Beosin 🛡 Web3 Security & Compliance|May 26, 2026 09:04
🔐 "Multi-Signature" in Name Only: How a Single Private Key Led to $3M in Losses
On May 24, compliant stablecoin protocol StablR was exploited. Its euro stablecoin EURR and dollar stablecoin USDR both depegged by 20%, resulting in losses exceeding $3 million. 💸
The root cause was not a code vulnerability, but a failure in access control: the multi-signature wallets governing minting required only a single signature threshold, meaning one compromised private key was all it took for the attacker to mint tokens at will. 🔑
We conducted a full on-chain investigation of this incident, covering:
🔍 Attack vector reconstruction
💰 Stolen Funds Flow Analysis
📋 Involved address list
🗺️ Overall Fund Flow Diagram
👇 Click the original post for the full report and address list(Beosin 🛡 Web3 Security & Compliance)
Share To
Timeline
HotFlash
APP
X
Telegram
CopyLink