen funds have been traced across three Ethereum wallets, compelling the organization to consider bug bounty discussions to mitigate the fallout.
In a post on X, TrustedVolumes detailed that the theft involved two wallets holding approximately $3 million each, alongside a third wallet containing around $700,000. The market maker’s willingness to explore a collaborative resolution underscores its commitment to address security flaws head-on and regain trust within the community.
1inch Reassures Users, Denies Any Direct Breach
Simultaneously, 1inch has emphatically denied any compromise of its systems, asserting that neither its protocols nor user funds were impacted by the attack targeting TrustedVolumes. In a statement on X, the platform described any insinuation of its involvement as “misleading,” clarifying that its operations and those of TrustedVolumes are independent. Co-founder Sergej Kunz explicitly stated that 1inch’s use of TrustedVolumes is not exclusive, emphasizing that many platforms utilize the resolver.
Kunz described the exploit framing as “confusing and harmful,” committing to ongoing communication with security partners to enhance protective measures across their infrastructure. Security researcher Vladimir Sobolev corroborated this sentiment, stating that 1inch users face no risk from the exploit, which was specifically linked to TrustedVolumes.
The Broader Implications for DeFi Security
The incident has raised critical questions regarding the security protocols of decentralized exchanges, where the use of third-party infrastructure poses inherent risks. Experts are emphasizing the pressing need for better kill switches, monitoring systems, and overall enhanced security measures within cryptocurrency platforms. “We lack security in general,” Sobolev remarked, underscoring the tendency for rapid exploit payouts to overshadow preventive actions.
Blockaid, a Web3 security firm, first detected the exploit, attributing the attack to the same operator responsible for a similar incident involving the 1inch Fusion V1 resolver back in March 2025. That previous event had resulted in significant losses, yet user funds remained secure. Following negotiations with the attacker, many assets had been returned under a bug bounty agreement, highlighting the ongoing battle between security and exploitation in the crypto world.
The ramifications of this incident are poised to echo across the DeFi sector, as stakeholders look to fortify their defenses against emerging threats. With the ever-evolving landscape of cryptocurrency security under scrutiny, the path forward may require collaborative approaches to safeguard all players involved.
Source: Cointelegraph
More Recommended
Robinhood Shares Plunge as Q1 Earnings Fall Short,...
Visa Expands Stablecoin Settlement Pilot, Surpasse...
