{"id":73002,"date":"2026-05-24T13:44:55","date_gmt":"2026-05-24T13:44:55","guid":{"rendered":"https:\/\/crowdfundjunction.com\/blog\/mica-compliant-euro-stablecoin-depegs-to-0-85-after-1-of-3-multisig-exploit-drains-millions\/"},"modified":"2026-05-24T13:44:55","modified_gmt":"2026-05-24T13:44:55","slug":"mica-compliant-euro-stablecoin-depegs-to-0-85-after-1-of-3-multisig-exploit-drains-millions","status":"publish","type":"post","link":"https:\/\/crowdfundjunction.com\/blog\/mica-compliant-euro-stablecoin-depegs-to-0-85-after-1-of-3-multisig-exploit-drains-millions\/","title":{"rendered":"MiCA Compliant Euro Stablecoin Depegs to $0.85 After 1-of-3 Multisig Exploit Drains Millions"},"content":{"rendered":"<p><b>(Originally posted on : Bitcoin News )<\/b><br \/>\n<\/p>\n<div>\n<div class=\"@container mb-[25px] rounded-sm overflow-clip py-0.5 pr-0.5 pl-2.5 bg-success-100\">\n<div class=\"flex flex-col gap-m overflow-clip rounded-[6px] !bg-success-10 p-3 @[420px]:p-m\">\n<h2 class=\"m-0 flex items-center gap-s text-[19px] !text-[#1c1c1c] md:text-[20px]\"><svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"16\" height=\"10\" viewbox=\"0 0 16 10\" fill=\"none\" class=\"shrink-0 text-success-100\" aria-hidden=\"true\"><path d=\"M1 1.5h14\" stroke=\"currentColor\" stroke-width=\"2.5\" stroke-linecap=\"round\"\/><path d=\"M1 8.5h10\" stroke=\"currentColor\" stroke-width=\"2.5\" stroke-linecap=\"round\"\/><\/svg><span>Key Takeaways<\/span><\/h2>\n<ul class=\"m-0 flex list-none flex-col gap-m pl-0\">\n<li class=\"m-0 flex items-start gap-s !text-[#434248]\"><span class=\"mt-2 size-2 shrink-0 rounded-full bg-success-100\" aria-hidden=\"true\"\/><span class=\"text-body\">StablR\u2019s EURR dropped to $0.85, and USDR fell between $0.40 to $0.64 on May 24 after attackers minted unbacked tokens.<\/span><\/li>\n<li class=\"m-0 flex items-start gap-s !text-[#434248]\"><span class=\"mt-2 size-2 shrink-0 rounded-full bg-success-100\" aria-hidden=\"true\"\/><span class=\"text-body\">A 1-of-3 multisig threshold reportedly let attackers hijack minting controls, draining roughly $2.8M in ETH.<\/span><\/li>\n<li class=\"m-0 flex items-start gap-s !text-[#434248]\"><span class=\"mt-2 size-2 shrink-0 rounded-full bg-success-100\" aria-hidden=\"true\"\/><span class=\"text-body\">Onchain observers flagged StablR\u2019s alleged weak multisig setup as a governance risk that MiCA regulation did not prevent.<\/span><\/li>\n<\/ul>\n<\/div>\n<\/div>\n<h2>EURR Drops 24%, and USDR Falls 37% as StablR\u2019s Two <span>Stablecoins<\/span> Depeg After Key Exploit<\/h2>\n<p>Reports say the breach did not stem from a <span>smart contract<\/span> flaw. Attackers reportedly gained access to a single <span>private key<\/span> controlling a 1-of-3 multisig wallet that governed StablR\u2019s minting function. With one key, the attacker removed legitimate signers, added a controlled address, and issued tokens without collateral backing.<\/p>\n<p>At 8:10 a.m. ET on Sunday, StablR addressed the issue on X, <a href=\"https:\/\/x.com\/StablREuro\/status\/2058520949075386683?s=20\" target=\"_blank\" rel=\"noopener noreferrer\">stating<\/a>:<\/p>\n<blockquote>\n<p>\u201cSecurity update: We have identified an exploit affecting StablR and are actively working to contain it and minimize impact. Protecting our users and your funds is our top priority. We\u2019ll share verified details and next steps as soon as possible.\u201d<\/p>\n<\/blockquote>\n<p>Onchain analysts <a href=\"https:\/\/x.com\/Shieldguardio\/status\/2058508177411637552?s=20\" target=\"_blank\" rel=\"noopener noreferrer\">estimated<\/a> the attacker minted approximately 8.35 million USDR and 4.5 million EURR before selling them across <span>DEX<\/span> trading pairs with thin <span>liquidity<\/span>. The extracted value was reported at roughly 1,115 <span>ETH<\/span>, equivalent to approximately $2.8 million, though total unbacked token issuance may have reached $10.4 million.<\/p>\n<p>The selling pressure broke both pegs quickly. <a href=\"https:\/\/markets.bitcoin.com\/crypto\/stablr-euro\" target=\"_blank\" rel=\"noopener noreferrer\">EURR<\/a> fell to $0.85, down close to 24%. <a href=\"https:\/\/markets.bitcoin.com\/crypto\/stablr-usd\" target=\"_blank\" rel=\"noopener noreferrer\">USDR<\/a> dropped further, trading at $0.64, a decline of nearly 36% year-to-date. USDR tapped an intraday low of $0.40. Both tokens also fell sharply against the U.S. dollar, <span>bitcoin<\/span>, and ethereum.<\/p>\n<figure id=\"attachment_816720\" aria-describedby=\"caption-attachment-816720\" style=\"width:1624px\" class=\"wp-caption aligncenter\"><figcaption id=\"caption-attachment-816720\" class=\"wp-caption-text\">USDR chart via markets. <span>bitcoin.com<\/span> on May 24, 2026.<\/figcaption><\/figure>\n<p>StablR markets EURR as a euro-pegged <span>stablecoin<\/span> and USDR as a dollar-pegged token, both positioned as regulated instruments under the European Union\u2019s Markets in Crypto-Assets (<a href=\"https:\/\/news.bitcoin.com\/mica-decoded-comparing-mica-eu-to-vara-dubai-and-mas-singapore\/\">MiCA<\/a>) framework with proof-of-reserves disclosures. The company bridges traditional finance and <span>decentralized finance<\/span> markets.<\/p>\n<p>Security firm Blockaid <a href=\"https:\/\/x.com\/blockaid_\/status\/2058372418557595890?s=20\" target=\"_blank\" rel=\"noopener noreferrer\">flagged<\/a> the incident publicly, describing the 1-of-3 threshold as a \u201ckey management and governance failure.\u201d Many observers commented that a single compromised key should not carry the power to issue currency, yet allegedly StablR\u2019s configuration allowed exactly that.<\/p>\n<p>\u201cEURR issuance was controlled by a 1\/3 multisig implementation (not Safe) whose signers the alleged attacker replaced,\u201d one X account <a href=\"https:\/\/x.com\/roinevirta\/status\/2058465437646520805?s=20\" target=\"_blank\" rel=\"noopener noreferrer\">wrote<\/a> on Sunday. \u201cThey then continued to transfer and mint new EURR to sell on secondary markets, leading to a secondary market depegs. It is worth noting that StablR has previously stated they use Tether\u2019s Hadron tokenisation platform to power EURR issuance.\u201d<\/p>\n<p>The individual added:<\/p>\n<blockquote>\n<p>\u201cIf this is an exploit, it is the first of its kind for a MiCA compliant <span>stablecoin<\/span>.\u201d<\/p>\n<\/blockquote>\n<p>While StablR acknowledged the exploit through its official X accounts, no detailed technical postmortem or recovery timeline was available as of the time of writing. Community analysts on X debated loss estimates ranging from $2.8 million to $10.4 million throughout the day. The wide variance reflects the difference between the ethereum ( <span>ETH<\/span>) extracted and the total face value of unbacked tokens introduced to the market.<\/p>\n<p>The incident fits a pattern seen across <span>stablecoin<\/span> issuers where administrative control rather than contract code is the point of failure. Higher multisig thresholds, time-locks on minting functions, rate limits, and anomaly detection systems are standard mitigations for <span>stablecoin<\/span> networks.<\/p>\n<p>The <a href=\"https:\/\/news.bitcoin.com\/european-commission-launches-mica-review-targeting-stablecoins-defi-and-staking-rules\/\">MiCA regulatory framework<\/a>, designed to bring accountability to <a href=\"http:\/\/www.bitcoin.com\/get-started\/what-are-stablecoins\/\" class=\"lar_link lar_link_outgoing\" target=\"_blank\" rel=\"noopener noreferrer\">stablecoin<\/a> issuers operating in Europe, does not appear to have required the operational controls that would have prevented this attack. Regulators and auditors may face pressure to address key management standards more directly following this event.<\/p>\n<p>Holders of EURR and USDR should monitor StablR\u2019s official channels for updates on any planned burn of the unbacked supply, reserve replenishment, or compensation. Major U.S. dollar <a href=\"http:\/\/www.bitcoin.com\/get-started\/what-are-stablecoins\/\" class=\"lar_link lar_link_outgoing\" target=\"_blank\" rel=\"noopener noreferrer\">stablecoins<\/a>, including <a href=\"https:\/\/buy.bitcoin.com\/?utm_source=News\" class=\"lar_link lar_link_outgoing\" target=\"_blank\" rel=\"noopener noreferrer\">USDT<\/a> and USDC were not affected.<\/p>\n<p>The broader <a href=\"http:\/\/www.bitcoin.com\/get-started\/what-are-stablecoins\/\" class=\"lar_link lar_link_outgoing\" target=\"_blank\" rel=\"noopener noreferrer\">stablecoin<\/a> market absorbed the event without significant contagion, but the StablR incident adds to a growing record of smaller and regionally focused issuers losing peg control through governance failures rather than code vulnerabilities.<\/p>\n<\/p><\/div>\n<p><a href=\"https:\/\/news.bitcoin.com\/mica-compliant-euro-stablecoin-depegs-to-0-85-after-1-of-3-multisig-exploit-drains-millions\/\">Source link <\/a><br \/>\n<br \/><\/p>\n","protected":false},"excerpt":{"rendered":"<p>(Originally posted on : Bitcoin News ) Key Takeaways StablR\u2019s EURR dropped to $0.85, and USDR fell between $0.40 to $0.64 on May 24 after attackers minted unbacked tokens. A 1-of-3 multisig threshold reportedly let attackers hijack minting controls, draining roughly $2.8M in ETH. Onchain observers flagged StablR\u2019s alleged weak multisig setup as a governance [&hellip;]<\/p>\n","protected":false},"author":19,"featured_media":73003,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"om_disable_all_campaigns":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0},"categories":[32],"tags":[],"_links":{"self":[{"href":"https:\/\/crowdfundjunction.com\/blog\/wp-json\/wp\/v2\/posts\/73002"}],"collection":[{"href":"https:\/\/crowdfundjunction.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/crowdfundjunction.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/crowdfundjunction.com\/blog\/wp-json\/wp\/v2\/users\/19"}],"replies":[{"embeddable":true,"href":"https:\/\/crowdfundjunction.com\/blog\/wp-json\/wp\/v2\/comments?post=73002"}],"version-history":[{"count":0,"href":"https:\/\/crowdfundjunction.com\/blog\/wp-json\/wp\/v2\/posts\/73002\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/crowdfundjunction.com\/blog\/wp-json\/wp\/v2\/media\/73003"}],"wp:attachment":[{"href":"https:\/\/crowdfundjunction.com\/blog\/wp-json\/wp\/v2\/media?parent=73002"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/crowdfundjunction.com\/blog\/wp-json\/wp\/v2\/categories?post=73002"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/crowdfundjunction.com\/blog\/wp-json\/wp\/v2\/tags?post=73002"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}