Echo Protocol said an admin key leak on Monday enabled unauthorized eBTC minting on Monad, producing roughly $816,000 in losses. The team has since regained control of the compromised admin key and burned the 955 eBTC still held by the attacker, neutralizing the remaining attacker balance.
The incident currently appears limited to Monad; Aptos exposure is estimated at about $71,000, with no evidence the Aptos deployment was compromised. The team has paused Monad bridge functions, upgraded related contracts, and warned users to avoid fake refund, claim, and recovery links now circulating across social channels.
Why it matters
eBTC is positioned as a Bitcoin-pegged synthetic, so any exploit that mints unbacked units strikes directly at the peg's credibility. Echo's response — burn over reimbursement — is the conservative play: it removes the attacker's float from circulation rather than socializing the loss, but it also means legitimate holders exposed to the exploit window are not yet made whole. The phishing wave the team flagged is the more durable near-term risk; social-engineering scams typically outlast the technical incident by weeks.
Market impact
With Monad bridge functions paused, eBTC流动性 between the two chains is frozen until the contract upgrade is fully validated. Watch the peg on secondary markets and the team's next post for a formal reimbursement plan — the $816K figure is contained for a synthetic of this size, but the phishing tail is where the real user damage is likely to land.
Frequently asked questions
-
What happened in the Echo Protocol exploit?
An admin key leak allowed an attacker to mint unauthorized eBTC on Monad, producing roughly $816,000 in losses. The team has since regained the key and burned the 955 eBTC still held by the attacker.
-
Was Aptos affected by the Echo Protocol incident?
Aptos exposure is estimated at about $71,000, but Echo said there is no evidence the Aptos deployment was compromised. The incident currently appears limited to Monad.
-
What is Echo Protocol doing in response to the hack?
The team regained control of the admin key, burned the attacker's remaining 955 eBTC, paused Monad bridge functions, upgraded related contracts, and warned users about phishing links posing as refund or recovery tools.
-
Are eBTC holders being reimbursed?
As of the team's latest update, legitimate holders exposed to the exploit window have not yet been made whole. Echo has not announced a formal reimbursement plan; the immediate response was to burn the attacker's balance to protect the peg.
-
What is the main risk for users right now?
The active phishing wave is the more durable near-term risk. Scammers are circulating fake refund, claim, and recovery links in replies and DMs, and these social-engineering scams typically outlast the technical incident itself.
WuBlockchain