TheBlock
TrustedVolumes, a liquidity provider and market maker for 1inch, has confirmed losses of approximately $6.7 million after an attacker drained its resolver contract on Ethereum. Blockchain security firm Blockaid identified the stolen assets as 1,291.16 WETH, 206,282 USDT, 16.939 WBTC, and 1,268,771 USDC — and flagged the attacker as the same entity behind the March 2025 1inch Fusion V1 exploit that drained roughly $5 million.
Blockaid noted the current attack exploits a different vulnerability: a TrustedVolumes-controlled custom RFQ swap proxy, distinct from the Fusion V1 flaw. TrustedVolumes confirmed the breach and said it is considering a bug bounty to address the situation. 1inch separately confirmed its own systems, infrastructure, and user funds are unaffected, noting TrustedVolumes operates independently across multiple protocols.
The attack is the fifth major DeFi exploit since…
CryptoSlate
Lookonchain
WuBlockchain