{"id":23316,"date":"2026-03-06T06:31:20","date_gmt":"2026-03-06T06:31:20","guid":{"rendered":"https:\/\/bitunikey.com\/news\/solv-protocol-exploit-drains-2-7m-in-solvbtc-10-bounty-offered\/"},"modified":"2026-03-06T06:31:31","modified_gmt":"2026-03-06T06:31:31","slug":"solv-protocol-exploit-drains-2-7m-in-solvbtc-10-bounty-offered","status":"publish","type":"post","link":"https:\/\/bitunikey.com\/news\/solv-protocol-exploit-drains-2-7m-in-solvbtc-10-bounty-offered\/","title":{"rendered":"Solv Protocol exploit drains $2.7M in SolvBTC, 10% bounty offered"},"content":{"rendered":"<p><\/p>\n<div class=\"post-detail__content blocks\">\n<p class=\"is-style-lead\">Bitcoin-focused Solv Protocol was exploited on Thursday, resulting in roughly $2.7 million worth of funds drained from one of its token vaults. The project has offered a 10% bounty to the attackers.<\/p>\n<div id=\"cn-block-summary-block_4a15796fb69ae7598bc4522279e0a690\" class=\"cn-block-summary\">\n<div class=\"cn-block-summary__nav tabs\">\n        <span class=\"tabs__item is-selected\">Summary<\/span>\n    <\/div>\n<div class=\"cn-block-summary__content\">\n<ul class=\"wp-block-list\">\n<li>Solv Protocol lost about $2.7 million after an exploit drained 38 SolvBTC from one of its Bitcoin Reserve Offering vaults, with fewer than 10 users affected.<\/li>\n<li>Security researchers estimate that the attacker abused a double-minting flaw in a BitcoinReserveOffering contract.<\/li>\n<li>The project has offered a 10% bounty for the return of the funds.<\/li>\n<\/ul><\/div>\n<\/div>\n<p><!-- .cn-block-summary --><\/p>\n<p>Solv Protocol is a DeFi platform that allows users to stake Bitcoin through its Staking Abstraction Layer.\u00a0<\/p>\n<p>According to a post incident <a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/x.com\/SolvProtocol\/status\/2029612210490933697?s=20\" target=\"_blank\" rel=\"nofollow\">update<\/a>, roughly 38 Solv Protocol BTC (SolvBTC), which the project uses for yield-generating and lending activities across its ecosystem, was drained from one of its structured yield vaults called Bitcoin Reserve Offerings (BRO).<\/p>\n<p>Solv Protocol said that the incident impacted fewer than 10 users and added that it would compensate for the loss of 38.05 SolvBTC, which amounts to roughly $2.7 million.<\/p>\n<p>While a full post-mortem of the incident is yet to be published, third-party security analysts believe the attacker was able to abuse a double-minting flaw in a BitcoinReserveOffering contract.<\/p>\n<p>    <!-- .cn-block-related-link --><\/p>\n<p>Per security firm Decurity\u2019s automated <a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/x.com\/DefimonAlerts\/status\/2029593179863883873\" target=\"_blank\" rel=\"nofollow\">bot<\/a>, the exploiter was able to trigger the vulnerability 22 times, which allowed them to inflate 135 BRO into roughly 567 million BRO tokens before converting the funds into SolvBTC.<\/p>\n<p>Meanwhile, a pseudonymous crypto researcher identified as Pyro <a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/x.com\/0x3b33\/status\/2029622099506254063?s=20\" target=\"_blank\" rel=\"nofollow\">described<\/a> the incident as a reentrancy attack, a common exploit where repeated calls to a smart contract allow attackers to manipulate internal accounting before balances are properly updated.<\/p>\n<p>In the meantime, Solv Protocol has offered a 10% bounty if the attackers return the funds to the designated address. Further, the project claims to be working with its security partners to patch the vulnerability.<\/p>\n<p>At the time of publication, the attackers have yet to indicate whether they intend to return the stolen funds.<\/p>\n<p>This is one of the several attacks that have targeted DeFi protocols of late.<\/p>\n<p>Earlier in the week, Curve Finance\u2019s sDOLA LlamaLend markets were exploited through a vulnerability tied to the pool\u2019s oracle configuration, and the attacker reportedly made about $240,000 by manipulating the pricing mechanism using a flash loan to trigger liquidations.<\/p>\n<p>In early February, the cross-chain liquidity protocol CrossCurve also lost roughly $3 million after attackers exploited a flaw in its smart contract that allowed spoofed cross-chain messages to bypass gateway validation and unlock funds from the PortalV2 contract.<\/p>\n<p>    <!-- .cn-block-related-link --><\/p><\/div>\n","protected":false},"excerpt":{"rendered":"<p>Bitcoin-focused Solv Protocol was exploited on Thursday, resulting in roughly $2.7 million worth of funds drained from one of its token vaults. The project has offered a 10% bounty to&hellip;<\/p>\n","protected":false},"author":1,"featured_media":23317,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-23316","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cryptocurrency"],"_links":{"self":[{"href":"https:\/\/bitunikey.com\/news\/wp-json\/wp\/v2\/posts\/23316","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/bitunikey.com\/news\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/bitunikey.com\/news\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/bitunikey.com\/news\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/bitunikey.com\/news\/wp-json\/wp\/v2\/comments?post=23316"}],"version-history":[{"count":1,"href":"https:\/\/bitunikey.com\/news\/wp-json\/wp\/v2\/posts\/23316\/revisions"}],"predecessor-version":[{"id":23318,"href":"https:\/\/bitunikey.com\/news\/wp-json\/wp\/v2\/posts\/23316\/revisions\/23318"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/bitunikey.com\/news\/wp-json\/wp\/v2\/media\/23317"}],"wp:attachment":[{"href":"https:\/\/bitunikey.com\/news\/wp-json\/wp\/v2\/media?parent=23316"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/bitunikey.com\/news\/wp-json\/wp\/v2\/categories?post=23316"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/bitunikey.com\/news\/wp-json\/wp\/v2\/tags?post=23316"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}