sam_dev 
The DeFi ecosystem continues to be shaken as a liquidity provider related to 1inch has just become the target of an ongoing attack, causing millions of USD in damages and raising further concerns about the increasing wave of hacks in 2026.
According to a report from blockchain security company Blockaid, the market maker and liquidity provider TrustedVolumes was exploited, resulting in approximately 5.87 million USD in assets being withdrawn from the system. The information was published on the social media platform X, where Blockaid stated that the attack directly targeted the “resolver contract” of TrustedVolumes on the Ethereum network.
The stolen assets include 1,291.16 WETH, 206,282 USDT, 16,939 WBTC, and 1,268,771 USDC. These are all highly liquid assets commonly used in DeFi trading activities, indicating that the attacker had a clear target and deep exploitation capabilities.
Blockaid believes the perpetrator behind this incident is likely the same entity that carried out the 1inch Fusion V1 hack in March 2025, which caused a loss of about 5 million USD. However, notably, the attack method this time is different: instead of exploiting an old vulnerability, the hacker took advantage of a new weakness related to the custom RFQ proxy swap mechanism controlled by TrustedVolumes. This shows that the attack group is continuously monitoring and researching DeFi systems to find new weaknesses.
By the next day, TrustedVolumes officially confirmed the incident and updated that the total damage had increased to approximately 6.7 million USD. The unit stated that it is considering implementing a bug bounty program to encourage the security community to help trace and fix the vulnerability, a strategy increasingly popular in the DeFi industry to minimize risks and restore user trust.
Meanwhile, 1inch quickly issued a statement reassuring the community that the incident did not affect the platform’s system, infrastructure, or user assets. 1inch emphasized that TrustedVolumes operates independently and provides liquidity to various protocols in the industry, not exclusively partnering with 1inch. Nevertheless, the project is still closely coordinating with security units to monitor developments and provide support when necessary.
The incident occurs amid a sharp increase in attacks on the decentralized finance sector. Just last month, the market witnessed a series of shocking hacks, including a 285 million USD social engineering attack targeting Drift and a 293 million USD exploit aimed at Kelp DAO. Data from DefiLlama shows that April alone recorded a total of 635.2 million USD stolen from hacks and exploits — the highest level since February 2025, when the Bybit exchange was hacked for nearly 1.5 billion USD.
