🚨 A quick on the @ResolvLabs hack yesterday: Resolv Labs' yield-backed stablecoin USR suffered a major exploit yesterday: an attacker compromised a privileged private key (SERVICE_ROLE EOA), minting ~80M unbacked USR tokens using just ~$100–200K USDC collateral. - USR depegged violently → low ~$0.025 on Curve before partial recovery. - Attacker dumped → extracted ~$23–25M (mostly in ETH after swaps via DEXs like Curve/Uniswap). - Protocol paused quickly; collateral pool (~$141M) remains intact, only ~$0.5M pre-pause loss. - Team burned ~9M attacker-held USR; planning redemptions for legitimate pre-exploit holders starting today (allowlist first). Spillover hit lending protocols (Morpho, Fluid, etc.) via bad debt/liquidations. @0xfluid secured emergency loans & confirmed full coverage of their bad debt → no user losses there. Classic reminder: even "secure" DeFi can have single-point failures when hybrid off-chain signing is involved.