Humanity Protocol says an attacker compromised private keys tied to a foundation member, then used them to drain funds from at least 17 Gnosis Safe wallets across Ethereum and BNB Chain. The project estimates total losses at about $36 million.
The incident traces back to a compromised laptop at the foundation. The project’s post links the breach to the attacker obtaining signing authority, not to an exploit of Humanity Protocol’s smart contracts. That distinction matters because it points at operational security failures, and because remediation is likely to focus on key custody and Safe configurations rather than protocol code.
What the attacker did
According to Humanity Protocol’s post, the attacker drained funds from “17 or more” Gnosis Safe wallets. The affected safes sit on both Ethereum and BNB Chain.
On BSC specifically, the attacker also minted an additional 100 million H tokens. Token minting by an unauthorized party is an especially blunt outcome. It expands supply and creates immediate accounting and trust problems even if the stolen value is later recovered.
The Defiant reported the scale as roughly $36 million in total losses.
Token impact and market reaction
The Defiant’s headline frames the token impact as sharp. It says the H token dropped nearly 70% after the incident.
That move is consistent with what markets tend to price during suspected key compromise events. Investors typically discount the asset because the token’s supply assumptions and treasury controls face a credibility hit. Even if the project later hardens custody, a hacked mint and drained safes force users to reassess counterparty risk.
Why Gnosis Safe here is a double-edged clue
Gnosis Safe deployments can be safer than ad hoc hot wallets, because they support structured approvals and role separation. But this incident underscores the operational reality behind every Safe: if the keys that authorize transactions are compromised, the Safe becomes a delivery mechanism for the attacker.
Humanity Protocol’s “17 or more” Safe count also suggests multiple deployments, roles, or treasury slices. When one custody path fails, every wallet that trusts the same compromised signing material can fall quickly.
What’s clear versus what’s still missing
Confirmed by Humanity Protocol’s own posting and summarized by The Defiant:
- A foundation member’s private keys were compromised.
- The attacker drained funds across Ethereum and BNB Chain.
- The attacker minted 100 million H tokens on BSC.
- The project estimates losses at about $36 million.
- The root cause, as described, involves a compromised foundation laptop.
What remains less concrete in the excerpt The Defiant provided:
- Which specific Safe owners or signer keys were stolen.
- Whether any attacker activity overlapped with particular block ranges or specific transaction types.
- Whether the project has disabled minting permissions or rotated all affected keys across both chains.
For readers, the actionable question is not just “how much was stolen.” It’s “how many other wallets were one laptop away from also being emptied.” The safe configuration and key rotation plan will determine the next phase of risk.
how many other wallets were one laptop away from also being emptied.
Next steps to watch
After a private-key compromise tied to a laptop, most of the work happens off-chain:
- Full key rotation for every affected signer and role.
- Safe permission audits to ensure a single compromised operator cannot authorize minting or draining.
- Supply control and on-chain enforcement if minting rights can be revoked.
Until those steps are confirmed publicly, Humanity Protocol’s reported losses remain only one part of the story. The harder part is preventing the next compromise from producing a second, similar mint.
| Fact | Detail |
|---|---|
| Incident type | Private key compromise tied to a foundation member laptop |
| Chains affected | Ethereum and BNB Chain |
| Wallets drained | 17 or more Gnosis Safe wallets |
| Additional token action | Minted 100 million H tokens on BSC |
| Loss estimate | About $36 million |
| Reported token reaction | H token down nearly 70% |