{"id":73775,"date":"2026-06-09T11:16:43","date_gmt":"2026-06-09T11:16:43","guid":{"rendered":"https:\/\/crowdfundjunction.com\/blog\/humanity-protocol-loses-32m-in-private-key-hack-as-zachxbt-calls-incident-possibly-staged\/"},"modified":"2026-06-09T11:16:43","modified_gmt":"2026-06-09T11:16:43","slug":"humanity-protocol-loses-32m-in-private-key-hack-as-zachxbt-calls-incident-possibly-staged","status":"publish","type":"post","link":"https:\/\/crowdfundjunction.com\/blog\/humanity-protocol-loses-32m-in-private-key-hack-as-zachxbt-calls-incident-possibly-staged\/","title":{"rendered":"Humanity Protocol Loses $32M in Private Key Hack as ZachXBT Calls Incident &#8216;Possibly Staged&#8217;"},"content":{"rendered":"<p><b>(Originally posted on : Bitcoin News )<\/b><br \/>\n<\/p>\n<div>\n<p><span style=\"font-weight:400\"><\/p>\n<div class=\"@container mb-[25px] rounded-sm overflow-clip py-0.5 pr-0.5 pl-2.5 bg-success-100\">\n<div class=\"flex flex-col gap-m overflow-clip rounded-[6px] !bg-success-10 p-3 @[420px]:p-m\">\n<h2 class=\"m-0 flex items-center gap-s text-[19px] !text-[#1c1c1c] md:text-[20px]\"><svg xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"16\" height=\"10\" viewbox=\"0 0 16 10\" fill=\"none\" class=\"shrink-0 text-success-100\" aria-hidden=\"true\"><path d=\"M1 1.5h14\" stroke=\"currentColor\" stroke-width=\"2.5\" stroke-linecap=\"round\"\/><path d=\"M1 8.5h10\" stroke=\"currentColor\" stroke-width=\"2.5\" stroke-linecap=\"round\"\/><\/svg><span>Key Takeaways<\/span><\/h2>\n<ul class=\"m-0 flex list-none flex-col gap-m pl-0\">\n<li class=\"m-0 flex items-start gap-s !text-[#434248]\"><span class=\"mt-2 size-2 shrink-0 rounded-full bg-success-100\" aria-hidden=\"true\"\/><span class=\"text-body\">Wallets linked to Humanity Protocol were drained of over $32 million on June 9, with the H token down nearly 90%.<\/span><\/li>\n<li class=\"m-0 flex items-start gap-s !text-[#434248]\"><span class=\"mt-2 size-2 shrink-0 rounded-full bg-success-100\" aria-hidden=\"true\"\/><span class=\"text-body\">Founder Terence Kwok blamed a compromised private key, while ZachXBT alleged the team ran a \u201ccrime pump.\u201d<\/span><\/li>\n<li class=\"m-0 flex items-start gap-s !text-[#434248]\"><span class=\"mt-2 size-2 shrink-0 rounded-full bg-success-100\" aria-hidden=\"true\"\/><span class=\"text-body\">The attacker has minted fresh H on BNB Chain and converted holdings into 18,510 ether worth about $30.8 million.<\/span><\/li>\n<\/ul>\n<\/div>\n<\/div>\n<p><\/span><\/p>\n<h2><span style=\"font-weight:400\">A <span>Private Key<\/span> Breach Turns Into a Firestorm<\/span><\/h2>\n<p><span style=\"font-weight:400\">The exploit hit Humanity Protocol, an identity-verification network, early on June 9. According to onchain analyst Specter, wallets that interacted with the project were systematically drained, with 17 addresses holding the H token emptied for a combined total exceeding $32 million. Consequently, its native token plunged 89% in 24 hours, while other trackers logged losses closer to $30 million tied to a <span>private key<\/span> compromise.<\/span><\/p>\n<p><span style=\"font-weight:400\">Humanity founder Terence Kwok acknowledged the breach, saying it stemmed from the compromise of <span>private keys<\/span> belonging to a member of the Humanity Foundation. <span>Blockchain<\/span> data showed the attacker moving fast with roughly $23.7 million of the stolen value swapped into ether ( <span>ETH<\/span>), while about $7.9 million remained parked in H tokens as prices collapsed.<\/span><\/p>\n<figure id=\"attachment_821451\" aria-describedby=\"caption-attachment-821451\" style=\"width:740px\" class=\"wp-caption aligncenter\"><figcaption id=\"caption-attachment-821451\" class=\"wp-caption-text\">Image source: X<\/figcaption><\/figure>\n<p><span style=\"font-weight:400\">The drain did not stop at the initial theft. Analytics firm Lookonchain <a href=\"https:\/\/x.com\/lookonchain\/status\/2064208291723694459\" target=\"_blank\" rel=\"noopener noreferrer\">reported<\/a> that the Humanity hacker minted another 100 million H on <span>BNB<\/span> Chain and, through steady selling, had already obtained <\/span><span style=\"font-weight:400\">18,510 <span>ETH<\/span><\/span><span style=\"font-weight:400\"> worth about $30.83 million along with 1,548 <span>BNB<\/span> valued near $924,000. The same data showed the attacker still holding roughly 111 million H (about $14 million at depressed prices) though onchain <span>liquidity<\/span> was described as \u201cnearly exhausted,\u201d meaning further dumping would crater the price even more.<\/span><\/p>\n<p><span style=\"font-weight:400\">The minting of fresh tokens on a second chain is what has turned a routine exploit into a credibility crisis. Critics questioned how an attacker with a single compromised key could issue new supply at will, a power that normally rests with a project\u2019s own administrators.<\/span><\/p>\n<h2><span style=\"font-weight:400\">ZachXBT Throws Cold Water on the Team\u2019s Story<\/span><\/h2>\n<p><span style=\"font-weight:400\">That question was sharpened by ZachXBT, the pseudonymous investigator known for unwinding <span>crypto<\/span> frauds. He publicly doubted the official narrative, writing that the \u201cincident seems possibly staged\u201d and that he was \u201cnot buying the team\u2019s story,\u201d calling it \u201ca convenient way for the active market maker to have exited.\u201d <\/span><\/p>\n<p><span style=\"font-weight:400\">In a separate message aimed at the project, he accused the team of choosing to \u201c<\/span><span style=\"font-weight:400\">crime pump your token<\/span><span style=\"font-weight:400\"> for weeks with zero fundamentals\u201d and demanded it disclose their \u201cactive MM agreements with the HK entity first.\u201d<\/span><\/p>\n<figure id=\"attachment_821452\" aria-describedby=\"caption-attachment-821452\" style=\"width:745px\" class=\"wp-caption aligncenter\"><img loading=\"lazy\" decoding=\"async\" class=\"size-full wp-image-821452\" src=\"https:\/\/static.news.bitcoin.com\/wp-content\/uploads\/2026\/06\/humanity-protocol-loses-32m-in-private-key-hack-as-zachxbt-calls-incident-possibly-staged2_nwmk.jpg\" alt=\"ZachXBT tweet discussing Humanity's involvement in its own exploit.\" width=\"745\" height=\"564\" srcset=\"https:\/\/static.news.bitcoin.com\/wp-content\/uploads\/2026\/06\/humanity-protocol-loses-32m-in-private-key-hack-as-zachxbt-calls-incident-possibly-staged2_nwmk-300x227.jpg 300w, https:\/\/static.news.bitcoin.com\/wp-content\/uploads\/2026\/06\/humanity-protocol-loses-32m-in-private-key-hack-as-zachxbt-calls-incident-possibly-staged2_nwmk.jpg 745w\" sizes=\"auto, (max-width: 745px) 100vw, 745px\"\/><figcaption id=\"caption-attachment-821452\" class=\"wp-caption-text\">Image source: X<\/figcaption><\/figure>\n<p><span style=\"font-weight:400\">The allegation has flipped the episode from a security failure into a possible insider exit, one where a market maker might have offloaded a position under the cover of an \u201cexploit.\u201d Humanity has not publicly addressed ZachXBT\u2019s specific claims, and no independent confirmation of staging has emerged. <\/span><\/p>\n<p><span style=\"font-weight:400\">Whatever the truth, the timing is bleak as the episode has added to a brutal 2026 for <a href=\"http:\/\/www.bitcoin.com\/get-started\/a-quick-introduction-to-crypto\/\" class=\"lar_link lar_link_outgoing\" target=\"_blank\" rel=\"noopener noreferrer\">crypto<\/a> security. <a href=\"https:\/\/www.bitcoin.com\/\" class=\"lar_link lar_link_outgoing\" target=\"_blank\" rel=\"noopener noreferrer\">Bitcoin.com<\/a> News reported that April 2026 closed as the <\/span><a href=\"https:\/\/news.bitcoin.com\/defillama-confirms-april-2026-as-cryptos-most-hacked-month-with-30-incidents\/\"><span style=\"font-weight:400\">most-hacked month<\/span><\/a><span style=\"font-weight:400\"> in the industry\u2019s history by incident count, with Defillama logging close to 30 separate exploits. The year has already featured the <\/span><a href=\"https:\/\/news.bitcoin.com\/drift-protocol-sol-exploit-sees-over-200m-drained-biggest-defi-hack-of-2026\/\"><span style=\"font-weight:400\">Drift Protocol exploit<\/span><\/a><span style=\"font-weight:400\">, which saw more than $200 million drained in a single attack later attributed to North Korea-linked actors. <\/span><\/p>\n<p><span style=\"font-weight:400\"> <a href=\"http:\/\/www.bitcoin.com\/get-started\/what-is-a-private-key\/\" class=\"lar_link lar_link_outgoing\" target=\"_blank\" rel=\"noopener noreferrer\">Private key<\/a> compromises, in particular, have become one of the costliest attack vectors, because they hand thieves direct control of funds rather than requiring a smart-contract bug. <\/span><span style=\"font-weight:400\">For Humanity Protocol, the damage may be hard to reverse as a token down nearly 90% with exhausted <a href=\"http:\/\/www.bitcoin.com\/get-started\/what-is-liquidity\/\" class=\"lar_link lar_link_outgoing\" target=\"_blank\" rel=\"noopener noreferrer\">liquidity<\/a> is difficult to rebuild around, and the project now carries the added burden of an unresolved fraud allegation from one of the space\u2019s most-followed sleuths. <\/span><\/p>\n<\/p><\/div>\n<p><a href=\"https:\/\/news.bitcoin.com\/humanity-protocol-exploit-zachxbt-staged\/\">Source link <\/a><br \/>\n<br \/><\/p>\n","protected":false},"excerpt":{"rendered":"<p>(Originally posted on : Bitcoin News ) Key Takeaways Wallets linked to Humanity Protocol were drained of over $32 million on June 9, with the H token down nearly 90%. Founder Terence Kwok blamed a compromised private key, while ZachXBT alleged the team ran a \u201ccrime pump.\u201d The attacker has minted fresh H on BNB [&hellip;]<\/p>\n","protected":false},"author":3947362404,"featured_media":73776,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"om_disable_all_campaigns":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0},"categories":[32],"tags":[],"_links":{"self":[{"href":"https:\/\/crowdfundjunction.com\/blog\/wp-json\/wp\/v2\/posts\/73775"}],"collection":[{"href":"https:\/\/crowdfundjunction.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/crowdfundjunction.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/crowdfundjunction.com\/blog\/wp-json\/wp\/v2\/users\/3947362404"}],"replies":[{"embeddable":true,"href":"https:\/\/crowdfundjunction.com\/blog\/wp-json\/wp\/v2\/comments?post=73775"}],"version-history":[{"count":0,"href":"https:\/\/crowdfundjunction.com\/blog\/wp-json\/wp\/v2\/posts\/73775\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/crowdfundjunction.com\/blog\/wp-json\/wp\/v2\/media\/73776"}],"wp:attachment":[{"href":"https:\/\/crowdfundjunction.com\/blog\/wp-json\/wp\/v2\/media?parent=73775"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/crowdfundjunction.com\/blog\/wp-json\/wp\/v2\/categories?post=73775"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/crowdfundjunction.com\/blog\/wp-json\/wp\/v2\/tags?post=73775"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}