Compass Investments A sum of $6.7 million has been withdrawn from 1inch market

📌 A sum of $6.7 million has been withdrawn from 1inch market maker TrustedVolumes due to a recent DeFi hack.

Declassified $67 million from 1inch market maker TrustedVolumes as a result of a fresh incident in the DeFi space. . 1inch

– Declassified $67 million from 1inch market maker TrustedVolumes as a result of a fresh incident in the DeFi space.

Podailinquidit and postrealizer TrustedVolumes was the target of a hacker intrusion that resulted in the theft of $6.7 million.

Representatives of TrustedVolumes have acknowledged the compromise and are investigating the possibility of a payout for the vulnerability.

Cryptojacking in May 2026 has already resulted in the loss of about $8.23 million from crypto market participants.

One of the liquidity pool providers and market maker operating in the 1inch ecosystem, TrustedVolumes, has been affected by the ongoing exploitation on the Ethereum network. Currently, approximately $6.7 million has been withdrawn in the forms of wrapped assets and stablecoins.

According to information from security firm Blockaid, the incident occurred on May 7, 2026, when a multi-stage attack was launched against the project’s contract resolver (resolver). The exact composition of the withdrawn tokens includes WETH, USDT, WBTC and USDC.

What exactly happened during the TrustedVolumes exploit on the blockchain?

According to Blockaid’s monitoring systems, the TrustedVolumes resolver contract at hex address 0x9bA0CF1588E1DFA905eC948F7FE5104dD40EDa31 was affected.

The attacker’s wallet 0xC3EBDDdEa4f69df717a8f5c89e7cF20C1c0389100 initiated the initial transaction.

As previously reported in the blockchain space and confirmed via Etherscan, the $5.87 million in seized tokens was made up of 1,291.16 WETH, 206,282 USDT, 16,939 WBTC and 1,268,771 USDC.

TrustedVolumes is currently confirming the hack, which is now valued at $6.7M compared to the original $5.87M. The company is considering a bug bounty option.

We recently noticed an unauthorized tampering.

The current location of the embezzled funds is as follows: PeckShieldAlert additionally reported that the hacker consolidated all the withdrawn funds into 2,513 ETH via an internal swap using a custom proxy.

The trajectory of the stolen funds, according to PeckShieldAlert.

The vulnerability was exploited via a custom RFQ swap proxy controlled by TrustedVolumes at 0xeEeEEe53033F7227d488ae83a.

To blockchain analysis experts, the connection between these two incidents is clear: the same entity that carried out the 1inch Fusion V1 hack in March 2025, causing them about $5 million in damage, seems to be behind this latest attack.