Humanity Protocol Founder Confirms Private Key Breach as H Token Collapses 90% in $32M Exploit

Safety incident exposes a Humanity Basis member’s credentials, sending the biometric identification mission into disaster — and elevating deeper questions on insider involvement

Humanity Protocol’s H token crashed greater than 80% after attackers stole the personal keys behind the mission and drained greater than $30 million, the most recent in a 12 months of crypto thefts that concentrate on keys quite than code.

What Occurred

On-chain analyst Specter was first to flag the assault, reporting that greater than 17 wallets holding H had been drained. Early losses topped $5 million earlier than reportedly rising to greater than $30 million. Blockchain monitoring platform Lookonchain confirmed the dimensions of the injury because it unfolded in actual time.

The stolen tokens have been rapidly swapped into Ethereum through decentralized exchanges, accelerating downward stress on the H token. Compounding the injury, the attacker minted a further 100 million H tokens on the BNB Chain, valued at roughly $11 million on the time, intensifying the selloff and deepening the value collapse.

In keeping with blockchain analytics platform Lookonchain, the attacker continued minting H tokens after the exploit, first creating 100 million H tokens on BNB Good Chain earlier than minting one other 100 million.

H fell from about $0.67 to close $0.13 and briefly touched $0.05 — an intraday drop of about 90%.

The Humanity Protocol has been exploited for greater than $30 million (Supply: Lookonchain)

Founder Confirms the Breach

Founder Terence Kwok confirmed that the breach stemmed from compromised personal keys belonging to a Humanity Basis member, not a flaw within the protocol’s sensible contracts. The workforce issued an pressing advisory instructing customers to halt all interactions with its bridge and liquidity swimming pools whereas mitigation efforts proceed.

In a public assertion on X, Kwok wrote: “We’ve detected a safety incident involving the compromise of personal keys belonging to a member of the Humanity Basis. As a precaution, please don’t work together with the bridge or any liquidity swimming pools till we verify it’s protected. We’re already working with safety specialists.”

Safety agency Blockaid reported that the attacker had taken management of the H token’s proxy administrator on BSC Chain, which gave them the power to mint new tokens — an influence that raised instant considerations amongst traders, as unauthorized provide will increase can considerably influence market confidence and token economics.

Humanity Protocol founder Terence Kwok Confirms the Hack

What Is Humanity Protocol

Humanity Protocol launched in 2024 as a decentralized digital identification community constructed round palm biometrics and zero-knowledge proofs. The mission was designed to confirm actual human customers and filter out bots and pretend accounts, and that pitch helped draw severe institutional consideration. The mission raised $50 million throughout two funding rounds backed by Pantera Capital, Leap Crypto, Animoca Manufacturers, and Blockchain.com, and it reached a reported valuation of $1.1 billion.

The mission had positioned itself as a direct rival to Sam Altman’s Worldcoin, permitting customers to show their humanity with out disclosing private information — a pitch that gained momentum as considerations about AI-generated bots proliferated throughout the web. Its June 2025 token launch was adopted by controversy, nevertheless, with reviews citing inner conversations suggesting that solely round 1 million of the 9 million registered identities had accomplished biometric verification.

The Unlock Strain Forward

The timing of the hack provides one other layer of concern. Information exhibits a bigger batch of about 266 million H, value round $28 million, is about to unlock on June 25 throughout six allocations that embrace the inspiration treasury and a strategic reserve. With the token already decimated, the prospect of extra provide hitting the market has raised alarm amongst remaining holders.

ZachXBT Questions the Official Story

The workforce’s account has not gone unchallenged. Distinguished on-chain sleuth ZachXBT mentioned he doesn’t belief the workforce’s rationalization and raised suspicions that the incident might have been staged. “Not sure whether or not it’s a theft or MM (market maker),” ZachXBT wrote. “I’m not shopping for the workforce’s story; it’s a handy means for the energetic MM to have exited.”

ZachXBT’s post was blunt: the workforce selected to pump their token for weeks with zero fundamentals and now expects Crypto Twitter to blindly belief their story. He demanded the workforce disclose their energetic market maker agreements with a Hong Kong entity earlier than asking for group belief.

ZachXBT additionally identified that three out of the 4 mission leaders have a doubtful previous — going through lawsuits, monetary fraud, and ineffective administration. The mission has not but responded to these particular allegations.

A part of a Broader 2026 Development

The Humanity Protocol incident is much from remoted. The hack suits the dominant sample of 2026, wherein the largest losses have come from stolen keys quite than flawed code. Solana alternate Drift misplaced about $285 million in April after attackers seized an administrative key, and Kelp DAO misplaced roughly $292 million the identical month by way of a single-validator bridge.

These assaults bypass protocol-level safety and as an alternative exploit operational weaknesses, usually leading to sooner and extra damaging outcomes. The occasion is prone to intensify scrutiny on key custody practices, notably for tasks selling decentralization whereas sustaining centralized management factors.

What Customers Ought to Do

Humanity Protocol has urged all customers to keep away from interacting with its bridge or liquidity swimming pools till the workforce points an all-clear. The mission has additionally warned customers to rely solely on official communication channels and stay alert to potential scams and impersonation makes an attempt that always emerge following main safety incidents.

The H token is down 89% previously 24 hours, based on CoinGecko information. On-chain analysts proceed monitoring the attacker’s wallets, although restoration of funds seems unlikely at this stage. The complete image of what occurred — whether or not an exterior breach or one thing extra deliberate — stays underneath investigation.