Humanity Protocol's H token plunged over 80% on Tuesday after attackers compromised private keys tied to the project, seized bridge admin controls, and stole over $36 million across Ethereum and BNB Chain. The attack, which occurred on Monday, was traced to a breach following an employee's laptop compromise. Attackers compromised three of six Gnosis Safe keys on Ethereum and three of five on BSC, draining 141.2 million H and minting another 200 million H through malicious contract upgrades. The token plummeted from a high of $0.73132 to a low of $0.079606, an 89% drop, before recovering near $0.20. The team halted bridge activity and warned users not to interact with related infrastructure. This hack extends a devastating year for DeFi security, with over $885 million lost to exploits in the first half of 2026, according to DeFiLlama. Cyvers CTO Meir Dolev described it as an operational security failure rather than a smart contract bug, noting the attacker used a private key tied to a Humanity Foundation member to gain admin access. The attacker still holds large amounts of H but cannot fully cash out due to thin liquidity. Founder Terence Kwok confirmed the breach and promised a post-mortem. Initially flagged by ZachXBT as potentially staged, he later retracted that suggestion, calling the incident independent of market maker activity.

Key facts

• Attackers drained $36M+ in H tokens across Ethereum and BNB Chain on June 8, 2026.
• Private key compromise from a laptop breach gave attackers admin control of bridges.
• H token price crashed 89% from $0.73 to $0.08, later recovered to $0.20.
• Team halted bridge operations and warned users to avoid interacting with protocol.
• Year 2026 DeFi losses exceed $885M in first half, per DeFiLlama.

KeyAudit data perspective