{"id":27782,"date":"2026-05-07T06:44:09","date_gmt":"2026-05-07T06:44:09","guid":{"rendered":"https:\/\/bitunikey.com\/news\/trustedvolumes-loses-nearly-6m-in-fresh-1inch-linked-exploit\/"},"modified":"2026-05-07T06:44:25","modified_gmt":"2026-05-07T06:44:25","slug":"trustedvolumes-loses-nearly-6m-in-fresh-1inch-linked-exploit","status":"publish","type":"post","link":"https:\/\/bitunikey.com\/news\/trustedvolumes-loses-nearly-6m-in-fresh-1inch-linked-exploit\/","title":{"rendered":"TrustedVolumes loses nearly $6M in fresh 1inch-linked exploit"},"content":{"rendered":"<p><\/p>\n<div class=\"post-detail__content blocks\">\n<p><strong>TrustedVolumes, a liquidity provider and market maker connected to 1inch, was hit by an ongoing exploit that drained about $5.87 million from its Ethereum resolver contract, <\/strong><a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/x.com\/blockaid_\/status\/2052198320420819089?s=20\" target=\"_blank\" rel=\"nofollow\"><strong>according<\/strong><\/a><strong> to blockchain security firm Blockaid.<\/strong><\/p>\n<div id=\"cn-block-summary-block_63a9abe695c9c0a51687e384708e9357\" class=\"cn-block-summary\">\n<div class=\"cn-block-summary__nav tabs\">\n        <span class=\"tabs__item is-selected\">Summary<\/span>\n    <\/div>\n<div class=\"cn-block-summary__content\">\n<ul class=\"wp-block-list\">\n<li>Blockaid said TrustedVolumes lost nearly $6 million from its Ethereum resolver contract during the exploit.<\/li>\n<li>The attacker was linked to the earlier 1inch Fusion V1 exploit from March 2025.<\/li>\n<li>The case adds pressure on DeFi market makers to review approvals and custom proxy risks.<\/li>\n<\/ul><\/div>\n<\/div>\n<p><!-- .cn-block-summary --><\/p>\n<p>The stolen assets <a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/bingx.com\/en\/flash-news\/post\/blockaid-flags-ethereum-attack-on-trustedvolumes-resolver-with-m-withdrawn?utm_source=chatgpt.com\" target=\"_blank\" rel=\"nofollow\">included<\/a> 1,291.16 WETH, 206,282 USDT, 16.939 WBTC, and 1,268,771 USDC. The attack affected a TrustedVolumes-controlled custom RFQ swap proxy, not a standard user swap route.<\/p>\n<p>Blockaid said the attacker was the same operator linked to the March 2025 1inch Fusion V1 exploit. However, the firm said the latest case used a different vulnerability tied to TrustedVolumes\u2019 custom RFQ swap proxy.<\/p>\n<p>    <!-- .cn-block-related-link --><\/p>\n<p>The March 2025 incident also affected third-party resolvers using 1inch Fusion V1. BlockSec later said that exploit <a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/blocksec.com\/blog\/1inch-incident-from-calldata-corruption-to-forged-settlement-binary-exploitation-goes-on-chain\" target=\"_blank\" rel=\"nofollow\">caused<\/a> more than $5 million in losses after attackers abused unsafe calldata handling and resolver trust assumptions.<\/p>\n<p>CertiK Alert, <a rel=\"nofollow\" target=\"_blank\" href=\"https:\/\/www.binance.com\/en\/square\/post\/320415398035666\" target=\"_blank\" rel=\"nofollow\">cited<\/a> by Binance News, said the attacker used a public function to register as an AllowedOrderSigner. The attacker then executed orders that moved pre-authorized funds from the victim address. CertiK advised users to revoke approvals linked to the affected contract.<\/p>\n<h2 class=\"wp-block-heading\"><strong>DeFi security pressure keeps rising<\/strong><\/h2>\n<p>The TrustedVolumes attack came after a difficult April for DeFi security. Crypto.news reported that protocols lost more than $606 million in the first 18 days of April alone, based on DefiLlama data.<\/p>\n<p>That total was led by two large cases. Drift Protocol lost about $285 million, while Kelp DAO lost about $292 million. Crypto.news said those two exploits accounted for most tracked April losses at that time.<\/p>\n<p>In a separate update, crypto.news reported that Wasabi Protocol lost more than $5 million across Ethereum, Base, Berachain, and Blast. Security firms said a compromised admin key allowed attackers to upgrade contracts and drain funds.<\/p>\n<h2 class=\"wp-block-heading\"><strong>Custom permissions remain a weak point<\/strong><\/h2>\n<p>The TrustedVolumes case puts attention back on resolver contracts, approval systems, and custom market-making tools. These systems often need special permissions to move funds and complete trades quickly.<\/p>\n<p>That structure can create risk when permissions remain active after contracts become vulnerable. It can also make losses larger when attackers find a way to act as trusted signers or route funds through approved contracts.<\/p>\n<p>The incident does not show that all 1inch users were directly affected. The available reports point to TrustedVolumes\u2019 own resolver and RFQ proxy setup as the affected area.<\/p>\n<p>    <!-- .cn-block-related-link --><\/p><\/div>\n","protected":false},"excerpt":{"rendered":"<p>TrustedVolumes, a liquidity provider and market maker connected to 1inch, was hit by an ongoing exploit that drained about $5.87 million from its Ethereum resolver contract, according to blockchain security&hellip;<\/p>\n","protected":false},"author":1,"featured_media":20547,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1],"tags":[],"class_list":["post-27782","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cryptocurrency"],"_links":{"self":[{"href":"https:\/\/bitunikey.com\/news\/wp-json\/wp\/v2\/posts\/27782","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/bitunikey.com\/news\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/bitunikey.com\/news\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/bitunikey.com\/news\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/bitunikey.com\/news\/wp-json\/wp\/v2\/comments?post=27782"}],"version-history":[{"count":1,"href":"https:\/\/bitunikey.com\/news\/wp-json\/wp\/v2\/posts\/27782\/revisions"}],"predecessor-version":[{"id":27783,"href":"https:\/\/bitunikey.com\/news\/wp-json\/wp\/v2\/posts\/27782\/revisions\/27783"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/bitunikey.com\/news\/wp-json\/wp\/v2\/media\/20547"}],"wp:attachment":[{"href":"https:\/\/bitunikey.com\/news\/wp-json\/wp\/v2\/media?parent=27782"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/bitunikey.com\/news\/wp-json\/wp\/v2\/categories?post=27782"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/bitunikey.com\/news\/wp-json\/wp\/v2\/tags?post=27782"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}