Unleash Protocol suffers $3.9M loss after multisig hijack

First reported

31.12.2025 17:54

Last updated

1 unique sources, 1 articles

Summary

Hide ▲

Unleash Protocol, a decentralized intellectual property platform, lost approximately $3.9 million in cryptocurrency after an attacker gained administrative control of its multisig governance system. The attacker performed an unauthorized contract upgrade, enabling unauthorized asset withdrawals. The stolen funds were subsequently laundered through Tornado Cash, a cryptocurrency mixing service. Unleash Protocol has paused operations and initiated an investigation.

Timeline

31.12.2025 17:54 1 articles · 23h ago

Unleash Protocol loses $3.9M after multisig hijack
An attacker gained administrative control of Unleash Protocol's multisig governance system and performed an unauthorized contract upgrade, enabling unauthorized asset withdrawals. The stolen assets were laundered through Tornado Cash, a cryptocurrency mixing service. Unleash Protocol has paused operations and initiated an investigation.
Show sources

Hackers drain $3.9M from Unleash Protocol after multisig hijack — www.bleepingcomputer.com — 31.12.2025 17:54
Open in new tab

Information Snippets

An attacker gained administrative control of Unleash Protocol's multisig governance system.
First reported: 31.12.2025 17:54

1 source, 1 article
Show sources
- Hackers drain $3.9M from Unleash Protocol after multisig hijack — www.bleepingcomputer.com — 31.12.2025 17:54
The attacker performed an unauthorized contract upgrade, enabling unauthorized asset withdrawals.
First reported: 31.12.2025 17:54

1 source, 1 article
Show sources
- Hackers drain $3.9M from Unleash Protocol after multisig hijack — www.bleepingcomputer.com — 31.12.2025 17:54
The stolen assets included WIP, USDC, WETH, stIP, and vIP, totaling approximately $3.9 million.
First reported: 31.12.2025 17:54

1 source, 1 article
Show sources
- Hackers drain $3.9M from Unleash Protocol after multisig hijack — www.bleepingcomputer.com — 31.12.2025 17:54
The stolen funds were bridged via third-party infrastructure and transferred to external addresses.
First reported: 31.12.2025 17:54

1 source, 1 article
Show sources
- Hackers drain $3.9M from Unleash Protocol after multisig hijack — www.bleepingcomputer.com — 31.12.2025 17:54
The attacker deposited 1,337 ETH into Tornado Cash to launder the stolen funds.
First reported: 31.12.2025 17:54

1 source, 1 article
Show sources
- Hackers drain $3.9M from Unleash Protocol after multisig hijack — www.bleepingcomputer.com — 31.12.2025 17:54
Unleash Protocol has paused all operations and launched an investigation with external security experts.
First reported: 31.12.2025 17:54

1 source, 1 article
Show sources
- Hackers drain $3.9M from Unleash Protocol after multisig hijack — www.bleepingcomputer.com — 31.12.2025 17:54

Summary

Timeline

Unleash Protocol loses $3.9M after multisig hijack

Information Snippets