The Resolv Hack: How One Compromised Key Printed $23 Million

On March 22, 2026 Resolv Labs was exploited when an attacker gained access to the protocol’s AWS KMS signing key and used it to mint ~80M unbacked USR tokens, converting those to wstUSR and ultimately extracting about $25M in ETH while causing the stablecoin to de-peg by ~80%; the incident highlights a design vulnerability where off-chain privileged signing was trusted without on-chain caps or ratio checks, and the report emphasizes that real-time on-chain monitoring and automated contract pausing could have limited or prevented the loss.