Quantstamp’s report links a June 8 phishing attack on Humanity Protocol to DPRK actors after 141.18 million H tokens were stolen.
Hackers stole approximately 141.18 million H tokens from Humanity Protocol on June 8 by gaining remote access to a director’s device via a phishing attack. The attackers copied wallet data and private keys, then upgraded the Ethereum H token contract to facilitate the theft.
The breach also involved control of a ProxyAdmin contract on BNB Smart Chain, allowing additional H tokens to be minted. Quantstamp’s investigation identified tooling and certificate-signing patterns consistent with North Korean-linked cyber intrusions.
No immediate market reaction was disclosed, but the incident highlights growing risks of state-sponsored attacks on decentralized finance platforms.