Humanity Protocol founder Terence Kwok confirmed on X on June 9 that a security incident has occurred, saying that the private key of a member of the Humanity Foundation was leaked. Onchain Lens monitoring shows that addresses associated with Humanity Protocol have been stolen of/over more than $31 million, and the attack is still ongoing, with the hacker converting H tokens into ETH.
Specter’s on-chain analysis: wallets and theft addresses confirmed as affected
(Source: Arkham)
On-chain analyst Specter disclosed on X that more than 17 wallets holding H tokens or having interacted with Humanity Protocol were emptied, and the confirmed theft-related addresses include:
· 0x456Cb73b35022E4B524e5510807776453d984AeF
· 0xee4B6B8967Aa947ac3aEf540eE07ea6099C566F7
· 0x1dfe5cF3ED5a0AC82FDD0bFCdaC7B6C6323f844a
Specter noted that the affected wallets may share a common risk exposure related to Humanity Protocol, but as of the time of reporting, the root cause has not been confirmed.
Founder statement and user operation guidance
Terence Kwok’s public statement on X confirmed the following: the incident involves the leaked private key of a Humanity Foundation member; the team has contacted security experts and exchange partner(s); and it committed to continuously updating the situation at every step. Kwok’s user guidance: until official confirmation of safety, do not interact with bridging (cross-chain bridges) or any liquidity pools.
FAQ
Why are there two loss figures—$31 million and $19 million—for the Humanity Protocol private key leak?
Specter’s early monitoring report (for 17+ affected wallets) showed losses of more than $19 million, which was the figure as of the time of its report. Onchain Lens’ updated monitoring data shows that addresses associated with Humanity Protocol were drained of more than $31 million, reflecting cumulative losses as of a later time point; the gap between the two numbers reflects that the attack was still ongoing.
Why were wallets that had interacted with Humanity Protocol also affected?
According to Specter’s on-chain analysis, the attack pattern indicates that affected wallets may share common risk exposure related to Humanity Protocol, but as of the time of reporting, the specific technical path and root cause of the attack have not been confirmed. Specter and Terence Kwok both recommend that users who have interacted with Humanity Protocol immediately stop interacting with cross-chain bridges and liquidity pools, and wait for official safety confirmation.
After the H token plummeted by 89.2%, what steps are needed for Humanity Protocol’s subsequent security confirmation?
Based on Terence Kwok’s public statement, the team is working with security experts and exchange partner(s) to address the issue, and has committed to continuously update progress. The official has not yet released a specific timeline for completing security confirmation and restoring services; until the official announces security confirmation, interactions with bridges and liquidity pools should be paused.
