- The TRU token plunged from $0.1659 to nearly zero, wiping out its market value.
- Liquidity on decentralized exchanges dried up following the exploit.
- The attacker’s wallet was linked to a prior protocol exploit 12 days earlier.
A significant security breach at Truebit Protocol produced one of the most dramatic collapses seen this year in decentralized finance.
The blockchain project, which focuses on verifiable computation, lost roughly $26.5 million after an attacker exploited a vulnerability in its smart contract system.
The incident caused the protocol’s native TRU token to nearly reach zero, and liquidity across decentralized exchanges was severely strained.
On-chain movements after the attack reveal how quickly funds were drained, underscoring ongoing risks tied to smart contract design and monitoring throughout the DeFi sector.
How the exploit unfolded
The intrusion was first flagged by security firm PeckShield, which detected a series of suspicious transactions on the Ethereum network.
Analysis shows the attacker drained nearly 8,500 ETH from the Truebit protocol.
At the time of the exploit, the stolen cryptocurrency was worth approximately $26.5 million.
On-chain data indicates the funds were rapidly split and moved into two separate wallets, identified as 0x2735…cE850a and 0xD12f…031a60.
Splitting funds in this way is a common technique used to complicate tracking and reduce the likelihood of recovery.
PeckShield’s preliminary findings suggest the exploit targeted a flaw in the protocol’s contract architecture, although detailed technical postmortems have not yet been released.
Token collapse and liquidity shock
The market impact was immediate. Truebit’s native TRU token effectively collapsed, falling from a daily high of $0.1659 to a low of $0.000000018.
This move effectively eliminated the token’s market capitalization within hours.
Liquidity on decentralized exchanges also quickly evaporated.
With depleted pools and shaken confidence, many token holders were unable to exit positions.
The episode highlighted how closely token valuations are tied to protocol security—especially for smaller DeFi projects, where trust can vanish rapidly once an exploit is confirmed.
Protocol response and containment measures
Following the breach, Truebit Protocol issued an official update confirming the incident.
The team stated that a specific smart contract was compromised and warned users not to interact with it until further notice.
The protocol said it is cooperating with law enforcement and taking steps to limit additional damage.
Users were also advised to rely only on official communication channels for updates during the investigation.
No timeline for remediation or possible recovery measures has been announced at this time.
Link to an earlier DeFi attack
PeckShield further reported that the wallet involved in the Truebit exploit was connected roughly 12 days earlier to another attack on the Sparkle protocol.
In that earlier incident, the attacker obtained tokens and later funneled funds through Tornado Cash, a privacy service commonly used to obscure transaction trails.
Repeated use of similar techniques suggests an experienced exploiter is actively scanning for vulnerabilities.
This linkage has raised broader concerns across the DeFi ecosystem, where a chain of connected attacks can amplify perceived risk beyond the directly affected projects.