Resolv Labs moved Sunday to reassure users after an exploit hit the issuance mechanics of its USR stablecoin, knocking the token off its dollar peg and prompting decentralized finance (DeFi) protocols with exposure to move quickly to contain any fallout.
Cointelegraph reported earlier Sunday that an attacker exploited USRโs minting mechanics, creating tens of millions of unbacked tokens and dumping them through DeFi pools, which broke the stablecoinโs peg and prompted Resolv to pause protocol functions as it assessed the damage.
The token dropped as low as $0.14 (86% below its intended $1 price) after the exploit before rebounding to $0.42 at the time of writing, according to data from CoinGecko.
In a recent statement on X, the Resolv team said that the collateral pool โremains fully intact,โ and that the problem appears โisolated to USR issuance mechanics.โ Containment and impact assessment remain ongoing.
Onchain data from Arkham, corroborated by Web3 security firm Cyvers, showed that the attacker had converted most of the minted USR into Ether (ETH), selling part of the haul for about 11,400 ETH (around $24 million). Independent analysts also noted that the remaining 36.74 million USR was โstill being continuously dumped.โ
Michael Pearl, vice president GTM and strategy at Cyvers, told Cointelegraph that since the supply had inflated faster than the market could absorb and the token had immediately depegged, the value of the remaining tokens was significantly impaired.
Related: Google Threat Intel flags ‘Ghostblade’ crypto-stealing malware
DeFi protocols move to contain fallout
Decentralized finance (DeFi) protocols with exposure to Resolv raced to clarify their positions. Liquid staking provider Lido said that Lido Earn user funds were safe. Morpho cofounder Merlin Egalite emphasized that the lending protocolโs own contracts were unaffected and that only certain vaults had exposure, and Aaveโs founder, Stani Kulechov, said that the platform had no direct USR exposure and that Resolv was repaying its outstanding debt.
The X account โyieldsandmoreโ pointed to potential losses in Resolvโs junior RLP tranche, highlighting possible knock-on effects for yield platforms such as Stream and yoUSD that used RLP as collateral.ย
Pearl told Cointelegraph that, based on available data, the exposure appeared to be โrelatively concentratedโ in lending markets and leverage loops โrather than system-wide,โ and primarily in protocols that integrated USR, wstUSR, or RLP into lending, leverage or yield strategies.
Related: Hacked crypto tokens drop 61% on average and rarely recover, Immunefi report says
He said that several protocols, such as Euler, Venus, Lista and Fluid, had taken precautionary actions such as pausing markets or isolating vaults, while others had declared no exposure at all. โIt is more accurate to describe the risk as concentrated with localized spillover, rather than widespread contagion,โ he said.
Ledger chief technical officer Charles Guillemet also assessed the fallout on X, stating that, due to the relatively small size of USR, โthis is not a Terra Luna-type event.โ
Questions around limitations of security audits
Resolvโs smart contracts have undergone multiple audits since 2024, but Pearl said that, while audits were โnecessary,โ they were also โinherently static and scoped.โ Real-time, artificial intelligence-powered monitoring to โcontinuously analyze protocol activityโ was needed, he argued, to detect anomalies as they emerge.
For stablecoin systems specifically, he said that meant monitoring mint and burn flows against expected behavior in real time, continuously validating supply against reserves and backing assets, and detecting anomalies in oracle inputs, pricing and liquidity conditions.ย
Security firm Pashov, which audited Resolvโs staking module in July 2025, told Cointelegraph that Resolvโs design was โgood,โ and that the root cause was โnot the design so much as the private key compromise,โ which was likely an operational security flaw. โWe have to understand how that happens,โ he said.
Cointelegraph reached out to Resolv Labs for comment but had not received a response by publication.
AI Eye: IronClaw rivals OpenClaw, Olas launches bots for Polymarket
