CoinDailies Logo

CoinDailies

Home
/
Crypto news
/
Daily updates
/

Thorchain exploit timeline: a history of breaches

Thorchain's Exploit Timeline | A Closer Look at Repeated Vulnerabilities

By

Fatima Zahra

May 18, 2026, 01:04 PM

Edited By

Jasper Greene

3 minutes of reading

A visual representation of Thorchain's security breaches over the years, showing key incidents and their impacts on users and network integrity.

A series of high-profile exploitations has raised alarm in the crypto space, particularly for Thorchain. Over the years, the platform has faced multiple setbacks, highlighting security breaches and questionable practices among developers.

Context of Recent Events

Thorchain has been hacked numerous times, with varying methods used across attacks. The latest incident has sparked intense scrutiny regarding developer accountability and user protection. Users are asking hard questions about the integrity of the platform and the role of its developers in securing funds.

Breakdown of Events

  1. Developers allegedly leave intentional security flaws open.

  2. A suspected malicious actor receives guidance about the flaw from developers.

  3. The DEX faces an exploit, leading to rampant social media outcry.

  4. Operations cease despite claims of decentralization.

  5. Developers identify and rectify the coding flaw they initially left open.

  6. Favorable media narratives emerge, painting a positive picture of developer responsiveness.

  7. Funds are laundered among actors, with users facing significant losses.

  8. Ongoing operations continue as though no harm has occurred.

Historical Context

Since its inception, Thorchain has experienced a total of six hacks within five years, each unique:

  • 2021: Smart contract bug exploiting the ETH Router.

  • 2022: A software bug brought about a 20-hour outage due to non-deterministic behavior.

  • 2023: TSS keygen vulnerability that could have permitted vault drains.

  • 2025 (Jan): Economic fault trapped $200M due to the performance of RUNE.

  • 2025 (Sep): Social engineering tactics exploited a co-founder's credentials for illicit gains.

  • 2026: Latest exploits targeted TSS cryptography flaws, leading to drained resources.

As commented in discussions, "Your hacking timeline seems a bit biased. Fixing exploits before they happen isn’t hacking; it’s devs doing their jobs.” This raises questions about the accountability for these breaches and their consequences.

Key Takeaways

  • πŸ”΄ $227M appears lost or trapped due to vulnerabilities.

  • πŸ’° $605M linked to stolen funds laundered via Bybit/Lazarus in 2025.

  • πŸ•΅οΈβ€β™‚οΈ "Curiously, developers ensure their flaws get addressed yet continue to face backlash."

User Sentiment

Many express frustration regarding the developers' handling of breaches. Questions persist about whether these incidents are indicative of deeper structural issues or simply bad luck.

"What evidence do you have for crypto being laundered back into developers' wallets?" asked one user.

Final Thoughts

As tensions rise, can Thorchain regain user trust? With a consistent track record of vulnerabilities, users remain cautious, expressing skepticism towards future operations. The saga continues as individuals weigh their options in a rapidly changing crypto arena.

What Lies Ahead for Thorchain's Trust?

As Thorchain navigates its latest security setbacks, there’s a strong chance that a period of increased regulatory scrutiny will follow. Experts estimate around 70% probability that regulators will step in to impose stricter guidelines on the platform, especially as user frustration mounts. This could lead to a fundamental shift in how decentralized exchanges operate, with greater emphasis on security protocols and developer accountability. Additionally, users may see evolving features, including enhanced security measures, in an effort to restore confidence. If Thorchain can successfully implement robust solutions, it might reclaim lost ground; however, failure to act could further erode trust, pushing users to seek alternatives among more stable platforms.

A Surprising Echo from the Past

The situation with Thorchain mirrors the aftermath of high-profile data breaches in the corporate world, such as the Target hack in 2013. Like Thorchain, Target faced severe backlash and skepticism regarding its commitment to security. In that case, the retailer ultimately turned its focus toward transparency and strengthened its IT policies, which eventually helped regain customer trust. This ongoing journey reflects a unique parallel: both scenarios highlight how a response to security mishaps can redefine a platform's reputation. Just as Target worked tirelessly to mend fences, Thorchain's future hinges on its ability to prioritize safety and open communication with its users.