The exploit triggered a sharp market selloff, and caused the H token to plunge by more than 80% within 12 hours. Founder Terence Kwok confirmed the incident and advised users to avoid interacting with the protocol’s bridge and liquidity pools while the team investigates. Humanity Protocol Hit by Major Hack Humanity Protocol, a decentralized identity project that is often referred to as the “Chinese Worldcoin,” suffered a major security breach after private keys linked to a member of the Humanity Foundation were compromised. The incident resulted in the theft of more than $30 million worth of the project’s native H token and triggered a dramatic market selloff that sent the token’s value tumbling. The security incident was confirmed by Humanity Protocol founder and CEO Terence Kwok, who stated that the project detected a compromise involving private keys belonging to a foundation member. After the discovery, Kwok urged users to avoid interacting with the protocol’s bridge and liquidity pools until further notice while the team works alongside security experts to investigate the attack and secure the ecosystem. Humanity Protocol is a decentralized identity platform built on a zkEVM blockchain and focuses on Proof of Humanity verification through privacy-preserving palm biometric technology. The project aims to create a secure digital identity system while protecting user privacy through advanced cryptographic methods. The exploit had an immediate impact on the market. According to data from CoinCodex, the H token lost approximately 85% of its value within a 12-hour period, plunging from around $0.70 to roughly $0.08. H token’s price over the past 24 hours (Source: CoinCodex) Blockchain investigator Specter reported that the attack looks to be ongoing, with wallets connected to or previously interacting with Humanity Protocol reportedly being compromised. The investigator estimated that attackers drained as much as $30 million worth of H tokens from affected wallets. Blockchain analytics platform Arkham Intelligence also tracked the attacker’s activity and reported that the stolen funds were being swapped through decentralized exchanges including Kyber Network and PancakeSwap. The movement and liquidation of the stolen tokens added even more selling pressure on the market, and sped up the token’s decline. The Humanity Protocol incident is the latest in a growing list of private key-related security breaches affecting the cryptocurrency sector in 2026. One of the biggest incidents occurred earlier this year when attackers associated with North Korea’s Lazarus Group allegedly compromised administrative security council keys connected to Drift Protocol, which resulted in losses of approximately $280 million. Other projects affected by private key or wallet compromises this year include Step Finance, Resolv, Volo Vault, Echo Bridge, Bankr, Polymarket, StablR, Stake DAO, Gravity Bridge, and Alephium Bridge. According to blockchain security firm CertiK , wallet and private key compromises ranked as the second most expensive attack vector during May alone, accounting for approximately $13.7 million in losses.
