humanityprotocolprivatekeyhack$36m

Humanity Protocol said attackers stole more than $36 million after project-linked private keys were compromised. Attackers drained 141.2 million H and minted another 200,000,005 H through malicious contract upgrades. CoinGecko data showed H trading near $0.20, down 73% on the day. The team halted deposits and withdrawals to the affected bridges.

Wallets linked to the decentralized identity project Humanity Protocol were drained for over $32 million following a private key compromise, causing its native H token to plunge dramatically. The incident highlights ongoing key management risks in crypto.
Humanity Protocol, a decentralized identity project using palm-scan biometrics and zero-knowledge proofs, has become the latest victim of a major security incident centered on private key management.
On June 8, 2026, onchain analyst Specter first flagged the drainage of approximately 17 wallets tied to the project, with initial losses estimated in the millions before climbing above $32 million.
According to reports, attackers compromised private keys belonging to a member of the Humanity Foundation. The stolen assets were swapped primarily for Ethereum, with additional pressure from the minting of 100 million new H tokens on BNB Chain.
Terence Kwok, founder of Humanity Protocol, acknowledged the breach on X, stating the team is working with security experts and exchange partners. “We’re deeply sorry — protecting this community is our responsibility,” he wrote. The project advised users to steer clear of its bridge and liquidity pools during the ongoing response.
The exploit fits a broader 2026 pattern where key compromises, rather than smart contract vulnerabilities, have driven significant losses. Humanity Protocol positions itself as a privacy-focused alternative to projects like Worldcoin, enabling users to verify their humanity without revealing personal data through biometrics and zk-proofs.
Market reaction was swift and severe. The H token dropped from around $0.67–$0.78 to as low as $0.05, representing an intraday decline of nearly 90%, before partially recovering to trade near $0.13 amid heavy volume. Onchain observers noted the attacker converting holdings into ETH and BNB.
Prominent investigator ZachXBT expressed skepticism about the official narrative, suggesting it could involve market maker activity rather than a straightforward theft, citing concerns over the project’s background.
This incident underscores persistent challenges in crypto security, particularly around key custody and foundation-level access, even for projects emphasizing advanced privacy technologies. As the team continues its investigation, the event may prompt further scrutiny of biometric identity solutions and their operational safeguards.
Disclaimer: This article is for informational purposes only and does not constitute advice of any kind. Readers should conduct their own research before making any decisions.
#HumanityProtocolPrivateKeyHack$36M

Humanity Protocol said final losses from a recent private key leak totaled $36 million. The protocol said malware infected a foundation employee's laptop and leaked private keys from the multi-signature wallet controlling its cross-chain bridge. The foundation suspended deposits and withdrawals for affected bridge services and is cooperating with law enforcement to recover stolen funds.

Humility Protocol said its H token suffered a coordinated attack on Ethereum and BSC yesterday, with confirmed losses exceeding $36 million. Preliminary investigations indicate that a compromised employee computer leaked private keys for multi-signature wallets controlling the Hyperlane Bridge ProxyAdmin. Humility suspended deposits and withdrawals on affected bridge services and is cooperating with police to recover part of the stolen funds.