What to know : StablR suspended USDR/EURR operations after a cyberattack. The tokens are now under-collateralized and don't meet the 1:1 backing required by MiCA. The breach, linked to a 1-of-3 multisig wallet weakness, allowed attackers to compromise a key and mint $13.5M in unbacked tokens, netting them $2.8 million. Following the breach, the tokens briefly lost up to 50% of their peg; USDR is at $0.994 and EURR is significantly lower at $0.548.
European stablecoin issuer StablR has suspended minting and redemption services for its USDR and EURR tokens after a cyberattack left the assets under-collateralized, according to a company statement.
Onchain investigator ZachXBT publicly flagged the exploit over the weekend, posting that two contracts tied to StablR's USDR and EURR stablecoins appeared compromised.
The Malta-based firm said it detected “irregularities” in its systems after internal alerts triggered an investigation.
StablR froze token operations and asked exchanges to halt trading, deposits and withdrawals for both stablecoins while the company investigates the breach. USDR currently has a $20 million market capitalization, while EURR has a $10 million market cap, according to CoinGecko data.
StablR acknowledged that the circulating supply of USDR and EURR is “currently not fully backed at the 1:1 ratio" as required under the European Union’s Markets in Crypto-Assets (MiCA) regulation.
The company said it plans to notify Malta’s financial regulator, the Malta Financial Services Authority, under the EU’s Digital Operational Resilience Act and MiCA reporting rules. External cybersecurity firms and law enforcement agencies are also involved.
Blockchain security firm GoPlus Security said the attack may have stemmed from a weakness in StablR’s Ethereum multisignature wallet setup.
The minting wallet was configured with a 1-of-3 multisignature threshold, according to GoPlus. Any one of three authorized owners could approve transactions alone.
Researchers say the attackers compromised a single key, added themselves as an administrator and removed the legitimate signers. They then minted roughly 8.35 million USDR and 4.5 million EURR, about $13.5 million in unbacked tokens at peg.
Thin liquidity on decentralized exchanges meant the attackers netted roughly $2.8 million after offloading the freshly minted supply.
StablR’s tokens briefly lost as much as 50% of their peg before starting to recover. USDR is now at $0.994, while EURR is at $0.548, far below the euro’s current value of $1.16.
Chief Executive Officer Gijs op de Weegh said the company is acting “with full transparency” as the investigation continues.
免责声明:本文章仅代表作者个人观点,不代表本平台的立场和观点。本文章仅供信息分享,不构成对任何人的任何投资建议。用户与作者之间的任何争议,与本平台无关。如网页中刊载的文章或图片涉及侵权,请提供相关的权利证明和身份证明发送邮件到support@aicoin.com,本平台相关工作人员将会进行核查。
