Sign in Subscribe

The 8-Hour Heist: How $27M Left Humanity Protocol

Allium Team

Allium Team

— 7 min read
Share
The 8-Hour Heist: How $27M Left Humanity Protocol
đź’ˇ
Someone stole a Humanity key, used itto grab 298 million H tokens (some newly made, some from the project's own wallet), and sold them for about $27 million in eight hours. Most of the money is still sitting in their wallets.

A step-by-step look at the June 8 attack, one wallet at a time, using Allium onchain data. The H token lost almost 90% of its value.

On June 8, 2026, someone holding a compromised Humanity Foundation key turned it into roughly 298 million H tokens, sold them across BNB Chain and Ethereum, and walked away with about $27 million in ETH and BNB. The token fell 88.7%. Most of the money is still sitting in the attacker's wallets.

The short version is easy to tell. The interesting part is how the operation actually moved, wallet by wallet, over the weeks before and the eight hours during. This post follows the money one address at a time so the sequence is legible, not just summarized.

It was a stolen key,not a hacked contract

This was a stolen-key incident, not a smart-contract bug. Humanity's own statement attributes it to compromised private keys belonging to a Foundation member and warns against touching the bridge or liquidity pools. The key carried mint and bridge authority, which is why the attack had two supply sources at once: 157 million H freshly minted on BNB Chain, and 141 million H of pre-existing supply released from a Humanity wallet on Ethereum. Both were dumped into DEX pools.

The deeper failure was key management. On paper, moving funds required a 3-of-6 multisig, meaning three of six approved signers had to agree. In practice the keys all sat on one employee's laptop, so the setup quietly became a 1-of-1: whoever controlled that single laptop controlled the entire system. Post-incident reporting put it bluntly, describing the laptop as the single key to the whole protocol. A multisig is only as strong as how its keys are actually stored.

A handful of wallets did everything, each with one job

Before the play-by-play, here is who is who. These roles were derived from the onchain flow and confirmed by the dense web of direct H transfers linking them.

  • Funder A — 0x0d0707... — a Gate.io-labeled address that paid gas to seed wallets.
  • Funder B — 0x9642b2... — a mixer-labeled address that seeded two more.
  • The minters — 0x6aa22cb8 (100M H), 0xb13d0532 (30M), 0x0fd9c519 (15M), 0xc5466395 (10M), and roughly fifteen others. These received the freshly minted BNB Chain supply.
  • The distributor — 0xd1ea823d... — the hub. It received the 141M H on Ethereum and fanned it out to the sellers.
  • The consolidation wallet — 0x9e9959... — the main wallet where the money ends up. Currently holds 9,700 ETH and 21.7M H.
  • The fan-out wallet — 0xAf2a49... — sprayed H to hundreds of fresh addresses. Holds 2,081 ETH and 1,802 BNB.
  • The dumper — 0x1dfe5c... — the wallet that sold into PancakeSwap, 1inch, and 0x on BNB Chain. Holds 734 ETH and 913 BNB.
  • The H-holder — 0xc6be45... — received H routed from pools. Holds 2.47M H and 131 WETH.
  • The dormant wallet — 0xA916... — an old wallet, funded back in May, that barely moved. Near- empty.
  • The mixer hop — 0x399740... — a pass-through that took $3.95M of ETH and emptied it toward a mixer.

The setup began six weeks before the attack

The operation did not start on June 8. It started in late April.

April 30. Funder A (Gate.io-labeled) sends a small amount of gas to minter 0xc5466395 . The wallet then does nothing for weeks.

May 19. The same Funder A sends 0.0126 ETH to the dormant wallet 0xA916 . A shared funder seeding two different wallets is itself a link: the same hand set them up.

May 26. Funder B (mixer-labeled) gas-funds two more minters, 0xb13d0532 and 0x0fd9c519 , on the same day. More dormant infrastructure.

June 1 to June 7. Minting on BNB Chain creeps up. The week of June 1 sees about 27 million H minted, against a normal weekly baseline near 5 million. Someone is warming up the mint authority before going loud.

By the night of June 8, the minting wallets are funded, the authority is tested, and nothing has been sold yet.

Once it started, the whole thing took eight hours

Now it moves fast. All times UTC.

17:32 and 17:40. Pre-positioning begins. Minter 0x0fd9c519 sends 6 million H to the consolidation wallet 0x9e9959 , and minter 0xb13d0532 follows with 22.6 million H. The main wallet is being loaded before the selling starts.

18:09. The dump begins. A funding wallet sends 290 ETH to the dumper 0x1dfe5c for gas and working capital, and the first H sales hit the pools on both chains at once.

18:35 onward. The consolidation wallet starts routing H to the H-holder 0xc6be45, eventually 40.9 million H across many small transfers, feeding the Ethereum sell side.

19:52. The biggest single move. The Humanity-labeled wallet 0x44f161 sends 141 million H to the distributor 0xd1ea823d on Ethereum. This is the pre-existing supply leg, released in one transaction.

20:42 to 22:07. The distributor fans it out: 3 million H to the dumper at 20:42, then 30 million H to the fan-out wallet 0xAf2a49 at 22:07, and 101.7 million H to the consolidation wallet across the rest of the night. Meanwhile the distributor and fan-out wallets get their own gas internally, from other wallets in the operation, only now that the attack is live.

21:45 to 22:00. The fan-out wallet earns its name. It sprays H, ETH, and BNB to several hundred fresh addresses in a fifteen-minute burst, the classic dispersal pattern.

June 9, 02:02 to 02:09. Still going. Minter 0x6aa22cb8 mints a fresh 100 million H on BNB Chain, the single largest mint of the whole event, hours after the dump began.

02:14 to 03:19. That same wallet immediately routes about 75 million of the 100 million back out, to a DEX settler, a pool, and a mixer-labeled address. The selling does not stop just because the night is late.

02:00 to 03:00. The proceeds pool back into the consolidation wallet, and the one laundering step of the night happens: the mixer hop 0x399740 takes $3.95 million of ETH and empties it toward a mixer.

On BNB Chain, 157 million tokens sold for only about $2 million

The mint figure is the most misread number in an incident like this. Creating 157 million H is not the same as stealing $157 million, for two reasons that the wallet trace makes concrete. First, selling crashes the price as it happens. On BNB Chain the H pool was shallow. Dumping that volume realized only about $2 million of

BNB, near $0.015 per token. The same selling on Ethereum's deeper Uniswap pools held a far better price, near $0.21 per token. Same token, roughly fourteen times the value per unit, decided entirely by which venue had liquidity. Second, a lot of the BNB Chain mint was never converted. Measuring H received from outside the network against H still held, the Ethereum leg is about 82% sold, but the BNB Chain leg is only about 44% sold. The network still holds roughly 88 million H on BNB Chain, much of it the late 100 million mint that had not cleared. The token count is large. The realized take is not.

The money is still sitting there, untouched

The proceeds sit overwhelmingly in ETH, with a smaller amount in BNB, and almost no stablecoins. The attacker did not convert to dollars or run the funds through cash-out rails. About $23 million is parked across the cluster, 9,700 ETH of it (worth about $16.2 million) in the single consolidation wallet 0x9e9959 . One pass-through moved $3.95 million toward a mixer. Everything else is idle.

That matters for recovery. Because the incident is only hours old and the proceeds are still sitting in identifiable wallets in plain crypto, the trail is intact and the window for exchange partners and the protocol to act on the remaining funds is, for now, open.

We can prove what happened, but not who did it

Verified onchain. The wallet-to-wallet flows, the mint and release amounts, current holdings, the funding dates, and the eight-hour window are all measured directly from Allium data.

Approximate. The dollar value extracted (near $27 million) and the exact share of supply sold are estimates, because heavy round-trip flow through the pools inflates the gross numbers. The figure to trust is net still held.

Inference, not proof. The Gate.io and mixer labels come from a low-precision label set, so treat the specific venue names as leads to verify. And while the chain clearly shows premeditation, weeks of staged wallets and a rehearsed mint ramp, it cannot tell you who held the key. An outside attacker who quietly held a stolen key for weeks and an insider who planned the operation would leave the same footprint.

The damage to H holders is far larger than the attacker's take, and unlike the take, every step of it is on the record.

Informational only. Not investment advice. · Allium Onchain Research

Every figure here was reconstructed from Allium onchain data: cross-chain transfers, balances, mint events, and first-funding traces across BNB Chain and Ethereum. Informational only. Not investment advice. Wallet attributions and exchange or mixer labels are derived from onchain analysis and third-party label sets that may be incomplete, and should not be treated as definitive identification of any person or entity.

Read more